54 Enterprise Security jobs in South Africa

Security Specialist in Johannesburg at Logicalis

It’s not just IT solutions, It’s IT global know-how! Logicalis is an international multi-skilled solution provider providing digital enablement services to help customers harness digital technology and innovative services to deliver powerful business outcomes.

Our customers span industries and geographical regions; and our focus is to engage in the dynamics of our customers’ vertical markets; including financial services, TMT (telecommunications, media and technology), education, healthcare, retail, government, manufacturing and professional services, and apply the skills of our 4,500 employees in modernising key digital pillars; data centre and cloud services, security and network infrastructure, workspace communications and collaboration, data and information strategies, and IT operation modernisation. We are the advocates for our customers for some of the world’s leading technology companies including Cisco, HPE, IBM, CA Technologies, NetApp, Microsoft, Oracle, VMware and ServiceNow

Logicalis employees are innovative, smart, entrepreneurial and customer centric, with a shared ambition of making Logicalis the worlds leading IT Solutions provider!

We offer speedy decision-making, opportunities for personal development, and a supportive, inclusive environment that celebrates our diversity.

Join us and become a part of something epic!

ROLE PURPOSE

The Security Operations Centre will provide defence against security breaches and actively isolate and mitigate security risks. The Security Specialist forms part of the security operations centre SOC team. The SOC Team will identify, analyse, and react to cyber security threats using a reliable set of processes and security technologies. The SOC Team includes the SOC Manager, SIEM Platform Manager, Case Manager, SOC Tier 1,2 and 3 Analysts and Security Specialists. They work with IT operational teams to address security incidents and events

quickly. The SOC Team will provide a critical layer of analysis needed to seek out any irregular activity that could suggest a security incident.

ROLE AND DELIVERY RESPONSIBILITIES:

The job role includes actively participating in the incident detection process as follows:

• Possesses in-depth knowledge of network, endpoint, threat intelligence, forensics and malware reverse Analysis, as well as the functioning of specific applications or underlying IT infrastructure
• Acts as an incident “hunter,” not waiting for escalated incidents
• Closely involved in developing, tuning, and implementing threat detection analytics
• Acts as the escalation for Tier 1 and 2 SOC Analysts
• Responds to and oversees the remediation of a declared security incident
• Completes the Root Cause Analysis Report for P1 to P4
• Provides guidance to Tier 1 and 2 SOC Analysts
• Uses threat intelligence such as updated rules and Indicators of Compromise (IOCs) to pinpoint affected systems and the extent of the attack
• Monitors shift-related metrics ensuring applicable reporting is gathered and disseminated to the SOC Manager
• Make recommendations to the SOC Manager
• Oversees the analysis on running processes and configs on affected systems.
• Undertakes in-depth threat intelligence analysis to find the perpetrator, the type of attack, and the data or systems impacted
• Oversees the containment and recovery
• Oversees the deep-dive incident analysis by correlating data from various sources
• Validates if a critical system or data set has been impacted
• Provides support for analytic methods for detecting threats
• Conducts advanced triage based on defined run books of alerts
• Undertakes threat intelligence research if need be
• Validates false positives, policy violations, intrusion attempts, security threats and potential compromises
• Undertakes security incident triage to provide necessary context prior to escalating to relevant Security Specialists to perform deeper analysis when necessary
• Further analyses alarms by method e.g. credentials compromised and by asset class
• Based on the correlation rules and alarms within the SIEM and run books, further analyses anomaly tactic using the MITRE ATT&CK framework
• Analyses event and process metadata in real-time or retrospectively, and identify suspicious files/scripts seen for the first time
• Closes tickets in the SIEM platform – this would be automatically created into Service Now
• Manages security incidents using the SIEM platform and defined operational procedures
• Performs a further investigation of potential incidents, and escalate or close events as applicable
• Validates investigation results, ensuring relevant details are passed on to Tier 2 SOC Level 2 for further event analysis
• Closes out deeper analysis and review activities
• Assist senior SOC staff with operational responsibilities

PERSON REQUIREMENTS:

EXPERIENCE:

