1,222 Security Engineer jobs in South Africa

Company Description

Duxbury Networking has been a leader in specialized networking distribution for over forty years. We offer channel partners and their customers a full suite of technical solutions, distinguished by our value-added technical services and expert support. Our product portfolio covers Networking, Wireless, Integrated Surveillance, and Cybersecurity Solutions. We strive to build strong partnerships with clients, who view us as trusted advisors ready to exceed expectations and seamlessly integrate with their operations.

About the Role:

As a Cyber Security Engineer, you will play a key role in strengthening and maintaining our clients' security posture. You'll work alongside our networking and infrastructure teams to deploy, manage, and support critical security solutions.

Key Responsibilities:

• Deploy and manage security solutions such as firewalls and endpoint protection.
• Support the design and implementation of secure network environments.
• Monitor, troubleshoot, and improve existing security systems.
• Collaborate with the team to respond to security incidents and support remediation efforts.

Requirements:

• Minimum
  3 years of hands-on experience
  in cyber security engineering.
• Strong knowledge of
  networking fundamentals
  and security concepts.
• Proven experience with deploying and managing
  firewalls and endpoint protection solutions
  .
• Problem-solving mindset and ability to work independently as well as part of a team.

What We Offer:

• An opportunity to grow your career with a forward-thinking team.
• Exposure to diverse projects across security and networking domains.
• A collaborative environment where innovation and learning are encouraged.

Position Overview

We are seeking a skilled Network Security Engineer to design, implement, and maintain secure network infrastructures. The role involves safeguarding systems, data, and networks from cyber threats, ensuring compliance with security policies, and proactively identifying vulnerabilities.

Key Responsibilities

Design, configure, and maintain firewalls, VPNs, IDS/IPS, and other security solutions.

Monitor network traffic and security alerts to detect and respond to threats.

Conduct vulnerability assessments and penetration testing to identify risks.

Implement security policies, standards, and best practices.

Manage and troubleshoot security incidents, escalating when necessary.

Maintain secure connectivity for on-premise, cloud, and hybrid environments.

Ensure compliance with industry regulations (e.g., ISO 27001, GDPR, POPIA, PCI DSS).

Collaborate with IT teams to integrate security measures into all network systems.

Keep up to date with the latest cyber threats, tools, and technologies.

Prepare reports and documentation on security posture, incidents, and improvements.

Qualifications & Skills

Bachelor's degree in Computer Science, Information Technology, or related field (or equivalent experience).

Proven experience as a Network Security Engineer, Security Analyst, or similar role.

Strong knowledge of networking (TCP/IP, routing, switching, DNS, DHCP).

Hands-on experience with firewalls (Cisco, Palo Alto, Fortinet, etc.).

Familiarity with SIEM, intrusion detection/prevention, endpoint protection, and encryption.

Understanding of cloud security (AWS, Azure, GCP) and VPN technologies.

Relevant certifications (e.g., CCNA Security, CCNP Security, CEH, CISSP, CompTIA Security+).

Excellent problem-solving and communication skills.

Ability to work independently and as part of a team.

Job Type: Full-time

Pay: From R569 364,00 per year

Work Location: In person

Bachelors degree /Diploma or equivalent experience 3+ years of IT experience 1+ years of hands-on web application penetration testing / ethical hacking experience The Purpose of Your Role Lead testing efforts on web and mobile applications and supporting systems. Replicate the actual techniques and tools used by malicious attackers in an effort to model potential external threats. Upon completion of the assessment, you will prepare reports and present the results to application owners, developers, and business unit information security teams. Analyse test results, draw conclusions from results, and develop targeted exploit examples. Consult with operations and software - development teams to ensure potential weaknesses are addressed. Contribute to the research or development of tools to assist in the vulnerability discovery process. Identify threats to improve the overall security of applications and infrastructure. Recommend solutions to help migitate risks and protect entire network i.e. Architect security solution Skills: Ability to demonstrate manual testing experience including all of OWASP Working knowledge of application security mechanisms such as authentication and authorization techniques, data validation, and the proper use of encryption Technical knowledge of, and the ability to recognize, various types of application security vulnerabilities Demonstrated experience with common penetration testing and vulnerability assessment tools such as nmap, Wireshark, Nessus, NeXpose, Kali, Metasploit, AppScan, WebInspect, Burp Suite Professional, Acunetix, Arachni, w3af, NTOSpider Knowledge of a programming or scripting language such a C, C#, Python, Objective C, Java, Javascript, SQL, Knowledge of Web Services technologies such as XML, JSON, SOAP, REST, and AJAX Knowledge of web frameworks, including XML, SOAP, J2EE, JSON and Ajax Experience with Enterprise Java or .NET web application frameworks, including Struts and Spring Proven analytical and problem solving skills, as well as the desire to assist others in solving issues Excellent interpersonal skills with a strong interest in the application security domain Excellent communication and presentation skills and a proven ability to communicate threats and facilitate progress towards long-term remediation Highly motivated with the willingness to take ownership / responsibility for their work and the ability to work alone or as part of a team. Ability to produce high level reports Preferred Skills and competencies: A+, N+, S+, CCNA Vulnerability Scanning Vulnerability Assessment Valid Certified Ethical Hacker Certificate Certified Penetration Testing Professional/ OR CISA/CISM/SISSP AND CISSP certification. NB! CV FORMAT MUST BE PDF

