76 Security Operations jobs in South Africa

Security Operations Center Analyst Job Overview: We are seeking a skilled and detail-oriented Security Operations Center (SOC) Analyst to join our dynamic cybersecurity team. The ideal candidate will have a strong background in information security, incident response, and threat detection. As a SOC Analyst, you will play a crucial role in monitoring, analyzing, and responding to security incidents to safeguard our organization’s assets and information. Responsibilities: Incident Monitoring and Response: Monitor security alerts and events from various sources, including security information and event management (SIEM) systems. Investigate and respond to security incidents promptly and effectively. Conduct thorough analysis of security events and incidents to identify potential threats and vulnerabilities. Threat Detection: Utilize advanced threat intelligence to proactively identify and mitigate potential security risks. Stay informed about the latest security threats, vulnerabilities, and industry best practices. Develop and implement detection rules and signatures to enhance threat detection capabilities. Security Operations: Collaborate with other IT and security teams to ensure the timely resolution of security incidents. Work closely with incident response teams to contain and eradicate security threats. Document and maintain incident response procedures and guidelines. Log Analysis and Reporting: Analyze security logs to identify patterns, trends, and anomalies. Generate regular reports on security incidents, trends, and analysis for management review. Vulnerability Management: Assist in vulnerability assessments and penetration testing activities. Provide recommendations for remediation of identified vulnerabilities. Continuous Improvement: Participate in regular security awareness training and continuous professional development. Contribute to the enhancement of SOC processes, procedures, and technologies. Qualifications: Bachelor’s degree in Information Security, Cybersecurity, Computer Science, or a related field. Proven experience as a SOC Analyst or in a similar cybersecurity role. In-depth knowledge of cybersecurity principles, technologies, and best practices. Hands-on experience with SIEM tools, intrusion detection systems, and other security technologies. Certifications such as CISSP, Comp TIA Security+, or GIAC are highly desirable. Strong analytical and problem-solving skills. Benefits: Competitive salary and benefits package. Opportunities for professional development and training. Collaborative and innovative work environment. If you are a passionate and experienced SOC Analyst ready to contribute to the security posture of our organization, we encourage you to apply. Join us in defending against cyber threats and ensuring the resilience of our information assets. #J-18808-Ljbffr

Who we are? Europa Worldwide Group is an ambitious independent logistics operator with three divisions, Europa Road, Europa Air & Sea, and Europa Warehouse, and has been featured in The Sunday Times Top Track 250 for three years. The group employs over 1,100 people with 16 sales offices in the UK, and the Republic of Ireland, plus European teams in France, Belgium and the Netherlands and internationally in Cape Town Hong Kong, China, India and the UAE. We are looking for. The Security Operations Analyst will play an important role in protecting the organisation's IT systems from the growing number of cyber threats through continuous monitoring and 24/7 support. Following on from initial training, you will be expected to follow a rotational schedule of four consecutive workdays followed by four days off. This schedule will entail 12-hour shifts, ensuring continuous coverage over a 24-hour period. You will play a vital part in protecting Europa Worldwide Group’s information technology systems, networks, and data from unauthorised access, theft, and other types of cyber-attack using state-of-the-art tools. You will be responsible for the daily operations of the Security Operations Centre, continuously monitoring the environment to protect the organisation’s IT systems and act as the first line of defence against cyber threats. Key duties involve continuous IT monitoring, security incident detection, management and response. *This role is offered on a 6 month fixed term contract basis* What can we offer in return? Competitive package & Contribution to Medical Aid Family Leave: Benefit from enhanced maternity, paternity, and adoption pay. Wellbeing Focus: Access our employee wellbeing programme for your overall health and happiness. Referral Rewards: Earn up to £500 by referring a friend to join our team. Work-Life Balance: Thrive in a fantastic working culture that promotes an excellent work-life balance. Recognition Programs: Celebrate your contributions with our charity 50-50 and long service awards What you will be doing: Perform 24/7 threat monitoring, detection, event management, and incident response on a rotational basis. Provide BAU support for security related incidents. Respond to security incidents and provide analysis of security log data from various event sources and identify the root cause. Use advanced tools for detecting and analysing threats including, but not limited to, Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), Security Orchestration (SOAR), and email security. Monitoring systems, networks, and applications for unusual activity and investigating in a timely manner. Perform proactive threat hunting and cyber threat intelligence activities. Maintain security controls, policies, and procedures. Stay up to date with the latest trends in cyber security threats and defences. Work under strict change control processes to ensure only authorised changes are carried out. First line IT Helpdesk support assistance outside of standard business hours Please note - if you submit your CV, you are giving Europa Worldwide Group Ltd and its subsidiaries consent to hold your personal data. An offer of employment is subject to the completion of a satisfactory pre-employment checks All applications will be dealt with according to General Data Protection Regulations. Europa Worldwide Group are committed to equality of opportunity for all staff, and applications from individuals are encouraged regardless of age, disability, sex, gender reassignment, sexual orientation, pregnancy and maternity, race, religion or belief and marriage and civil partnerships. Europa Worldwide Group do not accept agency CV submissions unless specifically requested/ engaged with the role by the Internal Recruitment Team. Please do not submit speculative CV’S to our Recruiters, Employees, Hiring Managers, or any branches/locations directly. Europa will not be responsible for any fees related to CV’s received in this unsolicited manner #J-18808-Ljbffr

