524 Security Intern jobs in South Africa

Canonical Cape Town, Western Cape, South Africa

We have opened several senior/staff Security Operations Engineer (SOC) positions, creating a new team reporting to the CISO. We are looking for a range of experience in these positions - at the high end we are looking for deep experience defending highly contested critical assets and high-value cyber targets against advanced persistent threats and state-level actors. We have more junior roles for exceptional individuals with a proven personal interest an engagement in cyber attack and defence, and outstanding academic and career performance even if experience is limited.

Our goal is to build an entirely new level of assurance and observable rigour into the open source supply chain. We have our own estate to monitor, but more broadly our goal is to raise the robustness of the entire global Ubuntu estate through the work of this team.

The Security Operations (SecOps) team is responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated. The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack.

The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

What you will do in this role:

• Implement and evolve Canonical's Security Operation Center
• Analyse and improve Canonical's security architecture
• Evaluate, select and implement new security tools and practices
• Identify, contain and guide the remediation of security threats and cyber attacks
• Grow the presence and thought leadership of Canonical SecOps practice
• Contribute to open source threat intelligence initiatives
• Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical
• Develop Canonical SecOps learning and development materials
• Publish blog posts, whitepapers and conference presentations
• Identify, implement and track SecOps KPIs
• Plan and deliver SecOps work in the framework of Canonical's agile engineering practice
• Work with Security leadership to present information and influence change
  
  

• An exceptional academic track record
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
• Previous professional experience working or leading a Security Operation Center
• Deep personal motivation to be at the forefront of technology security
• Expertise in threat modelling and risk management frameworks
• Knowledge of security architecture and market-leading security tools
• Experience contributing to, and consuming, threat intelligence feeds
• Experience in security risk management frameworks such as NIST CSF and ISO27001
  
  

• Experience in a security operations team or a security operations centre (SOC)
• Experience in offensive or defensive security teams with hands-on ability
• Experience with state-actor and other advanced persistent threats
  
  

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues
• Priority Pass, and travel upgrades for long haul company events
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Software Development

Referrals increase your chances of interviewing at Canonical by 2x

Cape Town, Western Cape, South Africa 1 day ago

Cape Town, Western Cape, South Africa 3 months ago

Cape Town, Western Cape, South Africa 3 weeks ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Canonical Cape Town, Western Cape, South Africa

Join to apply for the Head of Security Operations role at Canonical

Canonical Cape Town, Western Cape, South Africa

Join to apply for the Head of Security Operations role at Canonical

This global leadership role in cyber security is to manage the Security Operations (SecOps) team responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated. The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack.

As a leader on cyber security in the company, the SecOps team manager will collaborate with our Organisational Learning and Development team to develop playbooks and facilitate SecOps training across Canonical. They will operate in a wider security organisation, run a high performing security team and improve Canonical's security posture. They will lead initiatives to integrate the team's insights into Canonical's broader software development process.

While this is a management position, we expect managers to be expert practitioners, able to lead by example, contribute at the highest level, and assess work based on their own professional experience and skill. Candidates should have deep, hands-on expertise with a range of open source and proprietary security tooling and practices, which they can integrate into a holistic next generation security solution across the breadth of Canonical's interests.

The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

This role reports to the CISO.

What you will do in this role:

• Hire and mentor a team of outstanding technical security professionals
• Define Canonical's SecOps security standards and playbooks
• Own and drive the architecture and design of the SOC
• Analyse and improve Canonical's security architecture
• Evaluate, select and implement new security tools and practices
• Identify, contain and guide the remediation of security threats and cyber attacks
• Grow the presence and thought leadership of Canonical SecOps practice
• Contribute to open source threat intelligence initiatives
• Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical
• Develop Canonical SecOps learning and development materials
• Publish blog posts, whitepapers and conference presentations
• Identify, implement and track SecOps KPIs
• Plan and deliver SecOps work in the framework of Canonical's agile engineering practice
• Work with Security leadership to present information and influence change
  
  

• Proven track record of mitigating with advanced threat actors and nation state threats
• Expert technical understanding of SOCs from the ground up
• In depth knowledge of SOC architecture and design including strategies for logging, firewalls, network segmentation, honeypots etc
• Someone who understands how the SOC works not just how to use it
• Expert in Linux security
• Ability to define, implement, automate and measure effective incident response playbooks
• Knowledge of security architecture and market-leading security tools
• Experience contributing to, and consuming, threat intelligence feeds
• Experience in security risk management frameworks such as NIST CSF
• An exceptional academic track record from both high school and university
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
• Drive and a track record of going above-and-beyond expectations
• Deep personal motivation to be at the forefront of technology security
• Leadership and management ability
• Excellent business English writing and presentation skills
• Confidence to report security performance metrics with accountability for accuracy and completeness
  