Job Purpose

Responsible for company-wide cybersecurity and related documents, process and record management to ensure that systems and products are safe and effective. Ensures data integrity, and that information is kept accurate and consistent unless authorized changes are made (and documented), and that confidentiality is upheld by protecting information from unauthorized access. Responsible for cybersecurity compliance and training throughout the Company.

As the IT Security Engineer, you'll support the company by taking the lead on cybersecurity and working with the team to perform ongoing operations, administration, and development of security systems, as well as implementing fixes that would protect their systems. You will continuously work towards high confidence and high accuracy detection rules leveraging abnormal or suspicious events.

Engineering degree (Computer, Software, Mechanical or Electronic

• OSCP (Offensive Security Certified Professional)
• PNPT (Practical Network Penetration Tester)
• CISSP (Certified Information Systems Security Professional)
• CCSP (Certified Cloud Security Practitioner)

• AWS Well Architected Framework
• Trusted Advisor
• GuardDuty / SCP / SSM / IAM / WAF
• Container services such as ECS / EKS
• Incident detection and response management.
• Performing penetration tests and vulnerability scans against networks and infrastructure, applications and AWS environments.
• Drafting and implementing security policies, security procedures, security design and implementation.

• ISO 14971 (risk management) compliance
• ISO 27032 (cybersecurity) compliance
• SOC2 Type 2 (with HiTrust attestation) or HiTrust experience (or equivalent)

• Deep understanding of automation, quality engineering, architectural methodologies, principles, and solution design.
• Familiarity with operational observability, including log aggregation, application performance monitoring, etc.
• Understanding of the following : Linux / Windows server and application administration and configuration, networking, scripting and automation, large scale distributed computing architecture.
• Solid knowledge of IT security (firewalls, EDR, IDS / IPS, SOAR, vulnerability scanning forensic and Threat Hunting).
• Understanding of AWS ECS & Kubernetes and Container (Docker / Podman / Containerd) with implementation, support, and design.
• Knowledge in security classification frameworks like MITRE or the cyber-attack kill chain.
• Good knowledge and understanding of industry standards, memberships, and frameworks such as CIS and SOC 2.

• Drive development standards and processes related to cybersecurity compliance.
• Monitor all cybersecurity processes, operations and infrastructure, monitoring internal and external policy and regulatory compliance.
• Review and evaluate development designs (for existing products and during design phase for new products) to identify gaps in cybersecurity controls, and drive updates to any cybersecurity or compliance documentation.
• Liaise with internal and external stakeholders to prepare for SOC2 Type 2 and HiTrust).
• Drive cybersecurity audit strategy and readiness from a dev, security and devops perspective.
• Identify, implement and maintain all security tools and technology.
• Schedule (and ideally automate) internal vulnerability scans, remediating findings and ensuring accurate & timely reporting to satisfy PCI DSS requirements.
• Schedule annual Penetration Tests with external supplier(s) and ensure implementation of items identified in remediation plans.
• Complete required cybersecurity applications and records for large customers and audits, including reporting as required.

• Drive and action where required the planning, installation, monitoring and maintenance of IT systems and infrastructure focused on cyber security including any penetration testing that is required.
• Design and execute short- and long-term initiatives to detect and prevent any security vulnerabilities in the IT infrastructure (cloud, security and devops) to meet current and future needs.
• Develop, execute and oversee procedures, policies and related training plans for cybersecurity project management and infrastructure administration.
• Conduct research and recommend changes in services, products, protocols, and standards to support development efforts and infrastructure procurement.
• Define software and hardware security standards in collaboration with stakeholders and owners for the provisioning of the development and IT infrastructure.
• Ensure appropriate security levels on network, infrastructure and servers are maintained, ensuring that the IT team follows the requirements set in line with cybersecurity standards.
• Implement cybersecurity continuous improvement programs.
• Crisis management - keeping stakeholders informed and actively working with teams to return service in the shortest possible time frame. This would include documenting all disaster recovery procedures.
• Effective management and optimisation of vendors (where applicable) as well as collaborating with the dev and IT teams as necessary.