• Strong knowledge and experience working with SIEM Solutions, QRadar, McAfee ESM, Azure Sentinel
• Proven experience with Office 365, Active Directory, Azure and Microsoft Exchange.
• Strong knowledge and experience working with Linux Operating systems
• Good experience working with Nessus or Qualys
• Good understanding of the MITRE ATT&CK framework
• Good understanding of the ITIL Framework.
• Brilliant with a support ticketing system and experience in meeting SLA targets.
• Familiarity with risk management and quality assurance control.
• Excellent interpersonal skills and professional demeanor
• Excellent verbal and written communication skills
• Candidate must be eligible to obtain National Security Clearance

QUALIFICATIONS:

• Grade 12
• AZ500,SC100
• Degree or Diploma in Computer Technology
• CompTIA A+, N+ S+
• CompTIA CySa, CISSP and CASP+ advantageous

ADDITIONAL SKILLS/ATTRIBUTES:

• Advanced Microsoft Excel experience, specifically data interpretation
• Good understanding of IT infrastructure
• A high command of the English language both written and verbal is essential.
• Self-motivated with the ability to work unsupervised.
• Punctuality
• Excellent verbal and written communication skills
• Ability to remain flexible and adapt to changing priorities with promptness, efficiency, and ease
• Possess proficient analytical and decision-making skills
• Demonstrated capacity for gathering and scrutinizing data to identify issues, opportunities, and patterns
• Proficient relationship building skills – predict customer behavior and respond accordingly
• A strong service-oriented (‘can-do’) culture, with a strong focus on the ‘internal customer’ approach, committed to exceeding customer expectations
• Good communicator with the customer environment
• Dynamic but aware of the views and feelings of others
• Able to operate as a good team player
• Drive and Energy
• Demonstrate clear purpose, enthusiasm, and commitment

If you’re interested in career opportunities, but not ready to apply, join our Talent Network to stay connected to us and receive updates on the latest job opportunities and company news.

