Talent.com
Security Engineer

Security Engineer

ZealhrPretoria, Gauteng, South Africa
17 hours ago
Job description

Job Description

Are you ready to be the cybersecurity cornerstone of a fast-moving tech environment Were looking for a sharp strategic IT Security Engineer to lead our company-wide security effortsfrom infrastructure hardening and penetration testing to audit readiness and compliance documentation. Youll own the roadmap for SOC2 and HiTrust collaborate across DevOps and RAQA and implement proactive measures that protect our systems data and reputation. If you thrive on precision automation and staying five steps ahead of threats this is your chance to make a measurable impact.

Responsibilities :

Cybersecurity Management 40%

  • Drive development standards and processes related to cybersecurity compliance.
  • Monitor all cybersecurity processes operations and infrastructure monitoring internal and external policy and regulatory compliance.
  • Review and evaluate development designs (for existing products and during design phase for new products) to identify gaps in cybersecurity controls and drive updates to any cybersecurity or compliance documentation.
  • Liaise with internal and external stakeholders to prepare for SOC2 Type 2 and HiTrust).
  • Drive cybersecurity audit strategy and readiness from a dev security and devops perspective.
  • Identify implement and maintain all security tools and technology.
  • Schedule (and ideally automate) internal vulnerability scans remediating findings and ensuring accurate & timely reporting to satisfy PCI DSS requirements.
  • Schedule annual Penetration Tests with external supplier(s) and ensure implementation of items identified in remediation plans.
  • Complete required cybersecurity applications and records for large customers and audits including reporting as required.

Infrastructure Management 30%

  • Drive and action where required the planning installation monitoring and maintenance of IT systems and infrastructure focused on cyber security including any penetration testing that is required.
  • Design and execute short- and long-term initiatives to detect and prevent any security vulnerabilities in the IT infrastructure (cloud security and devops) to meet current and future needs.
  • Develop execute and oversee procedures policies and related training plans for cybersecurity project management and infrastructure administration.
  • Conduct research and recommend changes in services products protocols and standards to support development efforts and infrastructure procurement.
  • Define software and hardware security standards in collaboration with stakeholders and owners for the provisioning of the development and IT infrastructure.
  • Ensure appropriate security levels on network infrastructure and servers are maintained ensuring that
  • the IT team follows the requirements set in line with cybersecurity standards.
  • Implement cybersecurity continuous improvement programs.
  • Crisis management - keeping stakeholders informed and actively working with teams to return service in the shortest possible time frame. This would include documenting all disaster recovery procedures.
  • Effective management and optimisation of vendors (where applicable) as well as collaborating with the dev and IT teams as necessary.

    • Risk Management and Compliance 20%

  • Collaborate with divisional the RAQA team and Senior Managers to define and centralize risks and put mitigation measures in place for new and existing products and services from a cybersecurity and privacy perspective.
  • Improve the automation of security controls.
  • Work closely with the dev team on defining industry-standard processes and system requirements identifying and proposing fixes to shortcomings in the development lifecycle code reviews and scanning as well as infrastructure provisioning.
  • Work with the dev team to ensure that security standards and policies are being set up and configured correctly ensuring adherence to certifications and best-practice.
  • Assist with remediations on risk items identified from security and preventative detection reviews to ensure compliance and ensure the security posture of the IT landscape is ensured at all times.
  • Remediate audit items by putting measures in place to prevent the recurrence of findings. For example by making sure that audit findings are resolved by the relevant personnel and that the resolutions are such that they prevent the item from reoccurring in the future.
  • Manage internal and external audits as required with relation to cybersecurity.
  • Maintain documentation for cybersecurity-related risks processes and findings.

    • QMS and Documentation 10%

  • Manage annual cybersecurity roadmap IT audit (internal and external) plan and calendar.
  • Work closely with the Compliance team to gather and submit evidence for all security and IT audits.
  • Proactively keep stakeholders updated on status progress risks and problems.
  • Review and approve documented outcomes of Penetration Tests Remediation Plans and required activities.
  • Review and approve documented outcomes of Vulnerability Scans Remediation Plans and required activities.
  • Maintain cybersecurity documents and records in line with certification requirements.
  • Maintain document bank and matrix for the cybersecurity setup and external customer-audit matrix requests. For example ensuring that all cybersecurity related information such as architectural diagrams asset lists asset control lists and vulnerabilities can be referenced from a single central source from which to direct the readers to the appropriate resources.