• Collaborate with divisional the RAQA team and Senior ManagersManagerst to define and centralize risks and put mitigation measures in place for new and existing products and services, from a cybersecurity and privacy perspective.
• Improve the automation of security controls.
• Work closely with the dev team on defining industry-standard processes and system requirements, identifying and proposing fixes to shortcomings in the development lifecycle, code reviews and scanning as well as infrastructure provisioning.
• Work with the dev team to ensure that security standards and policies are being set up and configured correctly, ensuring adherence to certifications and best-practice.
• Assist with remediations on risk items identified from security and preventative detection reviews to ensure compliance and ensure the security posture of the IT landscape is ensured at all times.
• Remediate audit items by putting measures in place to prevent the recurrence of findings. For example, by making sure that audit findings are resolved by the relevant personnel and that the resolutions are such that they prevent the item from reoccurring in the future.
• Manage internal and external audits as required with relation to cybersecurity.
• Maintain documentation for cybersecurity-related risks, processes and findings.

• Manage annual cybersecurity roadmap, IT audit (internal and external) plan and calendar.
• Work closely with the Compliance team to gather and submit evidence for all security and IT audits.
• Proactively keep stakeholders updated on status, progress, risks and problems.
• Review and approve documented outcomes of Penetration Tests, Remediation Plans and required activities.
• Review and approve documented outcomes of Vulnerability Scans, Remediation Plans and required activities.
• Maintain cybersecurity documents and records in line with certification requirements.
• Maintain document bank and matrix for the cybersecurity setup and external customer-audit matrix requests. For example, ensuring that all cybersecurity related information, such as architectural diagrams, asset lists, asset control lists and vulnerabilities, can be referenced from a single central source from which to direct the readers to the appropriate resources.

2 days work-from-home in line with Company Policy (only applicable after probation is successfully passed).

Should you not receive a response from us within one week of your application, your application has unfortunately not been successful.

Overview

Job Purpose
Security Engineer is responsible for designing and building security solutions for Discovery Bank. The incumbent will develop and integrate security solutions for application systems, projects and applied technologies, also solving for technical problems and challenges that arise. The Security Engineer is also responsible for overseeing and conducting penetration tests within the Discovery Bank environment.

• Acquiring a detailed understanding of business processes and applications.
• Translating technology and environmental conditions (business, legal and regulatory requirements) into the security design for applications and business processes.
• Proactively engaging in all stages of the development lifecycle to ensure that solutions are securely designed, built, verified, deployed and maintained.
• Create and implement penetration testing methods, scripts and tools.
• Check for gaps in security that could occur and advise on best practice to minimise risk
• Perform risk and threat modelling as part of security assessments and solution design
• Participate in resolution of incidents in order to engineer requisite solutions.
• Deliver report, papers and track issues to resolution.
• Define, implement and maintain security policy and security standards.
• Evaluate new technologies and processes that enhance security capabilities for the bank.
• Collaborate with colleagues on and provide thought leadership on security topics e.g. authorisation, authentication, encryption, integration solutions, etc.

• Values driven.
• Facilitation and conflict resolution capabilities, and builds working relationships.
• Problem solving and analytical capabilities.
• Excellent written and verbal communication skills, with the ability to convey technical detail in clear and concise manner.
• Ability to work under time constraints with minimal supervision in an agile environment.
• Looks for ways to optimise and automate solutions and testing in continuous integration/development and deployment environments.
• Willingness to both issue and accept challenges to analytical problems.
• Knowledge of Banking products, processes and systems is an advantage.

• Bachelor of Science degree in computer/electronic engineering or software programming.
• At least 3-5 years’ experience software development/engineering within banking or financial institutions.
• Experience with popular programming languages and frameworks e.g. Javascript, Node, Java, Spring, .Net, etc.
• Experience with integration protocols and technologies e.g. SOAP, REST, JSON, XML, etc.
• Solid understanding of cloud, virtualisation and containerisation security.
• Solid understanding of modern federated authentication and authorization frameworks e.g. SAML, OIDC, ADFS, OAuth2, etc.
• Working experience with network security and mainstream operating systems e.g. Linux, Windows, etc.
• Working knowledge of data protection best practices (at rest, in flight and in use).
• Experience with encryption protocols, technologies and techniques.
• Experience working with product teams specifying secure application requirements.
• Certifications advantages CISSP, CEH, ISACA CRISC/CISM, CISSP-ISSAP, CISSP-CSSLP, CSK, CCSP, etc.
• Working knowledge of security penetration methods and tools
• Knowledge of SAP security, micro-services & API security is considered an advantage.
• Working knowledge of tools such as log management and log analytics tools e.g. splunk is advantageous.
• Experience building monitoring dashboards and management reporting is considered advantageous.