#J-18808-Ljbffr

Security Specialist in Johannesburg at Logicalis It’s not just IT solutions, It’s IT global know-how! Logicalis is an international multi-skilled solution provider providing digital enablement services to help customers harness digital technology and innovative services to deliver powerful business outcomes. Our customers span industries and geographical regions; and our focus is to engage in the dynamics of our customers’ vertical markets; including financial services, TMT (telecommunications, media and technology), education, healthcare, retail, government, manufacturing and professional services, and apply the skills of our 4,500 employees in modernising key digital pillars; data centre and cloud services, security and network infrastructure, workspace communications and collaboration, data and information strategies, and IT operation modernisation. We are the advocates for our customers for some of the world’s leading technology companies including Cisco, HPE, IBM, CA Technologies, Net App, Microsoft, Oracle, VMware and Service Now Logicalis employees are innovative, smart, entrepreneurial and customer centric, with a shared ambition of making Logicalis the worlds leading IT Solutions provider! We offer speedy decision-making, opportunities for personal development, and a supportive, inclusive environment that celebrates our diversity. Join us and become a part of something epic! ROLE PURPOSE The Security Operations Centre will provide defence against security breaches and actively isolate and mitigate security risks. The Security Specialist forms part of the security operations centre SOC team. The SOC Team will identify, analyse, and react to cyber security threats using a reliable set of processes and security technologies. The SOC Team includes the SOC Manager, SIEM Platform Manager, Case Manager, SOC Tier 1,2 and 3 Analysts and Security Specialists. They work with IT operational teams to address security incidents and events quickly. The SOC Team will provide a critical layer of analysis needed to seek out any irregular activity that could suggest a security incident. ROLE AND DELIVERY RESPONSIBILITIES: The job role includes actively participating in the incident detection process as follows: Possesses in-depth knowledge of network, endpoint, threat intelligence, forensics and malware reverse Analysis, as well as the functioning of specific applications or underlying IT infrastructure Acts as an incident “hunter,” not waiting for escalated incidents Closely involved in developing, tuning, and implementing threat detection analytics Acts as the escalation for Tier 1 and 2 SOC Analysts Responds to and oversees the remediation of a declared security incident Completes the Root Cause Analysis Report for P1 to P4 Provides guidance to Tier 1 and 2 SOC Analysts Uses threat intelligence such as updated rules and Indicators of Compromise (IOCs) to pinpoint affected systems and the extent of the attack Monitors shift-related metrics ensuring applicable reporting is gathered and disseminated to the SOC Manager Make recommendations to the SOC Manager Oversees the analysis on running processes and configs on affected systems. Undertakes in-depth threat intelligence analysis to find the perpetrator, the type of attack, and the data or systems impacted Oversees the containment and recovery Oversees the deep-dive incident analysis by correlating data from various sources Validates if a critical system or data set has been impacted Provides support for analytic methods for detecting threats Conducts advanced triage based on defined run books of alerts Undertakes threat intelligence research if need be Validates false positives, policy violations, intrusion attempts, security threats and potential compromises Undertakes security incident triage to provide necessary context prior to escalating to relevant Security Specialists to perform deeper analysis when necessary Further analyses alarms by method e.g. credentials compromised and by asset class Based on the correlation rules and alarms within the SIEM and run books, further analyses anomaly tactic using the MITRE ATT&CK framework Analyses event and process metadata in real-time or retrospectively, and identify suspicious files/scripts seen for the first time Closes tickets in the SIEM platform – this would be automatically created into Service Now Manages security incidents using the SIEM platform and defined operational procedures Performs a further investigation of potential incidents, and escalate or close events as applicable Validates investigation results, ensuring relevant details are passed on to Tier 2 SOC Level 2 for further event analysis Closes out deeper analysis and review activities Assist senior SOC staff with operational responsibilities PERSON REQUIREMENTS: EXPERIENCE: Strong knowledge and experience working with SIEM Solutions, QRadar, Mc Afee ESM, Azure Sentinel Proven experience with Office 365, Active Directory, Azure and Microsoft Exchange. Strong knowledge and experience working with Linux Operating systems Good experience working with Nessus or Qualys Good understanding of the MITRE ATT&CK framework Good understanding of the ITIL Framework. Brilliant with a support ticketing system and experience in meeting SLA targets. Familiarity with risk management and quality assurance control. Excellent interpersonal skills and professional demeanor Excellent verbal and written communication skills Candidate must be eligible to obtain National Security Clearance QUALIFICATIONS: Grade 12 AZ500, SC100 Degree or Diploma in Computer Technology Comp TIA A+, N+ S+ Comp TIA Cy Sa, CISSP and CASP+ advantageous ADDITIONAL SKILLS/ATTRIBUTES: Advanced Microsoft Excel experience, specifically data interpretation Good understanding of IT infrastructure A high command of the English language both written and verbal is essential. Self-motivated with the ability to work unsupervised. Punctuality Excellent verbal and written communication skills Ability to remain flexible and adapt to changing priorities with promptness, efficiency, and ease Possess proficient analytical and decision-making skills Demonstrated capacity for gathering and scrutinizing data to identify issues, opportunities, and patterns Proficient relationship building skills – predict customer behavior and respond accordingly A strong service-oriented (‘can-do’) culture, with a strong focus on the ‘internal customer’ approach, committed to exceeding customer expectations Good communicator with the customer environment Dynamic but aware of the views and feelings of others Able to operate as a good team player Drive and Energy Demonstrate clear purpose, enthusiasm, and commitment If you’re interested in career opportunities, but not ready to apply, join our Talent Network to stay connected to us and receive updates on the latest job opportunities and company news. #J-18808-Ljbffr