  

• Experience in offensive or defensive security teams with hands-on ability
• Experience with open source security tools
• Experience with security standards such as ISO 27001
• Experience with security posture management of corporate endpoitns

• Seniority level Director

• Employment type Full-time

• Job function Other, Information Technology, and Management
• Industries Software Development

Referrals increase your chances of interviewing at Canonical by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Security Operations Center Analyst

Job Overview:

We are seeking a skilled and detail-oriented Security Operations Center (SOC) Analyst to join our dynamic cybersecurity team. The ideal candidate will have a strong background in information security, incident response, and threat detection. As a SOC Analyst, you will play a crucial role in monitoring, analyzing, and responding to security incidents to safeguard our organization’s assets and information.

Responsibilities:

Incident Monitoring and Response:

• Monitor security alerts and events from various sources, including security information and event management (SIEM) systems.
• Investigate and respond to security incidents promptly and effectively.
• Conduct thorough analysis of security events and incidents to identify potential threats and vulnerabilities.

Threat Detection:

• Utilize advanced threat intelligence to proactively identify and mitigate potential security risks.
• Stay informed about the latest security threats, vulnerabilities, and industry best practices.
• Develop and implement detection rules and signatures to enhance threat detection capabilities.

Security Operations:

• Collaborate with other IT and security teams to ensure the timely resolution of security incidents.
• Work closely with incident response teams to contain and eradicate security threats.
• Document and maintain incident response procedures and guidelines.

Log Analysis and Reporting:

• Analyze security logs to identify patterns, trends, and anomalies.
• Generate regular reports on security incidents, trends, and analysis for management review.

Vulnerability Management:

• Assist in vulnerability assessments and penetration testing activities.
• Provide recommendations for remediation of identified vulnerabilities.

Continuous Improvement:

• Participate in regular security awareness training and continuous professional development.
• Contribute to the enhancement of SOC processes, procedures, and technologies.

Qualifications:

• Bachelor’s degree in Information Security, Cybersecurity, Computer Science, or a related field.
• Proven experience as a SOC Analyst or in a similar cybersecurity role.
• In-depth knowledge of cybersecurity principles, technologies, and best practices.
• Hands-on experience with SIEM tools, intrusion detection systems, and other security technologies.
• Certifications such as CISSP, CompTIA Security+, or GIAC are highly desirable.
• Strong analytical and problem-solving skills.

Benefits:

• Competitive salary and benefits package.
• Opportunities for professional development and training.
• Collaborative and innovative work environment.

If you are a passionate and experienced SOC Analyst ready to contribute to the security posture of our organization, we encourage you to apply. Join us in defending against cyber threats and ensuring the resilience of our information assets.

Description

Hello Future SOC Analyst II

Welcome to FNB, the home of the #changeables. We design for the shapeshifters and deliver products and services that make us incredibly proud of people that make it happen.

As part of our talent team, you will be surrounded by unique talents, diverse minds, and an adaptable environment that lives up to the promise of staying curious. Now’s the time to imagine your potential in a team where experts come together and ignite effective change.

Overview of the role and requirements :

• To protect the organization by pro-actively monitoring for Cyber Security Events.This includes the Identification, Analysis, Triage and Response
• Administer and Configure Policies on FNB’s Security Products.
• Guidance of L1 SOC Analyst’s

What you will need :

You will be responsible for :

Incident Monitoring and Response

Remediation Recommendations

Case Management

Reporting

Manage and Administer Technical Controls

Perform Threat Hunts

Oversight of Level 1 SOC Analysts

Participate in Cyber Security War Rooms (P1 and P2 Incidents)

Responsible for logging changes to update the security products to pro-actively block potentially malicious actions (e.g. URL’s, phishing emails, etc)

Playbooks

We can be a match if you have :

You will have access to :

Post

LI-NN2

Are you interested to take the step? We look forward to engaging with you further. Apply now!

Job Details

Take note that applications will not be accepted on the below date and onwards, kindly submit applications ahead of the closing date indicated below.

28 / 08 / 25

All appointments will be made in line with FirstRand Group’s Employment Equity plan. The Bank supports the recruitment and advancement of individuals with disabilities. In order for us to fulfill this purpose, candidates can disclose their disability information on a voluntary basis. The Bank will keep this information confidential unless we are required by law to disclose this information to other parties.

