228 Cybersecurity Engineer jobs in South Africa

Share this job as a link in your status update to LinkedIn.

Job Title

Cybersecurity Engineer

Location

King George, VA 22485 US (Primary)

Category

Information Technology

Job Type

Full-time

Staff

Education

Bachelor's Degree

Travel

Security Clearance Required

Ability to obtain and maintain a U.S. Security Clearance

Job Description

TMC Technologies is looking for a Cybersecurity Engineer to join our team supporting the mission of the Naval Surface Warfare Dahlgren Division (NSWCDD). The TMC team provides development and maintenance of tactical initiatives and baseline developments in support of Naval Weapons Systems /Combat Systems (e.g. AEGIS, Aegis BMD, FMS, etc). The Computer Program Engineering Services (CPES) provided include support for Weapon System Element and Combat System Domain Engineering, Fleet and Land Based Test Site Support.

TASKING:

Engineering support for technical implementation of cybersecurity solutions in conjunction with the Navy tactical configuration development and associated tactical applications, applying principles and techniques of network engineering, cybersecurity engineering, and systems administration.

Conduct vulnerability research, malware analysis, penetration testing, and reverse engineering development of computer network operations, as required.

Conduct installation and integration of Commercial Off-The-Shelf (COTS) cybersecurity tools and applications and perform proof-of-concept, product evaluation of those tools and applications to determine feasibility of meeting the Navy’s cybersecurity requirements.

Responsible for researching, deriving, and documenting cybersecurity requirements as they relate to Navy tactical applications at the A-Level and B-Level specifications. These cybersecurity requirements must align with Department of Navy (DoN) cybersecurity instructions 8500.1 and NAVSEA 9400.2, plus other combat system-specific requirements documented in PEO IWS 5239.1.

Responsible for mapping and evaluating specific cybersecurity guidance and controls documented in CNSSI1253, NIST 800-53, and NIST 800-125B, etc., against the associated A-level and B-level specification cybersecurity requirements.

Generate Plans of Action and Milestones (POA&Ms) for the tasking and ability to monitor and track task completion against plan and define mitigation strategies due to task re-planning

Job Requirements

Ability to obtain a Secret security clearance (US Citizenship required)

Bachelor’s Degree in Computer Science or related field

Knowledge of cybersecurity concepts that identify, exploit, protect against, or mitigate cyber security vulnerabilities

Knowledge of Virtual Machine (VM) architecture and configurations is preferred

We are equal opportunity/affirmative action employers, committed to diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or protected veteran status, or any other protected characteristic under state or local law.

Company Description

Aspen TESS is Aspen's technology enabled shared services business, established to be a partner in unlocking business value through digital innovation and process efficiency. Aspen TESS will eliminate repetitive effort and use technology to optimize standardized processes, by delivering cost-effective services and innovative solutions to Aspen business units globally. 

OBJECTIVE

The Cybersecurity Engineer plays a crucial role in protecting Aspen’s infrastructure by implementing, maintaining, and enhancing security technologies and processes. This role works closely with the SOC, IT, and Compliance teams to ensure systems and data remain secure and threats are identified and mitigated.

KEY RESPONSIBILITIES

Incident Response and Escalation

• Act as a Tier 2/3 escalation point for complex security incidents raised by the SOC or IT teams.
• Lead and support incident response activities, including forensic analysis and root cause investigation.
• Support red/blue team exercises to test and improve detection, response, and defense capabilities.

Security Platform Management

• Manage configurations and policies for the Cyber Security platforms, ensuring optimal performance and alignment with security standards.

Vulnerability Management

• Analyze vulnerability scan reports to identify and assess security weaknesses.
• Coordinate remediation efforts with relevant teams and ensure timely closure of vulnerabilities

Secure Systems and Network Configuration

• Collaborate with IT teams to implement secure system and network configurations, following industry best practices and compliance requirements.

Training and Mentorship

• Provide training and mentorship to junior analysts, fostering their professional development and enhancing team capabilities.

