72 Cissp jobs in Johannesburg

Business Segment: Personal & Private Banking

Location: ZA, GP, Johannesburg, 30 Baker Street

• Manage and fine-tune Microsoft Purview DLP policies for endpoints, SharePoint, OneDrive & Teams
• Investigate DLP alerts, coordinate incident response with stakeholders, and document outcomes.
• Work closely with Legal, Risk, and Compliance teams to align DLP policies with regulatory and internal requirements (e.g., POPIA, GDPR, PCI-DSS).
• Tune policy exceptions and reduce false positives without compromising security.

Email Security (Microsoft Defender for Office 365)

• Administer and optimize anti-phishing, anti-malware, and anti-spoofing policies.
• Monitor mail flow, quarantine, and threat reports to detect patterns and enhance protection.
• Configure Safe Links, Safe Attachments, and ATP policies.
• Support investigations of email-based threats and data leakage attempts.

Web Security (Forcepoint and DMARC)

• Maintain and support the Forcepoint Web Security environment, including URL filtering, content categorization, and user policies.
• Investigate web-based threat alerts and policy violations.
• Assist in integration of web security controls with broader DLP and SIEM tools.
• Provide guidance for policy tuning and user experience improvements.
• Manage, Maintain and Support DMARC to ensure Email is protected against spoofing.

SSE / Cloud Access Controls (Cato Networks)

• Configure and monitor policies on Cato Networks’ SSE platform for secure internet access and cloud app control.
• Help define Zero Trust Network Access (ZTNA) policies for remote users and sensitive resources.
• Review access logs, user behaviour, and cloud application usage for anomalies.
• Coordinate with network and identity teams to streamline SSE enforcement.
• Triage alerts across DLP, email, web, and SSE tools; escalate or respond as needed.
• Provide weekly/monthly reports to leadership on data protection metrics, incident trends, and policy effectiveness.
• Collaborate with SOC and Blue Teams on threat correlation and data security posture assessments.
• Maintain documentation and support audit readiness.

Technical Skills

• Strong hands-on experience with Microsoft Purview DLP (E5).
• Proficient in Microsoft Defender for Office 365 (email hygiene, ATP, threat management).
• Experience with Forcepoint Web Security policy design, deployment, and management.
• Working knowledge of Secure Service Edge (SSE) and ZTNA concepts; Cato Networks experience preferred.
• Familiarity with security incident workflows, SIEMs (e.g., Sentinel), and PowerShell scripting.

Experience

• 5+ years in IT Security roles, with at least 2–3 focused on data security.
• Direct involvement in policy design, incident triage, and ongoing tuning of DLP/email/web security tools.
• Exposure to regulated environments with compliance reporting (e.g., financial services)
• Soft Skills
• Detail-driven with strong analytical skills.
• Clear communicator, especially when engaging end-users on policy violations or tuning.
• Able to balance risk mitigation with operational practicality.
• Comfortable working across InfoSec, Infrastructure, Legal, and Business teams.

Preferred Certifications

• Bachelors Degree in Computer Science (advantageous)
• Microsoft Certified: Information Protection Administrator Associate (SC-400)
• Microsoft Certified: Security Operations Analyst Associate (SC-200)
• General security certifications (e.g., CompTIA Security+, CISM, CISSP) are a plus

We are seeking a skilled Cloud Security Engineer to join our team on a renewable contract basis.

The ideal candidate must have experience in conducting, coordinating, and responding to vulnerability assessments and penetration tests on Azure and Microsoft 365 environments. Responsibilities include analyzing penetration testing reports, triaging vulnerabilities, and prioritizing remediation efforts. The candidate will collaborate with cloud infrastructure and development teams to address and remediate identified vulnerabilities, and implement vulnerability scanning tools to continuously assess and monitor cloud environments.

Experience required:

• 4+ years as a cloud security engineer.
• Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience).
• Proven experience with Azure Security and Microsoft 365 security tools and services.
• Expertise in vulnerability management, penetration testing, and incident response in cloud environments.
• Experience with tools such as Azure Security Center, Microsoft Defender for Cloud, Azure Sentinel, Qualys, or similar.
• Proficiency in scripting and automation (e.g., PowerShell, Python, etc.) to enhance security operations.
• Strong understanding of network security, identity and access management, and encryption technologies.