Security Specialist in Johannesburg at Logicalis It’s not just IT solutions, It’s IT global know-how! Logicalis is an international multi-skilled solution provider providing digital enablement services to help customers harness digital technology and innovative services to deliver powerful business outcomes. Our customers span industries and geographical regions; and our focus is to engage in the dynamics of our customers’ vertical markets; including financial services, TMT (telecommunications, media and technology), education, healthcare, retail, government, manufacturing and professional services, and apply the skills of our 4,500 employees in modernising key digital pillars; data centre and cloud services, security and network infrastructure, workspace communications and collaboration, data and information strategies, and IT operation modernisation. We are the advocates for our customers for some of the world’s leading technology companies including Cisco, HPE, IBM, CA Technologies, Net App, Microsoft, Oracle, VMware and Service Now Logicalis employees are innovative, smart, entrepreneurial and customer centric, with a shared ambition of making Logicalis the worlds leading IT Solutions provider! We offer speedy decision-making, opportunities for personal development, and a supportive, inclusive environment that celebrates our diversity. Join us and become a part of something epic! ROLE PURPOSE The Security Operations Centre will provide defence against security breaches and actively isolate and mitigate security risks. The Security Specialist forms part of the security operations centre SOC team. The SOC Team will identify, analyse, and react to cyber security threats using a reliable set of processes and security technologies. The SOC Team includes the SOC Manager, SIEM Platform Manager, Case Manager, SOC Tier 1,2 and 3 Analysts and Security Specialists. They work with IT operational teams to address security incidents and events quickly. The SOC Team will provide a critical layer of analysis needed to seek out any irregular activity that could suggest a security incident. ROLE AND DELIVERY RESPONSIBILITIES: The job role includes actively participating in the incident detection process as follows: Possesses in-depth knowledge of network, endpoint, threat intelligence, forensics and malware reverse Analysis, as well as the functioning of specific applications or underlying IT infrastructure Acts as an incident “hunter,” not waiting for escalated incidents Closely involved in developing, tuning, and implementing threat detection analytics Acts as the escalation for Tier 1 and 2 SOC Analysts Responds to and oversees the remediation of a declared security incident Completes the Root Cause Analysis Report for P1 to P4 Provides guidance to Tier 1 and 2 SOC Analysts Uses threat intelligence such as updated rules and Indicators of Compromise (IOCs) to pinpoint affected systems and the extent of the attack Monitors shift-related metrics ensuring applicable reporting is gathered and disseminated to the SOC Manager Make recommendations to the SOC Manager Oversees the analysis on running processes and configs on affected systems. Undertakes in-depth threat intelligence analysis to find the perpetrator, the type of attack, and the data or systems impacted Oversees the containment and recovery Oversees the deep-dive incident analysis by correlating data from various sources Validates if a critical system or data set has been impacted Provides support for analytic methods for detecting threats Conducts advanced triage based on defined run books of alerts Undertakes threat intelligence research if need be Validates false positives, policy violations, intrusion attempts, security threats and potential compromises Undertakes security incident triage to provide necessary context prior to escalating to relevant Security Specialists to perform deeper analysis when necessary Further analyses alarms by method e.g. credentials compromised and by asset class Based on the correlation rules and alarms within the SIEM and run books, further analyses anomaly tactic using the MITRE ATT&CK framework Analyses event and process metadata in real-time or retrospectively, and identify suspicious files/scripts seen for the first time Closes tickets in the SIEM platform – this would be automatically created into Service Now Manages security incidents using the SIEM platform and defined operational procedures Performs a further investigation of potential incidents, and escalate or close events as applicable Validates investigation results, ensuring relevant details are passed on to Tier 2 SOC Level 2 for further event analysis Closes out deeper analysis and review activities Assist senior SOC staff with operational responsibilities PERSON REQUIREMENTS: EXPERIENCE: Strong knowledge and experience working with SIEM Solutions, QRadar, Mc Afee ESM, Azure Sentinel Proven experience with Office 365, Active Directory, Azure and Microsoft Exchange. Strong knowledge and experience working with Linux Operating systems Good experience working with Nessus or Qualys Good understanding of the MITRE ATT&CK framework Good understanding of the ITIL Framework. Brilliant with a support ticketing system and experience in meeting SLA targets. Familiarity with risk management and quality assurance control. Excellent interpersonal skills and professional demeanor Excellent verbal and written communication skills Candidate must be eligible to obtain National Security Clearance QUALIFICATIONS: Grade 12 AZ500, SC100 Degree or Diploma in Computer Technology Comp TIA A+, N+ S+ Comp TIA Cy Sa, CISSP and CASP+ advantageous ADDITIONAL SKILLS/ATTRIBUTES: Advanced Microsoft Excel experience, specifically data interpretation Good understanding of IT infrastructure A high command of the English language both written and verbal is essential. Self-motivated with the ability to work unsupervised. Punctuality Excellent verbal and written communication skills Ability to remain flexible and adapt to changing priorities with promptness, efficiency, and ease Possess proficient analytical and decision-making skills Demonstrated capacity for gathering and scrutinizing data to identify issues, opportunities, and patterns Proficient relationship building skills – predict customer behavior and respond accordingly A strong service-oriented (‘can-do’) culture, with a strong focus on the ‘internal customer’ approach, committed to exceeding customer expectations Good communicator with the customer environment Dynamic but aware of the views and feelings of others Able to operate as a good team player Drive and Energy Demonstrate clear purpose, enthusiasm, and commitment If you’re interested in career opportunities, but not ready to apply, join our Talent Network to stay connected to us and receive updates on the latest job opportunities and company news. #J-18808-Ljbffr