Being a part of the Hollywood Group Team is an opportunity to become a part of one of South Africa’s biggest success stories. From humble beginnings in Durban, The Hollywood Group has grown into a powerhouse operating across Africa, Mozambique and the United Kingdom. Our talented Team is on a mission to increase our global footprint, ready to take on any challenge because at Hollywood, not even the sky is the limit. Join our Team and let’s reach for the stars. We have an amazing opportunity for Security Operations Manager. Do you think you have what it takes to be our newest Star?The Security Operations Manager is responsible for managing the day-to-day operational aspects of the Security Division across Hollywoodbets Greyville Racecourse, Hollywoodbets Scottsville Racecourse, Summerveld Training Centre, Ashburton Training Centre and Race Coast/Hollywoodbets KZN retail branches. Reporting to the Head of Security, the incumbent will lead and support the security team to ensure compliance with business processes, effective delivery of guarding and surveillance services, and continuous improvement of performance standards. The role includes overseeing the development and implementation of security policies, protocols, and procedures, as well as managing staff scheduling, contract compliance, investigations, and incident reporting. The Security Operations Manager plays a key role in risk management, event security planning, and coordination with external service providers and law enforcement. The position also carries accountability for ensuring security operations support the organisation’s strategic objectives, regulatory compliance, and operational resilience across all sites.With Race Coast You Will: Innovate and create as part of a like-minded, authentic Team eager to achieve goals. Embrace challenges and the thrill of working in a vibrant and fast-paced industry. Grow with our development plans and culture that allows you to further your career.You Bring: Matric/Grade 12 PSIRA Registration – Grade A Diploma/Degree in Facilities Management, Project Management, Business, or related field5+ years’ experience in a security operations management role Proven managerial and people leadership experience Experience in managing control room operations A Bonus To Have: Relevant tertiary qualification in Security Management / Policing / Law Enforcement Gaming floor security experience Background in law enforcement or military service What You’ll Do For The Brand: Operational Management: Manage and schedule Security staff to align staffing levels with fluctuating business activity across all sites. Oversee the day-to-day operation of the Security Division, including guarding services and the 24-hour Surveillance Control Room. Conduct regular assessments of security operations at all sites, setting standards and driving improvements to procedures and service levels. Ensure compliance with security protocols, access control systems, and key management procedures. Team Leadership and Development : Lead, mentor and support Security Duty Managers and frontline security staff. Assist with recruitment, onboarding and training of security personnel. Promote a culture of accountability, professionalism, and teamwork across multi-site operations. Contract & Service Management : Manage service provider contracts, ensuring adherence to service-level agreements and performance standards. Monitor supplier and contractor performance across facilities, escalating concerns where necessary. Risk & Incident Management : Identify risks and vulnerabilities across all sites and implement proactive measures to mitigate threats. Oversee incident investigations, ensuring accurate documentation, timely resolution and preventative action. Maintain detailed records of incidents, breaches, and investigations in line with compliance and reporting standards. Planning and Coordination : Develop and implement security plans for race days, special events, and high-profile occasions, liaising with organisers, authorities and other stakeholders. Conduct full assessments of the security function to set benchmarks, enhance efficiency, and standardise operating procedures. Reporting & Compliance : Compile regular reports on security operations, incidents, staffing, and contractor performance for submission to the Head of Security and to Executive Management. Ensure compliance with internal security policies, PSIRA requirements, and other applicable legislation and industry standards. What You’ll Bring To The Team: Proven leadership and people management capability with the ability to motivate and develop teams across multiple sites. In-depth knowledge of security operations, surveillance, and access control systems. Strong planning and organisational skills. Integrity, discretion, and sound judgment. Proactive, decisive, and results-driven. Ability to remain calm and professional under pressure. Skilled in dispute resolution and handling sensitive situations.Strong capability to conduct and oversee incident investigations. Ability to assess risks, identify vulnerabilities, and develop effective security strategies.Strong verbal and written communication skills. Ability to liaise effectively with internal and external stakeholders, including law enforcement and service providers. Above-average computer literacy, familiarity with security systems, CCTV and access control software. Integrity, discretion, and sound judgment. Proactive, decisive, and results-driven. Ability to remain calm and professional under pressure. Why Join Us? This is an exciting opportunity to play a critical role in the success of Race Coast KZN’s operations. As the Security Operations Manager you will be entrusted with overseeing the development and implementation of security policies, protocols, and procedures, as well as managing staff scheduling, contract compliance, investigations, and incident reporting. A strong focus on Risk management, event security planning, and coordination with external service providers and law enforcement. The position also carries accountability for ensuring security operations support the organisation’s strategic objectives, regulatory compliance, and operational resilience across all sites. You will have the opportunity to: Lead and support the security team to ensure compliance with business processes, effective delivery of guarding and surveillance services, and continuous improvement of performance standards. Contribute directly to the success of a high-profile sporting and entertainment brand in South Africa. #J-18808-Ljbffr