Advantageous certification and experience:

• Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), Microsoft Certified: Azure Security Engineer Associate, or Offensive Security Certified Professional (OSCP).
• Hands-on experience in penetration testing tools and techniques for cloud environments.
• Familiarity with cloud architecture frameworks and security best practices (e.g., Zero Trust Architecture, shared responsibility model).

• Monitoring system performance and ensuring all technical infrastructure is running smoothly.
• Supervising technical staff and overseeing projects to ensure they are progressing as planned.
• Monitoring the security alerts and ensuring the timely resolution of vulnerabilities and incidents.
• Ensuring daily backups and necessary data recovery processes are operational.
• Aligning technology strategy with business objectives and ad hoc requirements.
• Responding to urgent technical crises and ensuring resolution.
• Providing status reports on the IT landscape, including updates on ongoing projects, security posture, and system performance.
• Holding team meetings to foster collaboration, address concerns, and facilitate knowledge sharing.
• Reviewing and prioritizing project requests from different departments.
• Coordinating with vendors and partners for service improvements, negotiations, and addressing any issues.
• Reviewing the progress of strategic IT initiatives and ensuring they align with the organizational goals.
• Reviewing compliance reports and working towards resolving identified issues.
• Overseeing GRC initiatives and ensuring adherence to the necessary frameworks and regulations.
• Facilitating training and development sessions for the team to keep them updated with the latest trends and best practices.
• Developing and assisting with the annual budget for the technology departments.
• Conducting a comprehensive review of the year’s performance.
• Ensuring the IT strategy aligns with the organization's long-term strategic goals and regulatory requirements.
• Conducting risk assessments and developing risk management strategies to mitigate identified risks.
• Reviewing and updating organizational IT policies to ensure they remain relevant and compliant with the regulatory requirements.

• Keeping abreast of the latest developments in privacy regulations and industry best practices.
• Responding to any data breaches or privacy incidents, coordinating with different teams to manage the situation effectively.
• Advising various departments on privacy matters, answering queries, and providing guidance.
• Offering training and awareness programs to employees and other stakeholders.
• Ensuring that all privacy-related documents are up-to-date and readily accessible.
• Regularly reviewing the organization's privacy policies and procedures to ensure their effectiveness.
• Reporting on the status of privacy compliance within the organization.
• Engaging with different stakeholders, including employees and vendors, to discuss privacy concerns and updates.
• Performing privacy risk assessments and working on mitigating identified risks.
• Conducting privacy impact assessments when the need arises.
• Updating privacy policies based on the assessment of recent privacy incidents and regulatory developments.
• Reviewing the privacy practices of third-party vendors and partners to ensure compliance.
• Developing and updating the strategic privacy plan, setting goals for the upcoming year.
• Conducting a comprehensive privacy compliance audit to identify gaps and areas for improvement.

Qualifications/Requirements

• Bachelor's Degree in Computer Science or related field AND 5+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response.
• 10+ years work experience in same or similar role.
• Experience in Audits (ISO, SOC, etc.) and remediation follow up.
• Certifications like Certified Information Privacy Manager (CIPM) and/or Certified Information Privacy Technologist (CIPT) is a plus.
• Experience in conducting privacy reviews and participating in on-call rotations.
• In-depth knowledge of the Microsoft Privacy Standard.
• In-depth knowledge of Microsoft Data Handling Standards.
• Experience in translating Privacy Policies and Standards into effective controls.
• The ability to collaborate across teams and partner well with people with diverse professional backgrounds.
• The flexibility to manage and balance workloads that may vary and be unpredictable and processes that may be repetitious.

Join to apply for the Senior Security Engineer role at Blue Pearl .

Senior Security Engineer to provide provisional (consultation basis) support for Tier 3 security solutions, focusing on escalation calls. These include Checkpoint, Firepower, ASA, F5, and Cisco ISE. The role involves participating in projects, designing, deploying, configuring, and troubleshooting security solutions.

• One (1) Senior Cisco Security Engineer - Certified CCIE (Security), with at least 5 years’ experience.
• Senior Security Engineer - F5 BIG-IP Certified Technical Specialist (LTM & ASM) with CSE as an advantage, with at least 5 years’ experience.
• Senior Security Engineer - Certified Checkpoint CCSA and CCSE, with at least 5 years’ experience (CCSM as an advantage).