Eastern Cape, South Africa | Posted on 15/08/2025

The duties of the Security Specialist include (but are not limited to) the following:

• Assist with the delivery of various solutions to ensure that the Department ICT infrastructure solutions are protected against vulnerabilities. Required to work with the ECDOH ICT team to ensure compliance with best-practice security standards.
  
• Assist the Department with information security governance, incident and risk management and the management of the department systems and antivirus security solutions.
  
• Information security governance.
  
• Information security program development and management.
  
• Information security incident management.
  
• Ensure documentation is kept up to date.
  
• Interact with customers for fault resolution and training on new and modified applications.
  
• Liaise with Business teams, Application Support and IT teams to identify and resolve issues.
  
• Assist with training users.
  
• Plan, organize and control own work effort, including regular progress feedback to own and other relevant areas.
  
• Any other related tasks as required by the line manager.
  

Requirements

• Degree/National Diploma in Computer Science/Information systems.
  
• Minimum of 6 years of working experience in Information security.
  
• OR a Grade 12 with at least 10 years' experience In Information security.
  
• ISACA CISM certified.
  
• Working experience as an ICT security specialist will be an added advantage.
  
• Be able to learn industry concepts quickly and business processes.
  
• Windows systems update management administration and management (WSUS)
  
• Microsoft Virus and Threat protection management
  
• Windows server security management; Firewall management
  

#J-18808-Ljbffr

Join to apply for the Cyber Security Specialist role at ExecutivePlacements.com - The JOB Portal

1 week ago Be among the first 25 applicants

Join to apply for the Cyber Security Specialist role at ExecutivePlacements.com - The JOB Portal

Get AI-powered advice on this job and more exclusive features.

SUMMARY:

Psybergate is an IT company that builds bespoke software solutions and provides highly skilled resources to its clients.

Cyber Security Specialist

Recruiter:

Penny The Recruiter

Job Ref:

PR000625/RN

Date posted:

Tuesday, June 24, 2025

Location:

Midrand, South Africa

Salary:

Monthly

SUMMARY:

Psybergate is an IT company that builds bespoke software solutions and provides highly skilled resources to its clients.

We are looking for a Cybersecurity Engineer to join our client based in JHB North.

An established AWS-driven technology solutions company is looking for a Cybersecurity Engineer who thrives in both technical execution and client-facing engagement. If you’re passionate about cloud security and enjoy designing and deploying secure environments for real clients, this role is for you. This is a 6-month Contract with the view to go perm.

POSITION INFO:

What you will be doing:

• Collaborate with the sales team as the technical security expert during pre-sales engagements.
• Conduct client workshops, requirements gathering, and security assessments.
• Design, present, and implement cloud-based security architectures on AWS.
• Configure and deploy AWS security services.
• Stay updated with AWS security trends and contribute to continuous improvement of offerings.
  
