172 Cybersecurity Professionals jobs in South Africa

Share this job as a link in your status update to LinkedIn.

Job Title

Cybersecurity Engineer

Location

King George, VA 22485 US (Primary)

Category

Information Technology

Job Type

Full-time

Staff

Education

Bachelor's Degree

Travel

Security Clearance Required

Ability to obtain and maintain a U.S. Security Clearance

Job Description

TMC Technologies is looking for a Cybersecurity Engineer to join our team supporting the mission of the Naval Surface Warfare Dahlgren Division (NSWCDD). The TMC team provides development and maintenance of tactical initiatives and baseline developments in support of Naval Weapons Systems /Combat Systems (e.g. AEGIS, Aegis BMD, FMS, etc). The Computer Program Engineering Services (CPES) provided include support for Weapon System Element and Combat System Domain Engineering, Fleet and Land Based Test Site Support.

TASKING:

Engineering support for technical implementation of cybersecurity solutions in conjunction with the Navy tactical configuration development and associated tactical applications, applying principles and techniques of network engineering, cybersecurity engineering, and systems administration.

Conduct vulnerability research, malware analysis, penetration testing, and reverse engineering development of computer network operations, as required.

Conduct installation and integration of Commercial Off-The-Shelf (COTS) cybersecurity tools and applications and perform proof-of-concept, product evaluation of those tools and applications to determine feasibility of meeting the Navy’s cybersecurity requirements.

Responsible for researching, deriving, and documenting cybersecurity requirements as they relate to Navy tactical applications at the A-Level and B-Level specifications. These cybersecurity requirements must align with Department of Navy (DoN) cybersecurity instructions 8500.1 and NAVSEA 9400.2, plus other combat system-specific requirements documented in PEO IWS 5239.1.

Responsible for mapping and evaluating specific cybersecurity guidance and controls documented in CNSSI1253, NIST 800-53, and NIST 800-125B, etc., against the associated A-level and B-level specification cybersecurity requirements.

Generate Plans of Action and Milestones (POA&Ms) for the tasking and ability to monitor and track task completion against plan and define mitigation strategies due to task re-planning

Job Requirements

Ability to obtain a Secret security clearance (US Citizenship required)

Bachelor’s Degree in Computer Science or related field

Knowledge of cybersecurity concepts that identify, exploit, protect against, or mitigate cyber security vulnerabilities

Knowledge of Virtual Machine (VM) architecture and configurations is preferred

We are equal opportunity/affirmative action employers, committed to diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or protected veteran status, or any other protected characteristic under state or local law.

About Reflex

Established in 2000 in South Africa, Reflex has evolved from modest origins to become a distinguished provider of Information and Communication Technology (ICT) solutions. Reflex specialises in delivering innovative ICT solutions across various industries, earning a sterling reputation for our excellence in the retail sector and beyond. With a robust network of partnerships, we pride ourselves on our ability to swiftly address the technological needs of our clients.

Our portfolio of ICT solutions spans various industries. ReflexCarrier understands what is needed to build, manage, and operate complex backbone networks simply. Our solutions are tailored for Fibre Network Operators (FNO), Internet Service Providers (ISPs), and those looking for comprehensive Managed Connectivity solutions.

On the other hand, our Enterprise Solutions take the complexity out of technology, allowing you to focus on what you do best. We provide seamless, high-performance solutions for connectivity, communications, workplace management, cloud, and cybersecurity services.

Together, both divisions reflect our core values of expertise, clarity, and client-centricity. We take pride in being large enough to offer extensive support while remaining small enough to provide personalised service. At Reflex, our clients are at the centre of everything we do, and we’re committed to delivering reliable, jargon-free solutions that drive your success.

The Cyber Security Consultant is responsible for assessing, designing, and implementing security measures to protect an organization's digital assets. They work closely with clients to identify vulnerabilities, develop security strategies, and ensure compliance with industry standards and regulations.