EMPLOYMENT EQUITY: The Company’s approved Employment Equity Plan and Targets will be considered as part of the recruitment process. As an Equal Opportunities employer, we actively encourage and welcome people with various disabilities to apply.

SECURITY ENGINEER

The Security Engineer oversees the response to information system security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, and policy breaches; engages, interacts, and coordinates with third-party incident responders, including law enforcement. Oversees the administration of authentication and access controls, including provisioning, changes, and deprovisioning of user and system accounts, security / access roles, and access permissions to information assets. Analyses trends, news and changes in threat and compliance environment with respect to organizational risk; advises organization management and develops and executes plans for compliance and mitigation of risk; oversees risk and compliance self-assessments and engages and coordinates third-party risk and compliance assessments. Analyses and oversees the development of information security governance, including organizational policies, procedures, standards, baselines, and guidelines with respect to information security and use and operation of information systems. Oversees the development and administration of information security training and awareness programs. The Security Engineer is expected to take ownership of implementations, maintenance and operations of information system security controls and countermeasures

• Security Engineers work closely with clients, displaying good client engagement skills and engaging at a high level of professionalism.
• They are required to interact with clients to meet more complex requirements of a solution. Problems and issues that cannot be resolved are escalated to the relevant third parties.
• Assists in analysing, planning, implementing, maintaining, troubleshooting, and enhancing large complex systems or networks consisting of a combination that may will include several security products, demonstrates project management and administration ability.
• They write reports and assist with input for proposals and project documentation. The Security Engineer ensures the compilation of the documentation of standard operating procedures relating to installations and fixes.
• Certification, both in vendor, technology and product is elevated to a specialized level and activities continue to progress towards an expert level.

• Advanced diploma, degree, or relevant qualification in IT / Computing (or demonstrated equivalent work experience)

• Computer Science / Information Technology Degree or equivalent together with specialized training in new technologies and legacy systems or equivalent
• Network security certifications (vendor certifications)
• Competence and certification in other security technologies
• Microsoft Azure Security Technologies (AZ-500 + MS-500)
• Industry certifications (CISSP, CISM, Security+)

• 5 years solid work experience in a technical implementation engineering or similar role
• Experience engaging with clients and conducting presentations
• End to end deployment and support of above-mentioned technologies

• Good understanding and appreciation of technical design and business principles
• Demonstrates project management and administration ability
• Good project skills which are demonstrated in the execution
• Demonstrate customer engagement skills
• Demonstrate relevant domain specialist knowledge
• Good verbal communication skills
• Client focused and displayed a proactive approach to solving problems
• Ability to work under pressure
• Ability to coach, mentor and provide guidance to team members
• Good understanding of project management principles
• Be proficient in the implementation, configuration of the products in the security GTM.
• Interact with clients to meet complex requirements of a solution.
• Escalate unresolved problems and issues to the relevant third parties.
• Respond to escalated client requests and support client applications to a first line resolution.
• Escalate complex problems to the relevant third parties.
• Write reports and proposals and complete and maintain documentation.
• Assist with the documentation of standard operating procedures relating to installations and fixes.
• Included in higher complex security design work, with input to the design expected.
• Expected to take ownership of relevant security technologies according to domain or specialization.

• Ability to communicate and work across different cultures and social groups
• Ability to plan activities and projects well in advance, and considers possible changing circumstances
• Ability to maintain a positive outlook at work
• Ability to work well in a pressurized environment
• Ability to work hard and put in longer hours when it is necessary
• Ability to apply active listening techniques such as paraphrasing the message to confirm understanding, probing for further relevant information, and refraining from interrupting
• Ability to adapt to changing circumstances
• Ability to place client at the forefront of all interactions, understanding their requirements and creating a positive client experience throughout the total client journey

Job Description

Job Description We are exclusively representing a mission-driven global leader in the Health-Tech sector. This rapidly scaling organization is dedicated to developing smart affordable digital health solutions that increase access to care for millions of people worldwide. With a strong presence in the market and significant growth ahead they are committed to building a world-class security and compliance function to protect their users and enable their mission.