• Seniority level: Not Applicable
• Employment type: Full-time
• Job function: Information Technology
• Industries: IT Services and IT Consulting

Referrals can double your chances of interview at Blue Pearl.

This job posting is active. No indication of expiration is present.

Join to apply for the Network Security Engineer role at Impronics Technologies

Join to apply for the Network Security Engineer role at Impronics Technologies

• Network Security Design & Implementation:
  
  

• Network Security Design & Implementation:
  
  

• Firewall & Intrusion Detection:
  
  

• Threat Monitoring & Incident Response:
  
  

• Security Audits & Risk Assessments:
  
  

• Security Tools & Automation:
  
  

• Strong understanding of network protocols, including TCP/IP, DNS, DHCP, and HTTP.
• Hands-on experience with firewalls (Palo Alto, Cisco ASA, Fortinet, etc.), VPN technologies, and IDS/IPS.
• Experience with network security tools such as SIEM, vulnerability scanners (Nessus, Qualys), and penetration testing tools.
• Familiarity with cloud security architectures and hybrid environments (AWS, Azure).
• Knowledge of industry standards and best practices (NIST, ISO 27001, PCI DSS).

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Technology, Information and Media

Referrals increase your chances of interviewing at Impronics Technologies by 2x

Kempton Park, Gauteng, South Africa 5 days ago

Johannesburg, Gauteng, South Africa 1 month ago

Johannesburg, Gauteng, South Africa 1 month ago

Midrand, Gauteng, South Africa 2 weeks ago

Midrand, Gauteng, South Africa 2 weeks ago

Randburg, Gauteng, South Africa 4 days ago

Johannesburg, Gauteng, South Africa 5 days ago

Johannesburg, Gauteng, South Africa 1 month ago

Johannesburg, Gauteng, South Africa 1 month ago

Johannesburg, Gauteng, South Africa 1 week ago

Johannesburg, Gauteng, South Africa 2 days ago

Johannesburg, Gauteng, South Africa 6 days ago

Midrand, Gauteng, South Africa 1 month ago

Johannesburg, Gauteng, South Africa 3 days ago

Johannesburg, Gauteng, South Africa 1 month ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

SUMMARY : POSITION INFO :

Key Experience :

• At least 4-7 years of Cloud Experience (AWS, Azure, or GCP)
• Securing cloud environments and protecting data
• Implementing security measures, monitoring cloud infrastructure for threats, and responding to security incidents
• Experience with security tools such as firewalls, intrusion detection systems, and identity and access management solutions
• Architecting Microsoft Azure Solutions Certification
• Configuring and maintaining MS Azure PaaS, IaaS, & SaaS offerings
• Developing Microsoft Azure Solutions Certification
• Exposure to Active Directory, Hyper-V (administration & configuration), IIS Administration, OS internal concepts, and security
• Implementing Microsoft Azure Infrastructure Solutions Certifications
• Experience with Microsoft Management tools (SCOM, SCCM, SCSM, MS Orchestrator (Opalis))
• MS SQL Server performance tuning
• Server clustering experience
• Understanding security and segregation of duty requirements for enterprise systems
• Working knowledge of networking concepts including VIPs, NAT, DNS, networking tools (ping, tracert, tracemon, NetMon, Wireshark), and scripting tools (PowerShell & XML)

Qualifications :

• Senior Certificate or NQF 4 equivalent
• Bachelor’s Degree in Computer Science or equivalent (advantageous)
• Relevant Cloud Security Certifications

Soft Skills :

• Collaborative personality with excellent communication and presentation skills, able to interact effectively at all organizational levels
• Excellent analytical, organizational, problem-solving, and time management skills
• Strong training and writing skills in English
• Motivated with a strong work ethic

Scope of Work :

• Participate in Continuous Improvement initiatives
• Design and architecture of Cloud Infrastructure
• Maintenance of Customer Cloud Infrastructure
• Deployment of Customer Environments
• Support for Customer Environments
• Compliance with Cyber Security Regulations
• System hardware and software installation, configuration, operation, and maintenance
• Engage with users and analysts to provide solutions following the Application Lifecycle Management (ALM) process
• Estimate architecture costs
• Performance monitoring, proactive management, and reporting
• Server administration