Project Involvement

• Participate in cross-functional IT and business projects to ensure security requirements are identified, integrated, and enforced throughout the project lifecycle

SKILLS AND COMPETENCIES:

• Hands-on experience with Cisco Umbrella, Defender for Endpoint, Identity, Office, and Sentinel.
• Working knowledge of SIEM, SOAR, EDR, vulnerability and data protection tools.
• Scripting skills (e.g., PowerShell, Python, KQL) for automation and threat hunting.
• Strong understanding of networking, authentication, certificates and cloud security principles.
• Familiarity with MITRE ATT&CK, NIST CSF, and other industry frameworks.
• Strong analytical and problem-solving skills.
• Clear and concise communication for incident handling and documentation.
• Collaborative mindset with the ability to work independently when required.
• Effective multitasking under pressure.

QUALIFICATIONS & EXPERIENCE

• Bachelor’s degree in Computer Science, Information Technology, or related field (or equivalent experience).
li>Preferred certifications:

Microsoft Certified: Security Operations Analyst Associate

Microsoft Security, Compliance, and Identity Fundamentals

Cisco Certified CyberOps Associate or CCNP Security

CompTIA Security+, CySA+, or similar

All Inclusive Salary package (R): R1 059 105 – R1 247 574 per annum
Benefits: All-inclusive remuneration package of R1 059 105 – R1 247 574 per annum. The successful candidate may structure the total package for a 13th cheque. The employer’s contribution towards Housing, Medical Aid, and Pension is included in the total package.
Contract Type: Fixed-Term Contract
Objective: The South African Qualifications Authority (SAQA) is a statutory public entity, an oversight body of the National Qualifications Framework (NQF) Act, No. 67 of 2008. The entity is charged with developing, fostering and maintaining an integrated and transparent national framework for the recognition of learning achievements, ensuring that:

• South African qualifications meet appropriate criteria and are internationally comparable.
• The country’s qualifications are of acceptable quality.
• The quality of education and training is enhanced.
• Access, mobility and progression within education, training and career paths are realised.

SAQA seeks to appoint a Cybersecurity Engineer to assist in designing and implementing security measures to protect SAQA’s systems, networks, and data from cyber threats. Reporting to the Senior Manager: ICT, this position will develop security policies and empower staff on best practices to safeguard SAQA’s technology environment.

Requirements are: • An appropriate, recognised qualification at NQF Level 7 or equivalent.
• A relevant NQF level 8 qualification will be an advantage.
• CISSP, CSIM, and CASP+ certification will be an advantage.
• Eight years’ relevant work experience within a cybersecurity environment.

Duties : • Design enterprise-wide security frameworks and solutions aligned with organisational goals and compliance requirements.
• Ensure architecture supports scalability, resilience, and adaptability to emerging threats.
• Perform white box penetration testing and vulnerability scans and oversee grey/black box penetration testing and vulnerability scans.
• Design, implement and maintain appropriate solutions.
• Research, evaluate, and recommend emerging security technologies.
• Work with ICT, DevOps, and software development teams to embed security in system designs.
• Support internal and external audits by providing detailed documentation and evidence of security controls.
• Prepare reports on incident responses, vulnerabilities, and system performance.
• Prepare accurate budget forecasts for cybersecurity projects and tools.
• Work with the procurement team to evaluate, negotiate, and manage contracts for security tools and services.
• Assess and plan for the financial scalability of cybersecurity solutions as the organisation grows.
• Establish monitoring processes for system performance and security metrics.
• Conduct risk assessments to identify vulnerabilities and prioritise remediation efforts.
• Establish and maintain security policies, standards, procedures and guidelines.
• Promote cybersecurity awareness and training programs across all units.
• Work closely with business to align cybersecurity goals with the overall business strategy.

CYBERSECURITY ENGINEER (36-MONTH FIXED-TERM CONTRACT)

All Inclusive Salary package (R): R1 059 105 – R1 247 574 per annum
Benefits: All-inclusive remuneration package of R1 059 105 – R1 247 574 per annum. The successful candidate may structure the total package for a 13th cheque. The employer’s contribution towards Housing, Medical Aid, and Pension is included in the total package.
Contract Type: Fixed-Term Contract
Objective: The South African Qualifications Authority (SAQA) is a statutory public entity, an oversight body of the National Qualifications Framework (NQF) Act, No. 67 of 2008. The entity is charged with developing, fostering and maintaining an integrated and transparent national framework for the recognition of learning achievements, ensuring that:

• South African qualifications meet appropriate criteria and are internationally comparable.
• The country’s qualifications are of acceptable quality.
• The quality of education and training is enhanced.
• Access, mobility and progression within education, training and career paths are realised.