This is a greenfield opportunity for a senior security professional to build a mature cybersecurity program from the ground up. The current environment is agile and fast-paced and this role is pivotal in embedding security into the fabric of the organization. Your mission is to move the company from a reactive to a proactive security posture architecting the systems processes and compliance frameworks required for global scale. This isnt a maintenance role; its a chance to be the foundational security leader and architect with a direct impact on the companys ability to grow and enter new markets securely.

Success in this role will be measured by your ability to achieve the following key objectives :

• Spearhead Compliance Readiness: Within the first 12-18 months successfully architect and lead the organizations preparation for SOC2 Type 2 and HiTrust certifications. This involves conducting gap analyses developing remediation plans and partnering with internal teams and external auditors to build a robust auditable compliance framework.
• Modernize Vulnerability Management: Overhaul the existing vulnerability management program by establishing an automated scanning triaging and remediation workflow. Your success will be demonstrated by a measurable reduction in the average time-to-remediate critical vulnerabilities across the companys AWS infrastructure and applications.
• Establish a DevSecOps Culture: Architect and integrate a comprehensive security strategy into the entire software development lifecycle. This includes implementing automated security gates within the CI / CD pipeline and working closely with development teams to ensure secure coding standards and infrastructure provisioning are adopted and followed.
• Architect Automated Threat Detection & Response: Design and deploy a modern automated security monitoring and incident response capability for the AWS cloud environment. You will leverage tools like AWS GuardDuty and WAF and implement SIEM / SOAR principles to significantly reduce the mean time to detect (MTTD) and respond (MTTR) to security threats.
• Build the Cybersecurity Roadmap & Knowledge Base: Develop and own the companys first formal cybersecurity roadmap and create a centralized comprehensive document bank for all security policies procedures and architectural diagrams. This will serve as the single source of truth for internal governance and to satisfy external customer and audit requests efficiently.

• Minimum Requirements: An engineering degree in Computer Science Software or a related field is essential.
• Proven Compliance Leadership: Demonstrated track record of leading an organization through a major compliance certification process such as SOC2 HiTrust or ISO 27001.
• Hands-On Cloud Security Expertise: Deep practical experience architecting and securing cloud-native infrastructure particularly within the AWS ecosystem (IAM GuardDuty WAF EKS / ECS etc.).
• DevSecOps Champion: Experience building security into the CI / CD pipeline and fostering a collaborative security culture within engineering teams.
• Strategic & Tactical Mindset: You can create a high-level security roadmap while also being comfortable diving deep to implement technical controls automate processes and respond to incidents.
• Certifications (Desirable): Professional certifications such as CISSP CCSP OSCP or PNPT are highly advantageous.

Key Skills: Splunk, IDS, Network security, Computer Networking, Identity & Access Management, PKI, PCI, NIST Standards, Security System Experience, Information Security, Encryption, Siem

Employment Type: Full-Time

Experience: years

Vacancy: 1

Key Performance Areas

• Cybersecurity Management
• Infrastructure Management
• Risk Management and Compliance
• QMS and Documentation

• Engineering degree (Computer, Software, Mechanical or Electronic)

• OSCP (Offensive Security Certified Professional)
• PNPT (Practical Network Penetration Tester)
• CISSP (Certified Information Systems Security Professional)
• CCSP (Certified Cloud Security Practitioner)

• AWS' ecosystem :
• AWS Well Architected Framework
• Trusted Advisor
• GuardDuty / SCP / SSM / IAM / WAF
• Container services such as ECS / EKS
• Incident detection and response management.
• Performing penetration tests and vulnerability scans against networks and infrastructure, applications and AWS environments.
• Drafting and implementing security policies, security procedures, security design and implementation.

• ISO 14971 (risk management) compliance
• ISO 27032 (cybersecurity) compliance
• SOC2 Type 2 (with HiTrust attestation) or HiTrust experience (or equivalent)

• Deep understanding of automation, quality engineering, architectural methodologies, principles, and solution design.
• Familiarity with operational observability, including log aggregation, application performance monitoring, etc.
• Understanding of the following : Linux / Windows server and application administration and configuration, networking, scripting and automation, large scale distributed computing architecture.
• Solid knowledge of IT security (firewalls, EDR, IDS / IPS, SOAR, vulnerability scanning forensic and Threat Hunting).
• Understanding of AWS ECS & Kubernetes and Containerisation (Docker / Podman / Containerd) with implementation, support, and design.
• Knowledge in security classification frameworks like MITRE or the cyber-attack kill chain.
• Good knowledge and understanding of industry standards, memberships, and frameworks such as CIS and SOC 2.