My client in the financial industry is looking for a Cyber Security Specialist.

The role of the Cyber Security Consultant: Operations will form part of the team which focuses on Cyber Security Operations services to businesses on the Shared Network. This team is responsible for management of the PKI, Anti-Virus, Vulnerability Management, Security Configuration Management, Firewall compliance, and Web and Email content filtering environments. The team also manages the Data Leakage Prevention, Network Access Management, and Privileged Account Management infrastructure and processes.

What will you be responsible for?

On a day-to-day basis, the Consultant will be involved with the configuration, monitoring, and management of:

• Anti-Virus Infrastructure
• Data Leakage Prevention system, rules, and reports
• Privileged Account Management process
• Network Access Control - process and exception handling
• Vulnerability Scanning, reporting, proposing remediation actions, and tracking compliance
• Security hardening baseline compliance scanning, reporting, and remediation

On an ad hoc basis, the consultant will support businesses in:

• Issuing, renewing, and revoking PKI digital certificates.
• Assessing internet and email use on request of Forensics or HR departments.
• Performing scheduled tasks like reviewing Firewall rule configuration and reporting.

The consultant will be required to report on the status of the cyber security control environments on a weekly, monthly, and quarterly basis.

The consultant will continuously consider ways to improve the effectiveness and efficiency of monitoring and response controls.

The consultant will contribute to the knowledge and skills of the team by sharing lessons learned and knowledge gained through research, conferences, training courses, or interaction with experts.

Qualifications

• Matric
• Information Technology diploma or degree
• Information Security certification (preferable)

Experience

At least 3 - 5 years in hands-on technical experience which includes:

• Network experience (TCP/IP, Firewalls, IPS, NAC)
• Anti-Virus System management and Configuration
• Data Leakage Prevention tool configuration
• Logical Access Management (AD, PAM)
• Information Security Operations (Security+, CISSP will be beneficial)
• Vulnerability Management (use of well-known vulnerability scanning tools and interpretation of CVSS scores)

Required Skills

• Security Auditing
• Reporting and Administration
• Security tools monitoring

The role of the Cyber Security Consultant: Operations will form part of our client’s team which focuses on Cyber Security Operations services to businesses on our client’s Shared Network. This team is responsible for management of the PKI, Anti-Virus, Vulnerability Management, Security Configuration Management, Firewall compliance, Web, and Email content filtering environments. The team also manages the Data Leakage Prevention, Network Access Management and Privileged Account Management infrastructure and processes.

• On a day-to-day basis the Consultant will be involved with the configuration, monitoring, and management of:
• Anti-Virus Infrastructure
• Data Leakage Prevention system, rules, and reports
• Privileged Account Management process
• Network Access Control process and exception handling.
• Vulnerability Scanning, reporting, proposing remediation actions and tracking compliance.
• Security hardening baseline compliance scanning, reporting and remediation.
• On an ad hoc basis the consultant will support businesses in:
• Issuing, renewing, and revoking PKI digital certificates.
• Assessing internet and email use on request of Forensics or HR departments.
• The consultant will also be performing scheduled tasks like review Firewall rule configuration and report.
• The consultant will be required to report on the status of the cyber security control environments on a weekly, monthly, and quarterly basis.
• The consultant will continuously consider ways to improve the effectiveness and efficiency of monitoring and response controls.
• The consultant will contribute to Knowledge and Skills of the team, by sharing lessons learned and knowledge gained through research, conferences, training courses or through interaction with experts.

• Matric
• Information Technology diploma or degree
• Information Security certification (preferable)

At least 3 – 5 years in hands-on technical experience which includes:

• Network experience (TCP/IP, Firewalls, IPS, NAC)
• Operating System management and Hardening (Windows, Linux, CIS hardening baselines)
• Anti-Virus System management and Configuration
• Data Leakage Prevention tool configuration
• Logical Access Management (AD, PAM)
• Information Security Operations (Security+, CISSP will be beneficial)
• Vulnerability Management (use of well-known vulnerability scanning tools and interpretation of CVSS scores)

• Security Auditing.
• Risk management.
• Incident Investigation.
• Reporting and Administration.
• Security tools monitoring.

• Interpersonal savvy - Contributing independently.
• Decision quality - Contributing independently.
• Plans and aligns - Contributing independently.
• Optimises work processes - Contributing independently.

• Cultivates innovation - Contributing independently.
• Customer focus - Contributing independently.
• Drives results - Contributing independently.
• Collaborates - Contributing independently.
• Being resilient - Contributing independently.

Market related - Monthly