  

What we are looking for :

Technical Expertise

• 6+ years in IT security, with recent experience in cloud (AWS) security.
• Strong experience with AWS-native tools
• Familiarity with security benchmarks and frameworks (CIS, NIST, ISO 27001, etc.).
  
  

Consulting/Pre-Sales Skills

• Prior experience supporting pre-sales or working in a client-facing tech role.
• Excellent ability to explain technical solutions to both technical and non-technical audiences.
• Skilled in preparing diagrams, proposals, or solution documentation.
  
  

Certifications

• AWS Security Specialty certification is a strong advantage.
• Other relevant certs like Security+, CEH, CISSP, etc. will be considered.
  
  

Please note that if you do not hear from us within 3 weeks, consider your application unsuccessful.

Seniority level

• Seniority level Mid-Senior level

Employment type

• Employment type Full-time

Job function

• Job function Engineering and Information Technology
• Industries Advertising Services

Referrals increase your chances of interviewing at ExecutivePlacements.com - The JOB Portal by 2x

Sign in to set job alerts for “Cyber Security Specialist” roles.

Johannesburg, Gauteng, South Africa 1 week ago

Johannesburg Metropolitan Area 2 days ago

Talent Pool: Information Security Administrator

Johannesburg Metropolitan Area 2 days ago

Johannesburg, Gauteng, South Africa 8 hours ago

Johannesburg, Gauteng, South Africa 3 days ago

Illovo, Gauteng, South Africa 1 month ago

Johannesburg, Gauteng, South Africa 1 week ago

Johannesburg Metropolitan Area 5 days ago

Johannesburg Metropolitan Area 1 week ago

Johannesburg, Gauteng, South Africa 2 months ago

IT, Network and Cybersecurity Support Technician

Johannesburg, Gauteng, South Africa 1 week ago

Johannesburg, Gauteng, South Africa 1 week ago

Woodmead, Gauteng, South Africa 1 week ago

Johannesburg, Gauteng, South Africa 1 month ago

Messaging Security Analyst I (Threat Protection)

Johannesburg, Gauteng, South Africa 5 days ago

Johannesburg, Gauteng, South Africa 7 months ago

Johannesburg, Gauteng, South Africa 4 days ago

Associate Messaging Security Analyst - Threat Protection

Johannesburg, Gauteng, South Africa 5 days ago

Johannesburg, Gauteng, South Africa 1 week ago

Customer Success Engineer - Cyber Security Security Analyst - Penetration Testing & Red Teaming

Johannesburg, Gauteng, South Africa 1 week ago

Johannesburg, Gauteng, South Africa 1 week ago

Randburg, Gauteng, South Africa 8 hours ago

Randburg, Gauteng, South Africa 8 hours ago

Illovo, Gauteng, South Africa 8 months ago

Associate Messaging Security Analyst - Threat Protection

Johannesburg, Gauteng, South Africa 1 week ago

Johannesburg, Gauteng, South Africa 1 week ago

Johannesburg, Gauteng, South Africa 1 week ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Job & Company Description: An opportunity has become available for a Information Cyber Security Specialist to join a leading and well established multi-listed client in Durban. The successful candidate will have exposure to vulnerability management, to build architectural frameworks as well a doing risk assessments amongst other key functions. In essence,we are looking for a techie who has moved into the information security space from a strategic level dealing with Security, Risk, Vulnerability and Compliance. Job Experience & Skills Required: Minimum of a Diploma or Bachelor Degree in IT, Information Security or Information Systems 3+ years' Information Security specialising in Vulnerability Management and Cybersecurity Background experience on Network, Infrastructure and Web Security (advantageous) Experience doing risk assessments from scratch Build architectural frameworks would be a strong advantage Knowledge of ISO 27001 and NIST (Nice to have) Any of the following certifications would be advantageous: CISSP, CISM, CISA, CISO If you are interested in this opportunity, please apply directly or email your CV to For more IT jobs, please visit If you have not had any response in two weeks, please consider the vacancy application unsuccessful. Your profile will be kept on our database for any other suitable roles / positions. For more information contact: Luan French on / Branch Manager #J-18808-Ljbffr