Being a part of the Hollywood Group Team is an opportunity to become a part of one of South Africa’s biggest success stories. From humble beginnings in Durban, The Hollywood Group has grown into a powerhouse operating across Africa, Mozambique and the United Kingdom. Our talented Team is on a mission to increase our global footprint, ready to take on any challenge because at Hollywood, not even the sky is the limit. Join our Team and let’s reach for the stars.We have an amazing opportunity for Security Operations Manager. Do you think you have what it takes to be our newest Star?The Security Operations Manager is responsible for managing the day-to-day operational aspects of the Security Division across Hollywoodbets Greyville Racecourse, Hollywoodbets Scottsville Racecourse, Summerveld Training Centre, Ashburton Training Centre and Race Coast/Hollywoodbets KZN retail branches.Reporting to the Head of Security, the incumbent will lead and support the security team to ensure compliance with business processes, effective delivery of guarding and surveillance services, and continuous improvement of performance standards. The role includes overseeing the development and implementation of security policies, protocols, and procedures, as well as managing staff scheduling, contract compliance, investigations, and incident reporting.The Security Operations Manager plays a key role in risk management, event security planning, and coordination with external service providers and law enforcement. The position also carries accountability for ensuring security operations support the organisation’s strategic objectives, regulatory compliance, and operational resilience across all sites.With Race Coast You WillInnovate and create as part of a like-minded, authentic Team eager to achieve goals.Embrace challenges and the thrill of working in a vibrant and fast-paced industry.Grow with our development plans and culture that allows you to further your career.You Bring Matric/Grade 12 PSIRA Registration – Grade A Diploma/Degree in Facilities Management, Project Management, Business, or related field 5+ years’ experience in a security operations management role Proven managerial and people leadership experience Experience in managing control room operations A Bonus To HaveRelevant tertiary qualification in Security Management / Policing / Law Enforcement Gaming floor security experience Background in law enforcement or military service What You’ll Do For The BrandOperational Management: Manage and schedule Security staff to align staffing levels with fluctuating business activity across all sites. Oversee the day-to-day operation of the Security Division, including guarding services and the 24-hour Surveillance Control Room. Conduct regular assessments of security operations at all sites, setting standards and driving improvements to procedures and service levels. Ensure compliance with security protocols, access control systems, and key management procedures. Team Leadership and Development: Lead, mentor and support Security Duty Managers and frontline security staff. Assist with recruitment, onboarding and training of security personnel. Promote a culture of accountability, professionalism, and teamwork across multi-site operations. Contract & Service Management: Manage service provider contracts, ensuring adherence to service-level agreements and performance standards. Monitor supplier and contractor performance across facilities, escalating concerns where necessary. Risk & Incident Management: Identify risks and vulnerabilities across all sites and implement proactive measures to mitigate threats. Oversee incident investigations, ensuring accurate documentation, timely resolution and preventative action. Maintain detailed records of incidents, breaches, and investigations in line with compliance and reporting standards. Planning and Coordination: Develop and implement security plans for race days, special events, and high-profile occasions, liaising with organisers, authorities and other stakeholders. Conduct full assessments of the security function to set benchmarks, enhance efficiency, and standardise operating procedures. Reporting & Compliance: Compile regular reports on security operations, incidents, staffing, and contractor performance for submission to the Head of Security and to Executive Management. Ensure compliance with internal security policies, PSIRA requirements, and other applicable legislation and industry standards. What You’ll Bring To The TeamProven leadership and people management capability with the ability to motivate and develop teams across multiple sites. In-depth knowledge of security operations, surveillance, and access control systems. Strong planning and organisational skills. Integrity, discretion, and sound judgment. Proactive, decisive, and results-driven. Ability to remain calm and professional under pressure. Skilled in dispute resolution and handling sensitive situations. Strong capability to conduct and oversee incident investigations. Ability to assess risks, identify vulnerabilities, and develop effective security strategies. Strong verbal and written communication skills. Ability to liaise effectively with internal and external stakeholders, including law enforcement and service providers. Above-average computer literacy, familiarity with security systems, CCTV and access control software. Integrity, discretion, and sound judgment. Proactive, decisive, and results-driven. Ability to remain calm and professional under pressure. Why Join Us?This is an exciting opportunity to play a critical role in the success of Race Coast KZN’s operations. As the Security Operations Manager you will be entrusted with overseeing the development and implementation of security policies, protocols, and procedures, as well as managing staff scheduling, contract compliance, investigations, and incident reporting. A strong focus on Risk management, event security planning, and coordination with external service providers and law enforcement. The position also carries accountability for ensuring security operations support the organisation’s strategic objectives, regulatory compliance, and operational resilience across all sites.You Will Have The Opportunity ToLead and support the security team to ensure compliance with business processes, effective delivery of guarding and surveillance services, and continuous improvement of performance standards. Contribute directly to the success of a high-profile sporting and entertainment brand in South Africa. #J-18808-Ljbffr