    • Role Requirements

    Minimum education (essential) :

  • Engineering degree (Computer Software Mechanical or Electronic)

    • Minimum education (desirable) :

  • OSCP (Offensive Security Certified Professional)
  • PNPT (Practical Network Penetration Tester)
  • CISSP(Certified Information Systems Security Professional)
  • CCSP (Certified Cloud Security Practitioner)

    • Minimum applicable experience (years) :

  • Minimum 5 years experience in Technology & Software
  • Minimum 3 years experience in Cybersecurity

    • Required nature of experience :

    AWS ecosystem :

  • AWS Well Architected Framework
  • Trusted Advisor
  • GuardDuty / SCP / SSM / IAM / WAF
  • Container services such as ECS / EKS
  • Incident detection and response management.
  • Performing penetration tests and vulnerability scans against networks and infrastructure applications and AWS environments.
  • Drafting and implementing security policies security procedures security design and implementation.

    • The following would be advantageous :

  • ISO 14971 (risk management) compliance
  • ISO 27032 (cybersecurity) compliance
  • SOC2 Type 2 (with HiTrust attestation) or HiTrust experience (or equivalent)

    • Skills and Knowledge (essential) :

  • Deep understanding of automation quality engineering architectural methodologies principles and solution design.
  • Familiarity with operational observability including log aggregation application performance monitoring etc.
  • Understanding of the following : Linux / Windows server and application administration and configuration networking scripting and automation large scale distributed computing architecture.
  • Solid knowledge of IT security (firewalls EDR IDS / IPS SOAR vulnerability scanning forensic and Threat Hunting).
  • Understanding of AWS ECS & Kubernetes and Containerisation (Docker / Podman / Containerd) with implementation support and design.
  • Knowledge in security classification frameworks like MITRE or the cyber-attack kill chain.
  • Good knowledge and understanding of industry standards memberships and frameworks such as CIS and SOC 2.

    • Key Skills

    Splunk,IDS,Network security,Computer Networking,Identity & Access Management,PKI,PCI,NIST Standards,Security System Experience,Information Security,Encryption,Siem

    Employment Type : Full-Time

    Experience : years

    Vacancy : 1

    Create a job alert for this search

    Security Engineer • Pretoria, Gauteng, South Africa

    Related jobs
    • Promoted
    IT Operations Manager (Pretoria)

    IT Operations Manager (Pretoria)

    Hired Recruitment (Pty) LtdBenoni, South Africa
    To ensure the seamless operation, security, and efficiency of our organization's IT infrastructure across multiple sites and locations. This includes managing and supporting various operating system...Show moreLast updated: 2 days ago
    • Promoted
    SHEQ Manager

    SHEQ Manager

    Chainlink SAKempton Park, South Africa
    We are seeking a strategic, results oriented SHEQ Manager to lead our Safety, Health, Environment & Quality function.The successful candidate will design and implement an integrated SHEQ management...Show moreLast updated: 30+ days ago
    AWS Developer Cryptography (Senior)

    AWS Developer Cryptography (Senior)

    Khonology (Pty) LtdRandburg, GP, ZA
    The Cloud Security Engineer is responsible for designing, building, and maintaining secure, scalable cloud infrastructure primarily on AWS, with integration across Azure environments.This role ensu...Show moreLast updated: 30+ days ago
    • Promoted
    Manager : Security Systems Design + Applications

    Manager : Security Systems Design + Applications

    SHARON NUROCK RECRUITMENT CCPretoria, South Africa
    Lead the design, research and build of security systems (ACS, CCTV, alarms, sensors, perimeter systems).Provide strategic oversight for the teams security research and system design initiatives.Hig...Show moreLast updated: 2 days ago
    • Promoted
    Azure Data Engineer

    Azure Data Engineer

    Dina Gates Recruitment (Pty) LtdKempton Park, South Africa
    We are seeking a skilled Azure Data Engineer with a minimum of 2 years of experience to join our dynamic data team.The ideal candidate will have a strong background in SQL, Microsoft Azure, data wa...Show moreLast updated: 30+ days ago
    • Promoted
    Mine Mechanical Design Engineer (Autodesk Inventor), Kempton Park