• Conduct Security Assessments: Evaluate the existing security measures of an organization and identify vulnerabilities and weaknesses.
• Develop Security Strategies: Create and implement effective security protocols, policies, and procedures to protect against cyber threats.
• Perform Penetration Testing: Conduct rigorous testing, including penetration testing, to simulate attacks and test the strength of security measures.
• Provide Technical Advice: Offer guidance and instruction on best practices for cybersecurity.
• Keep abreast of all aspects of cybersecurity: Keep up to date with the latest industry trends, threats, and security measures.
• Respond to Incidents: Lead the incident response process, investigating causes and recommending corrective actions.
• Train Staff: Educate staff on cybersecurity related principles, best practices and information security procedures.
• Create Reports: Develop and deliver comprehensive reports on findings and recommendations to management and stakeholders.
• Advise on Compliance: Ensure that security measures comply with relevant regulations and standards.

• 3-5 years of experience in cybersecurity or a related field.
• Original Equipment Manufacturer/Vendor technology certifications.
• Strong understanding of security principles, risk management, and relevant technologies.
• Excellent communication and presentation skills, with the ability to explain complex technical concepts to non-technical audiences.
• Ability to work collaboratively with clients and internal teams.
• Strong problem-solving skills and attention to detail.
• A responsible individual who adopts a result driven approach.
• Ability to work well under pressure and meet tight deadlines.
• Positive attitude and a passion for the role.
• Strong leadership and management skills.
• Strong analytical and problem-solving skills.

• Perform log ingestion, define use cases, and create alerts for critical assets.
• Perform daily SIEM health checks and remediate accordingly.
• Monitor security alerts and events using various tools and technologies.
• Analyze and investigate security incidents to identify potential threats.
• Collaborate with team members to develop and implement effective monitoring strategies.
• Using IOCs and threat intelligence, perform threat hunting across environment.

• Respond promptly to security incidents, provide initial analysis, conduct business impact assessment, isolate, eradiate and recovery from threats.
• Document and report incidents, ensuring accurate and comprehensive records.
• Follow established incident response procedures, playbooks and contribute to their enhancement.

• Manage and maintain endpoint security and EDR solutions.
• Perform daily health checks endpoint security and EDR solutions and remediate accordingly.
• Conduct regular scans and assessments to identify and mitigate potential vulnerabilities.
• Work with IT teams to ensure endpoint security configurations align with organizational standards.

• Assist in the identification and prioritization of vulnerabilities within the organization's infrastructure.
• Collaborate with system owners and IT teams to remediate identified vulnerabilities.
• Stay informed about the latest security threats and vulnerabilities.

• Monitor and analyze email traffic for potential security threats.
• Respond to and mitigate email-borne security incidents.
• Work with email security solutions to enhance protection against phishing and malware attacks.

• Relevant degree or advanced diploma in Computer Science, Information Systems, Business or related field, or equivalent combination of education/experience.
• One or more certifications in: EC-Council SOC, Security+, AWS Certifications, Microsoft Certifications, Google Certifications
• Must have 3-6 years' experience in a Cybersecurity related role.
• Practical experience with system monitoring SIEM, assessment, and reporting tools (ArcSight, IBM QRadar, Splunk, Sentinel, Exabeam, SIEMonster, AlientVault etc.)
• Practical experience with EDR and XDR tools.
• Proficiency in network security, operating systems, and security technologies.
• Experience with common information technologies (Windows, VMware, and Cisco as well as some UNIX, Linux).
• Experience with Vulnerability and Malware Analysis (threat and attack analysis).
• Experience with security tools (WAF, Proxy, DNS, IDS, firewalls, anti-virus, data loss prevention, etc.).
• Knowledge of Cloud Security Operations (SaaS, PaaS, IaaS), Mobile Architecture, Network and Application Security and/or Data Protection
• Technology experience to be considered; Security+; Microsoft Security Certifications (MS-SC200); Azure Certifications, Recognised SOC certification

• Ability to work in independent environments under aggressive timelines.
• Ability to develop and maintain working relationships in a global environment.
• Excellent analytical and problem-solving skills
• Outstanding written skills for preparing reports and briefings.