Overview

Lula is a FinTech company on a mission to help small businesses optimise their cash flow. Our purpose is to help SMEs manage their businesses better, faster, and more simply, so they can spend more time doing what they love. We are looking for a Senior Security Operations Engineer to join our team. The successful candidate will be responsible for securing, monitoring, and maintaining the overall security posture of our Azure platform and infrastructure, as well as our on-site networks and systems. You will work closely with all departments and teams to implement and provide guidance on security best practices and regulatory compliance. As a Senior Security Operations Engineer, you will also be responsible for identifying and responding to security incidents and conducting security assessments, audits and simulations. Location: Cape Town.

ALL STAFF APPOINTMENTS WILL BE MADE WITH DUE CONSIDERATION OF THE COMPANY’S EE TARGETS

Responsibilities

• Infrastructure Security
  • Partner with our DevSecOps team to design, implement and manage security controls and policies for our Microsoft Azure Infrastructure
  • Partner with our Engineering teams to ensure that code deployed on Lula’s infrastructure is done securely
  • Conduct regular security assessments and audits of Azure and internal infrastructure and platforms, including vulnerability scanning and penetration testing
• Identity Security
  • Manage and regularly audit our privileged accounts to ensure access remains relevant and required
  • Design, implement and manage policies and controls to secure Lula’s accounts and access to our resources using Microsoft Entra ID toolsets
  • Provide security awareness training to the business to improve our security posture
  • Perform security incident/phishing simulations to ensure our processes and training are robust and effective
  • Monitor and manage Lula’s access control and camera systems
  • Provide guidance and support to internal departments on handling of confidential information
  • Partner with our Technical Support team to ensure Lula’s network and endpoints are configured securely and monitored for threats
• Regulatory Compliance and Governance
  • Be a critical part of Lula’s PCI DSS annual re-certification process
  • Develop and maintain security documentation including policies, procedures and technical standards that adhere to compliance requirements
  • Collaborate with external auditors and partners to ensure compliance with various regulatory requirements and industry standards
• Security Incident Management
  • Be the key point of contact for security incident and alert investigations
  • Develop remediation plans, conduct Root Cause Analysis and provide corrective and preventative measures during Post Incident Reviews
  • Participate in on-call rotation to provide 24/7 support for Security Incidents