SAQA seeks to appoint a Cybersecurity Engineer to assist in designing and implementing security measures to protect SAQA’s systems, networks, and data from cyber threats. Reporting to the Senior Manager: ICT, this position will develop security policies and empower staff on best practices to safeguard SAQA’s technology environment.

To analyse information security related tasks within the ambit of existing information security policies, standards and processes, procedures and practices as well as business rules. Working independently to deliver on work tasks. Mentor Administrators and Analyst I. Collaborate with other specialists to execute analysis work tasks, perform operational tasks, question, recommend and update improvements to the existing policies, process and procedures. To ensure stability and up-time for areas the incumbent takes responsibility for, which could require availability on demand to perform job related duties outside of normal working hours.

• We are looking for a suitable resource with general network security or web security experience to alleviate work pressures on our current team members
• Experience with Email and Web Proxies
• DNS Security knowledge
• Experience with Microsoft O365
• Assist with support of current email and web security tasks
• Liaise with other teams to promote good security practices and explain security procedures
• Experience with Security Technologies
• Building relationships with I&O Teams
• Oversee the implementation of the information security changes and check for the short comings and risks.
• Interpret MIS and system logs/ reports with the view to analyse and correct any deviations against standards and best practices.
• Participate in the implementation of new products as provided in the selection criteria.
• Act as the 1st point of problem resolution for non routine incidents and 1st line support for problems.
• Ensure compliance to standards and practises by familiarizing and keeping abreast of information security policies, rules, standards and processes, procedures and practices as well as business rules.
• Document and maintain all relevant processes and procedures mindful of current policies and standards.
• Create and maintain information security standards.
• Oversee and monitor the information security environment according to set standards.
• Review and contribute to project documentation including business requirements, designs and implementation.
• Create design documentation according to relevant standards and practices
• Implement specific Information security technologies.
• Gain further exposure and experience on multiple technologies by job shadowing Information Security analysts III and Technical Specialist.
• Log submit and implement low, medium and high risk changes independently.
• Provide guidance and supervision to Administrators and Analyst I on implementation and changes.
• Oversee and ensure change was successful in certain cases and when required perform unit testing.
• Oversee and ensure back-ups are done, documents are stored and statuses updated.
• Analyse logs and reports independently and provide supervision to Administrators and Analyst I.
• Monitor and action Service Manager low, medium and high impact incidents and e-mails related to Information Security.
• Ensure job related tasks and processes are in place.
• Ensure that the logging and submitting of all relevant incidents have taken place and resolve low, medium and high incidents.
• Conduct risk and root cause analyses around exceptions, queries, incidents as per operational procedures with the relevant internal and external stakeholders and provide feedback, confirm stakeholder satisfaction.
• Keep abreast of legislation and other industry changes that impacts on role by reading the relevant newsletters, websites and attending sessions.
• Improve personal capability and to stay abreast of developments in field of expertise by identify training courses and career progression opportunities for self through input and feedback from managers.
• Ensure information is provided correctly to stakeholders by maintaining knowledge sharing knowledge with team.
• Transfer of knowledge to team members.
• Identify and recommend opportunities to enhance processes, systems and policies and support implementation of new processes, policies and systems.

• Strong knowledge of Information Security Principles
• Ensuring security best practices are implemented , safeguarding network infrastructure against any potential threats
• Knowledge of Email Security
• Experience with Email Security Technologies
• Experience Service Now
• Experience Microsoft O365

• Matric / Grade 12 / National Senior Certificate
• Advanced Diplomas/National 1st Degrees

• CCNA - Security
• Security +
• Network +
• MS Azure Certifications – MS 365

Minimum of 3 years’ experience in an IT operations team dealing with the network Security tasks

• Administrative procedures and systems
• Data analysis
• Governance, Risk and Controls
• Principles of project management
• Relevant regulatory knowledge
• Relevant software and systems knowledge
• Cluster Specific Operational Knowledge
• System Development Life cycle(SDLC)
• TCP/IP
• Information Security terms and definitions
• Information Security policies and procedures
• Communication
• Customer Focus
• Initiating Action
• Managing Work
• Technical/Professional Knowledge and Skills

---

Please contact the Nedbank Recruiting Team at +27 860 555 566

If you can't find the job you're looking for, activate job alerts to be one of the first to know when new positions open up.

Nedbank Ltd Reg No 1951/0009/06.
Authorised financial services and registered credit provider (NCRCP16).