Eastern Cape, South Africa | Posted on 15/08/2025 The duties of the Security Specialist include (but are not limited to) the following: Assist with the delivery of various solutions to ensure that the Department ICT infrastructure solutions are protected against vulnerabilities. Required to work with the ECDOH ICT team to ensure compliance with best-practice security standards.Assist the Department with information security governance, incident and risk management and the management of the department systems and antivirus security solutions.Information security governance.Information security program development and management.Information security incident management.Ensure documentation is kept up to date.Interact with customers for fault resolution and training on new and modified applications.Liaise with Business teams, Application Support and IT teams to identify and resolve issues.Assist with training users.Plan, organize and control own work effort, including regular progress feedback to own and other relevant areas.Any other related tasks as required by the line manager. Requirements Degree/National Diploma in Computer Science/Information systems.Minimum of 6 years of working experience in Information security.OR a Grade 12 with at least 10 years' experience In Information security.ISACA CISM certified.Working experience as an ICT security specialist will be an added advantage.Be able to learn industry concepts quickly and business processes.Windows systems update management administration and management (WSUS)Microsoft Virus and Threat protection managementWindows server security management; Firewall management #J-18808-Ljbffr

The duties of the Security Specialist include (but are not limited to) the following: Assist with the delivery of various solutions to ensure that the Department ICT infrastructure solutions are protected against vulnerabilities. Required to work with the ECDOH ICT team to ensure compliance with best-practice security standards.Assist the Department with information security governance, incident and risk management and the management of the department systems and antivirus security solutions.Information security governance.Information risk management.Information security program development and management.Information security incident management.Ensure documentation is kept up to date.Interact with customers for fault resolution and training on new and modified applications.Liaise with Business teams, Application Support and IT teams to identify and resolve issues.Assist with training users.Plan, organize and control own work effort, including regular progress feedback to own and other relevant areas.Any other related tasks as required by the line manager.RequirementsDegree/National Diploma in Computer Science/Information systems.Minimum of 6 years of working experience in Information security.OR a Grade 12 with at least 10 years' experience In Information security.ISACA CISM certified.Working experience as an ICT security specialist will be an added advantage.Be able to learn industry concepts quickly and business processes.Windows systems update management administration and management (WSUS)Microsoft Virus and Threat protection managementWindows server security management; Firewall managementECDoH VPN managementManagement of ICT security threats

Job Description

Objectives of the role:

• Guard all company data, particularly sensitive information, from both internal and external threats by designing broad defences against would-be intruders.
• Take the lead in day-to-day monitoring for unusual activities, implement defensive protocols, and report incidents.
• Collaborate with other members of the cybersecurity team to develop new protocols, layers of protection, and other proactive and defensive systems for remaining          ahead of cybercriminals.
• Maintain documentation of security guidelines, procedures, standards, and controls.
• Maintain knowledge of current cybercrime tactics.

Respons bilities:

• Collect data on current security measures for risk analysis, and write systems status reports regularly.
• Monitor constantly for attacks and run appropriate defensive protocols if a breach occurs.
• Conduct testing to identify vulnerabilities, and collaborate with cybersecurity team to update defensive protocols when necessary.
• Configure antivirus systems, firewalls, data centre and software updates with a security-first mindset.
• Grant credentials to authorized users, monitor access-related activities, and check for unregistered information changes.
• Help lead employee training to prevent phishing and other forms of cyberattack.

Job Requirements:

Requ red skills and qualifications:

• Three to five years of experience in cybersecurity at a midsize or large company in our industry.
• Deep knowledge of IT, including hardware, software, and networks.
• Meticulous eye for detail and an ability to multitask in a fast-paced environment.
• Strong abilities in critical thinking, problem-solving, logic, and forensics.
• Excellent verbal and written communication skills.
• Ability to work successfully in both individual and team settings.
• Ability to think like a hacker in order to stay ahead of threats.

Qualif cations and Certification:

• Bachelor’s degree (or equivalent) in information systems, information technology, or related field.
• CompTIA Security+, CISSP ( Certified Information  Systems Security Professional.