Qualifications and experience

• Tertiary qualification in Computer Science, Information Security, or equivalent experience
• 5+ years of experience in a SecOps field, preferably using Microsoft technologies, with a focus on Azure
• Expert knowledge of Cloud-focused security features, including Azure Defender for Cloud, Azure Sentinel, Entra ID, Front Door, Privileged Identity Management, Intune and Defender for Endpoint
• Experience with security assessments and audits, including vulnerability scanning, penetration testing and incident simulations
• Hands-on Kali experience would be beneficial
• Exposure to configuring SAST tools, like SonarCloud
• Familiarity with industry standards and regulatory requirements, such as POPIA, PCI DSS and ISO 27001
• Familiarity with security-related network technologies such as firewalls & VPNs
• Azure or Cyber Security certifications, such as Azure Security Engineer Associate, Azure Solutions Architect Expert or CISSP are a plus
• Knowledge of securing coding practices, like OWASP
• Knowledge of secure API implementation technologies, OAuth and OIDC

Please note that all appointments are subject to our background checking process, which may include Credit, Criminal and any other job inherent checks.

#J-18808-Ljbffr

Job title : Senior Security Operations Engineer

Reporting to : Engineering Team Lead

Location : Cape Town

ALL STAFF APPOINTMENTS WILL BE MADE WITH DUE CONSIDERATION OF THE COMPANYS EE TARGETS

WHAT WE DO

Lula is an innovative and human-focused FinTech company on a mission to help small businesses optimise their cash flow. Our purpose is to help SMEs manage their businesses better faster and more simply so they can spend more time doing what they love.

If youre looking for a new place to call home that believes in the potential of the broader SME landscape in South Africa and a place where youll work with awesome people - then Lulas the place for you!

Were making business banking fast human Lula!

CULTURE CODE

We embrace C uriosity

We win as O ne

Were D riven by Purpose

We E xecute with Ambition

OVERALL PURPOSE

We are looking for a Senior Security Operations Engineer to join our team. The successful candidate will be responsible for securing monitoring and maintaining the overall security posture of our Azure platform and infrastructure as well as our on-site networks and systems. You will work closely with all departments and teams to implement and provide guidance on security best practices and regulatory compliance. As a Senior Security Operations Engineer you will also be responsible for identifying and responding to security incidents and conducting security assessments audits and simulations.

Responsibilities will include :

• Infrastructure Security

Partner with our DevSecOps team to design implement and manage security controls and policies for our Microsoft Azure Infrastructure

Partner with our Engineering teams to ensure that code deployed on Lulas infrastructure is done securely

Conduct regular security assessments and audits of Azure and internal infrastructure and platforms including vulnerability scanning and penetration testing

Identity Security

Manage and regularly audit our privileged accounts to ensure access remains relevant and required

Design implement and manage policies and controls to secure Lulas accounts and access to our resources using Microsoft Entra ID toolsets

Provide security awareness training to the business to improve our security posture

Perform security incident / phishing simulations to ensure our processes and training are robust and effective

On-Premise Security

Monitor and manage Lulas access control and camera systems

Provide guidance and support to internal departments on handling of confidential information

Partner with our Technical Support team to ensure Lulas network and endpoints are configured securely and monitored for threats

Regulatory Compliance and Governance

Be a critical part of Lulas PCI DSS annual re-certification process

Develop and maintain security documentation including policies procedures and technical standards that adhere to compliance requirements

Collaborate with external auditors and partners to ensure compliance with various regulatory requirements and industry standards