For assistance please contact the Nedbank Recruiting Team at +27 860 555 566

Join to apply for the Information Security Analyst MMH250401-13 role at Momentum Group Limited .

This position is responsible for performing various tasks related to IT security. The role requires ongoing research in the IT security arena and assistance in the sales process. The ideal candidate will conduct comprehensive penetration tests, identify vulnerabilities, and recommend improvements to security posture. Experience in technical security assessments of IT systems (including Internet, Intranet, applications, hosts, firewalls, mobile applications, etc.) and related policies is essential. The candidate must be motivated and familiar with industry best practices.

• 5+ years of experience in penetration testing, vulnerability assessment, or related fields.
• Deep knowledge of security testing methodologies and frameworks (OWASP, NIST, etc.).
• Proficiency with advanced penetration testing tools such as Metasploit, Burp Suite, Nessus, Nmap, etc.
• Strong scripting skills (Python, Bash, PowerShell, etc.) for automation.
• Understanding of network protocols, operating systems, web technologies, and cloud environments.
• CISSP and CEH certifications preferred.
• OSCP, OSEP, CCSP, CRTE, CRTP, or CRTO certifications or equivalents are advantageous.

• Lead and conduct penetration tests to identify security weaknesses.
• Develop and execute security test plans and scripts.
• Perform vulnerability assessments and security analyses using automated tools and manual techniques.
• Document findings and provide actionable recommendations for remediation.
• Collaborate with teams to prioritize and address vulnerabilities.
• Stay updated on emerging security threats and trends.
• Participate in security incident response when needed.
• Assist in developing security policies and standards.
• Mentor junior security staff.
• Perform security assessments including application scans and code reviews to ensure compliance.
• Participate in other security projects as required.

Please verify the legitimacy of this job advert on our company career page.

• Mid-Senior level

• Full-time

• Information Technology

Referrals increase your chances of interviewing at Momentum Group Limited by 2x.

Get notified about new Information Security Analyst jobs in Centurion, Gauteng, South Africa .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Our client based in Pretoria and Sandton (Hybrid position) is searching for an Cybersecurity Systems Engineer to join their team.

Job Purpose:

• Responsible for protecting an organisation's valuable data, systems, and network from cyber threats and attacks.

Responsibilities:

• Analyze, research, and report possible threats, vulnerabilities, and weaknesses in IT systems, applications and networks.
• Perform regular risk assessments and vulnerability management, recommending and implementing mitigation strategies.
• Implement and maintain best practices in line with information security standards and frameworks (e.g., ISO 27001, NIST CSF, PCI-DSS, POPIA).
• Support company employees with cybersecurity, software, and hardware needs, ensuring alignment with security best practices.
• Investigate, contain, and eradicate security incidents. Perform post-incident reviews and root cause analysis to strengthen controls.
• Monitor networking environments and engage with service providers to ensure security SLAs are met.
• Administer, configure, troubleshoot, and maintain IT security hardware and software, including firewall management and endpoint protection.
• Develop, tune, and maintain SOC/SIEM detection rules, dashboards, and incident playbooks.
• Ensure alignment of business operations with information security policies & procedures, including support for internal and external audits.
• Create and maintain security documentation, including incident reports, configuration baselines, and risk registers.
• Automate repetitive security tasks through scripting.
• Stay informed on emerging threats, vulnerabilities, and security technologies. Proactively recommend improvements.

Qualifications and Requirements:

• Grade 12 (Matric)
• National certificate or bachelor’s degree in Information Technology or Computer Science, or equivalent experience.
• CompTIA A+, N+, Security+, Certified Ethical Hacker (CEH) highly desired.
• Strong understanding of security concepts and controls across network, application, cloud, and endpoint environments.
• Excellent communication skills, including the ability to translate technical risks into business impact for non-technical audiences.
• Critical thinking, problem-solving, and ability to prioritise multiple security projects.
• Knowledge of security frameworks and compliance standards (ISO 27001, NIST, PCI-DSS, POPIA).
• Experience with SOC and SIEM solutions, incident detection and response, and security automation.
• Familiarity with scripting languages (Python, PowerShell, Bash) for security task automation.
• An enthusiasm and passion for staying up to date security threats, trends, and solutions protecting the organization’s environment.