    Mine Mechanical Design Engineer (Autodesk Inventor), Kempton Park

    RakkgalakaneKempton Park, South Africa
    Degree in Mechanical Engineering.Ability to work in multidisciplinary project teams.Finite Element Analysis (FEA) tools.Background in fabrication and manufacturing of Mine beneficiation equipment.E...Show moreLast updated: 30+ days ago
    Security Engineer

    Security Engineer

    AiRPretoria, South Africa
    Remote
    Cybersecurity Management (40%).Develop and maintain security standards and processes to support compliance requirements.Oversee cybersecurity operations and ensure alignment with internal policies ...Show moreLast updated: 30+ days ago
    • Promoted
    Development Engineer - Hardware

    Development Engineer - Hardware

    Boardroom AppointmentsEdenvale, South Africa
    Development Engineer - Hardware.Design electronic circuits and systems based on detailed specifications.Build and test prototypes to validate functionality and performance.Ensure product reliabilit...Show moreLast updated: 30+ days ago
    TPD HUB Engineer

    TPD HUB Engineer

    TechBiz Global GmbHBryanston, GP, ZA
    At TechBiz Global, we are providing recruitment service to our TOP clients from our portfolio.We are currently seeking a TPD HUB Engineer to join one of our. If you're looking for an exciting opport...Show moreLast updated: 30+ days ago
    • Promoted
    Lead Electrical Engineer (Construction & Mining)

    Lead Electrical Engineer (Construction & Mining)

    HlabahlosilePretoria West, South Africa
    Lead Electrical Engineer, Designer.EPC (Engineering Procurement Construction) background and PR registered.Must be a designer on structures. A Lead Electrical Engineer Designer is a professional who...Show moreLast updated: 30+ days ago
    • Promoted
    Information Security Officer

    Information Security Officer

    Boardroom AppointmentsSandton, South Africa
    Maintain Operational Systems, Networks and Security.Facilitate annual PCI audits and ensure ongoing compliance.Ensure Linux systems are patched promptly and securely, coordinating through the corre...Show moreLast updated: 30+ days ago
    • Promoted
    Applications Engineer

    Applications Engineer

    Boardroom AppointmentsKempton Park, South Africa
    Work with suppliers to create detailed technical requirements, including system architecture, hardware, software, and data, ensuring risk management, quality considerations, and product deployment ...Show moreLast updated: 30+ days ago
    • Promoted
    Systems Analyst - M365 and AWS- Contract

    Systems Analyst - M365 and AWS- Contract

    HR GenieRoodepoort, South Africa
    We are seeking a technically proficient Security Analyst with 2 to 3 years of experience, focused on securing systems, applications, and infrastructure. The ideal candidate will have hands-on experi...Show moreLast updated: 13 days ago
    • Promoted
    Test Engineer Manager (Pretoria)

    Test Engineer Manager (Pretoria)

    Hired Recruitment (Pty) LtdBenoni, South Africa
    Increase team’s effectiveness with the following : .Recruitment, selection and orientation;.Assign accountabilities and plan. .Monitor and appraise job and project results.Develop a climate for offeri...Show moreLast updated: 2 days ago
    • Promoted
    Hardware Firmware Design Engineer (Centurion)

    Hardware Firmware Design Engineer (Centurion)

    Datafin IT RecruitmentPretoria, South Africa
    A world-class Security Specialist in Centurion seeks the technical expertise of a Hardware Firmware Design Engineer who is proficient in Firmware development (HDL compiled for FPGAs), Hardware deve...Show moreLast updated: 30+ days ago
    • Promoted
    Security Engineer (Pretoria)

    Security Engineer (Pretoria)

    Hired Recruitment (Pty) LtdBenoni, South Africa
    Responsible for company-wide cybersecurity and related documents, process and record management to ensure that systems and products are safe and effective. Ensures data integrity, and that informati...Show moreLast updated: 2 days ago
    • Promoted
    Process Engineer

    Process Engineer

    Profile PersonnelRosslyn, South Africa
    We are seeking a Process Engineer to lead continuous improvement and ensure world-class quality in automotive production. Drive continuous improvement initiatives to enhance product quality and proc...Show moreLast updated: 30+ days ago
    Information Security Manager

    Information Security Manager

    Boardroom AppointmentsMidrand, South Africa
    Strategic Leadership & Governance.Develop and maintain The Companys enterprise-wide cybersecurity strategy aligned with business objectives and regulatory requirements. Establish and enforce securit...Show moreLast updated: 30+ days ago