Security Incident Management

Be the key point of contact for security incident and alert investigations

Develop remediation plans conduct Root Cause Analysis and provide corrective and preventative measures during Post Incident Reviews

Participate in on-call rotation to provide 24 / 7 support for Security Incidents

THE SKILLS AND EXPERIENCE WERE LOOKING FOR

Tertiary qualification in Computer Science Information Security or equivalent experience

5 years of experience in a SecOps field preferably using Microsoft technologies with a focus on Azure

Expert knowledge of Cloud focussed security features including Azure Defender for Cloud Azure Sentinel Entra ID Front Door Privileged Identity Management Intune and Defender for Endpoint

Experience with security assessments and audits including vulnerability scanning penetration testing and incident simulations

Hands-on Kali experience would be beneficial

Exposure to configuring SAST tools like SonarCloud

Familiarity with industry standards and regulatory requirements such as POPIA PCI DSS and ISO 27001

Familiarity with security related network technologies such as firewalls & VPNs

Azure or Cyber Security certifications such as Azure Security Engineer Associate Azure Solutions Architect Expert or CISSP are a plus

Knowledge of securing coding practices like OWASP

Knowledge of secure API implementation technologies OAuth and OIDC

Please note that all appointments are subject to our background checking process which may include Credit Criminal and any other job inherent checks.

Required Experience :

Senior IC

Key Skills

Splunk,Compliance Management,IDS,SOC,Cybersecurity,Identity & Access Management,Security,Information Security,Process Engineering,Metadata,Encryption,Siem

Employment Type : Full-Time

Experience : years

Vacancy : 1

#J-18808-Ljbffr

Job title: Senior Security Operations Engineer

Reporting to: Engineering Team Lead

Location: Cape Town

ALL STAFF APPOINTMENTS WILL BE MADE WITH DUE CONSIDERATION OF THE COMPANY’S EE TARGETS

WHAT WE DO

Lula is an innovative and human-focused FinTech company on a mission to help small businesses optimise their cash flow. Our purpose is to help SMEs manage their businesses better, faster, and more simply, so they can spend more time doing what they love.

If you’re looking for a new place to call ‘home’ that believes in the potential of the broader SME landscape in South Africa and a place where you’ll work with awesome people - then Lula’s the place for you!

We’re making business banking fast, human, Lula!

CULTURE CODE

We embrace C uriosity

We win as O ne

We’re D riven by Purpose

We E xecute with Ambition

OVERALL PURPOSE

We are looking for a Senior Security Operations Engineer to join our team. The successful candidate will be responsible for securing, monitoring, and maintaining the overall security posture of our Azure platform and infrastructure, as well as our on-site networks and systems. You will work closely with all departments and teams to implement and provide guidance on security best practices and regulatory compliance. As a Senior Security Operations Engineer, you will also be responsible for identifying and responding to security incidents and conducting security assessments, audits and simulations.

Responsibilities will include:

• Infrastructure Security
  • Partner with our DevSecOps team to design, implement and manage security controls and policies for our Microsoft Azure Infrastructure
  • Partner with our Engineering teams to ensure that code deployed on Lula’s infrastructure is done securely
  • Conduct regular security assessments and audits of Azure and internal infrastructure and platforms, including vulnerability scanning and penetration testing
• Identity Security
  • Manage and regularly audit our privileged accounts to ensure access remains relevant and required
  • Design, implement and manage policies and controls to secure Lula’s accounts and access to our resources using Microsoft Entra ID toolsets
  • Provide security awareness training to the business to improve our security posture
  • Perform security incident/phishing simulations to ensure our processes and training are robust and effective
• On-Premise Security
  • Monitor and manage Lula’s access control and camera systems
  • Provide guidance and support to internal departments on handling of confidential information
  • Partner with our Technical Support team to ensure Lula’s network and endpoints are configured securely and monitored for threats
• Regulatory Compliance and Governance
  • Be a critical part of Lula’s PCI DSS annual re-certification process
  • Develop and maintain security documentation including policies, procedures and technical standards that adhere to compliance requirements
  • Collaborate with external auditors and partners to ensure compliance with various regulatory requirements and industry standards
• Security Incident Management
  • Be the key point of contact for security incident and alert investigations
  • Develop remediation plans, conduct Root Cause Analysis’ and provide corrective and preventative measures during Post Incident Reviews
  • Participate in on-call rotation to provide 24/7 support for Security Incidents