Experience:

• Minimum of 5 years in information and cyber security roles.
• Hands-on experience with networks, firewalls, VPNs, and network troubleshooting.
• Security experience with endpoint protection, email protection, email flow, Office 365, Azure, AWS, and other cloud-based solutions.
• Practical exposure to antivirus, content filtering, authentication, intrusion detection/prevention systems, and other layered security controls.
• Proficiency with Windows Server, Windows Desktop, and Linux operating systems.
• Demonstrated experience in implementing and enforcing information security governance and policy frameworks.
• Experience with Kali Linux, penetration testing tools, and vulnerability scanning solutions.
• Proven ability to critically analyze requirements/issues and solve complex problems.

SUMMARY : Security Analyst

POSITION INFO : Qualifications

• Matric Certificate with Maths
• B Com in Accountancy or equivalent
• JDE Common Foundation
• JDE Technical Foundation
• AllOut Security Certification
• CNC Certification (advantageous)
• AS / 400 CL Programming
• PRINCE2 / Project Management Certification
• Business or Systems Analysis Certification
• ITIL or COBIT Framework knowledge

Requirements

• Ten (10) + years in IT, with at least 5 years in JD Edwards E1 and World (Functional and Technical)
• Experience with AllOut Security administration
• ERP System experience: JD Edwards (mandatory), SAP or Navision (advantageous)
• Deep knowledge of Active Directory, vulnerability management, and other security tools
• Experience managing security frameworks on AS / 400 systems
• CNC and JDE deployment management
• Business analysis, project implementation, and end-user training
• Knowledge of compliance standards (SOX, King IV)
• Process mapping and documentation (Visio, Lucidchart, etc.)
• Report development and analytics (QlikView, SQL, etc.)

Duties

• Design and maintain system security protocols (JDE E1 and World)
• Administer and configure AllOut Security, ensuring segregation of duties and audit readiness
• Monitor and maintain integrations and support for systems connected to JD Edwards
• Perform system analysis, vulnerability assessments, and conduct internal audits in line with King III / IV and SOX standards
• Lead and support audits, risk assessments, and disaster recovery processes
• Manage user roles, responsibilities, and access rights across systems
• Support CNC, AS / 400 system management, and I-series server operations
• Write, update, and maintain technical documentation and user procedures
• Lead incident responses, forensic analysis, and breach investigations
• Train and support end-users and departmental teams
• Provide help desk support and develop end-user documentation
• Drive and support security awareness campaigns
• Proactively identify areas for process and security improvement
• Address audit queries as needed
• Perform ad hoc duties within reasonable scope

• Matric Certificate with Maths
• B Com in Accountancy or equivalent
• JDE Common Foundation
• JDE Technical Foundation
• AllOut Security Certification
• CNC Certification (advantageous)
• AS/400 CL Programming
• PRINCE2 / Project Management Certification
• Business or Systems Analysis Certification
• ITIL or COBIT Framework knowledge.

• Ten (10) + years in IT, with at least 5 years in JD Edwards E1 and World (Functional and Technical)
• Experience with AllOut Security administration
• ERP System experience: JD Edwards (mandatory), SAP or Navision (advantageous)
• Deep knowledge of Active Directory, QlikView, and vulnerability management
• Experience managing security frameworks on AS/400 systems;
• CNC and JDE deployment management
• Business analysis, project implementation, and end-user training
• Knowledge of compliance standards (SOX, King IV);
• Process mapping and documentation (Visio, Lucidchart, etc.)
• Report development and analytics (QlikView, SQL, etc.).

• Design and maintain system security protocols (JDE E1 and World)
• Administer and configure AllOut Security, ensuring segregation of duties and audit readiness
• Monitor and maintain integrations and support for various systems connected to JD Edwards
• Perform system analysis, vulnerability assessments, and conduct internal audits in alignment with King III/IV and SOX
• Lead and support audits, risk assessments, and disaster recovery processes
• Manage user roles, responsibilities, and access rights across systems
• Support CNC, AS/400 system management, and I-series server operations
• Write, update, and maintain technical documentation and user procedures
• Lead incident responses, forensic analysis, and investigations of breaches
• Train and support end-users and teams across departments;
• Provide help desk support and develop end-user documentation
• Drive and support security awareness campaigns
• Proactively identify areas of process and security improvement
• Attend to audit queries as and when required
• Perform ad hoc duties as and when required within reasonable job scope.