• Communicates Effectively - conveys information and communicates ideas in a clear, concise and impactful manner
• Decision Quality - consistently makes timely, well-rounded and informed decisions
• Ensures Accountability - takes accountability and ensures others are held to account on agreed upon performance targets
• Manages Complexity - interprets and simplifies complex and contradictory information when resolving organisational problems
• Tech Savvy - leverages new technology to enhance productivity, improve problem solving, and support business growth

• An appropriate, recognised qualification at NǪF Level 7 or equivalent.
• A relevant NǪF level 8 qualification will be an advantage.
• CISSP, CSIM, and CASP+ certification will be an advantage.

• Eight years relevant work experience within a cybersecurity environment.

• Encryption and Cryptography.
• Incident response and Forensics.
• Risk management.
• Security architecture and design.
• Security frameworks and standards.
• Threat detection and response.
• Vulnerability management.
• Problem solving.
• Stakeholder engagement.

• Design enterprise-wide security frameworks and solutions aligned with organisational goals and
• compliance requirements.
• Ensure architecture supports scalability, resilience, and adaptability to emerging threats.
• Perform white box penetration testing and vulnerability scans and oversee grey/black box
• penetration testing and vulnerability scans.
• Design, implement and maintain appropriate solutions.
• Research, evaluate, and recommend emerging security technologies.
• Work with ICT, DevOps, and software development teams to embed security in system designs.
• Support internal and external audits by providing detailed documentation and evidence of
• security controls.
• Prepare reports on incident responses, vulnerabilities, and system performance.
• Prepare accurate budget forecasts for cybersecurity projects and tools.
• Work with the procurement team to evaluate, negotiate, and manage contracts for security tools
• and services.
• Assess and plan for the financial scalability of cybersecurity solutions as the organisation grows.
• Establish monitoring processes for system performance and security metrics.
• Conduct risk assessments to identify vulnerabilities and prioritise remediation efforts.
• Establish and maintain security policies, standards, procedures and guidelines.
• Promote cybersecurity awareness and training programs across all units.
• Work closely with business to align cybersecurity goals with the overall business strategy

The ideal candidate will be responsible for protecting enterprise systems, networks, and client environments from internal and external threats. This role involves proactive threat detection, vulnerability assessments, incident response, and security architecture reviews across hybrid and cloud platforms.

· Monitor, analyze, and respond to security incidents across on-premises, cloud, and hybrid environments.

· Perform vulnerability assessments, threat modeling, and penetration testing using industry tools and frameworks.

· Implement and manage endpoint protection platforms, EDR, and SIEM systems (e.g., SentinelOne, Sophos, FortiSIEM, Microsoft Defender).

· Develop and enforce IT security policies, procedures, and awareness training programs.

· Coordinate incident response efforts and lead investigations, containment, and remediation.

· Manage firewall policies, VPN configurations, and access control across networks.

· Conduct security reviews of applications, systems, and infrastructure for compliance and best practices.

· Assist in client cybersecurity onboarding and provide expert advisory support to clients and internal teams.

· Stay current on evolving cyber threats, vulnerabilities, and regulatory compliance standards (e.g., POPIA, GDPR, ISO 27001).

· Document risks, controls, and maintain reports for audits and management dashboards.

· Minimum 4 years' experience in cybersecurity, network security, or information security roles.

· Proficiency in configuring and maintaining firewalls, EDR, SIEM, anti-virus, and threat detection systems.

· Hands-on experience with security audits, vulnerability scanners, and compliance frameworks.

· Understanding of TCP/IP, DNS, IDS/IPS, email security, and authentication protocols.

· Experience with Microsoft 365 and Azure security tools (Defender for Endpoint, Purview, Conditional Access).

· Ability to manage and respond to incidents under pressure with clear documentation and communication.

· Strong analytical, troubleshooting, and reporting skills.

· Relevant certifications such as CompTIA Security+, CEH, Microsoft SC-200/SC-300, or CISSP.

· Familiarity with MDR/XDR platforms and cybersecurity frameworks (NIST, MITRE ATT&CK).

· Experience supporting cybersecurity in an MSP or client-facing environment.