THE SKILLS AND EXPERIENCE WE’RE LOOKING FOR

• Tertiary qualification in Computer Science, Information Security, or equivalent experience
• 5+ years of experience in a SecOps field, preferably using Microsoft technologies, with a focus on Azure
• Expert knowledge of Cloud focussed security features, including Azure Defender for Cloud, Azure Sentinel, Entra ID, Front Door, Privileged Identity Management, Intune and Defender for Endpoint
• Experience with security assessments and audits, including vulnerability scanning, penetration testing and incident simulations
• Hands-on Kali experience would be beneficial
• Exposure to configuring SAST tools, like SonarCloud
• Familiarity with industry standards and regulatory requirements, such as POPIA, PCI DSS and ISO 27001
• Familiarity with security related network technologies such as firewalls & VPNs
• Azure or Cyber Security certifications, such as Azure Security Engineer Associate, Azure Solutions Architect Expert or CISSP are a plus
• Knowledge of securing coding practices, like OWASP
• Knowledge of secure API implementation technologies, OAuth and OIDC

Please note that all appointments are subject to our background checking process, which may include Credit, Criminal and any other job inherent checks.

#J-18808-Ljbffr

Canonical Cape Town, Western Cape, South Africa

We have opened several senior/staff Security Operations Engineer (SOC) positions, creating a new team reporting to the CISO. We are looking for a range of experience in these positions - at the high end we are looking for deep experience defending highly contested critical assets and high-value cyber targets against advanced persistent threats and state-level actors. We have more junior roles for exceptional individuals with a proven personal interest an engagement in cyber attack and defence, and outstanding academic and career performance even if experience is limited.

Our goal is to build an entirely new level of assurance and observable rigour into the open source supply chain. We have our own estate to monitor, but more broadly our goal is to raise the robustness of the entire global Ubuntu estate through the work of this team.

The Security Operations (SecOps) team is responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated. The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack.

The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

What you will do in this role:

• Implement and evolve Canonical's Security Operation Center
• Analyse and improve Canonical's security architecture
• Evaluate, select and implement new security tools and practices
• Identify, contain and guide the remediation of security threats and cyber attacks
• Grow the presence and thought leadership of Canonical SecOps practice
• Contribute to open source threat intelligence initiatives
• Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical
• Develop Canonical SecOps learning and development materials
• Publish blog posts, whitepapers and conference presentations
• Identify, implement and track SecOps KPIs
• Plan and deliver SecOps work in the framework of Canonical's agile engineering practice
• Work with Security leadership to present information and influence change
  
  

What we are looking for

• An exceptional academic track record
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
• Previous professional experience working or leading a Security Operation Center
• Deep personal motivation to be at the forefront of technology security
• Expertise in threat modelling and risk management frameworks
• Knowledge of security architecture and market-leading security tools
• Experience contributing to, and consuming, threat intelligence feeds
• Experience in security risk management frameworks such as NIST CSF and ISO27001
  
  

Optional things we value

• Experience in a security operations team or a security operations centre (SOC)
• Experience in offensive or defensive security teams with hands-on ability
• Experience with state-actor and other advanced persistent threats
  
  

What we offer you

We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance. In addition to base pay, we offer a performance-driven annual bonus. We provide all team members with additional benefits, which reflect our values and ideals. We balance our programs to meet local needs and ensure fairness globally.

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues
• Priority Pass, and travel upgrades for long haul company events
  
  

About Canonical

Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence - in order to succeed, we need to be the best at what we do. Canonical has been a remote-first company since its inception in 2004. Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.

Canonical is an equal opportunity employer

We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.

Seniority level

• Seniority level Mid-Senior level

Employment type

• Employment type Full-time

Job function

• Job function Information Technology
• Industries Software Development

Referrals increase your chances of interviewing at Canonical by 2x

Cape Town, Western Cape, South Africa 1 day ago

Cape Town, Western Cape, South Africa 3 months ago

Linux Cryptography and Security Engineer

Cape Town, Western Cape, South Africa 3 weeks ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr