304 Security Specialist jobs in South Africa

ROLE DESCRIPTION: Information security specialists focus on keeping an organisation’s data and IT infrastructure secure, which requires a diverse set of skills and responsibilities.

TASK AND RESPONSIBILITIES:

1. Conduct threat and risk analysis and analyse the business impact of new and existing systems and technologies to eliminate risk, performance, and capacity issues. Implement vulnerability assessments and configure audits of operating systems, web servers, databases, and detect patterns, insecure features, and malicious activities in the infrastructure.
2. Perform research, testing, evaluating, and deployment of security technology and procedures.
3. Run diagnostics on any changes to data to verify any undetected breaches.
4. Develop custom systems for specialized security features and procedures for software systems, networks, data centres, and hardware.
5. Develop and implement information security standards, guidelines, and procedures.
6. Keep current with new intrusion methods and develop protection plans. Have an in-depth understanding of vulnerabilities, management systems, and common security applications.
7. Conduct counteractive protocols and report incidents. Offer customized risk ratings for vulnerabilities based on company policies and maintain IT security controls documentation.
8. Provide customized security assessments, implement security policies, design security training materials, organize training sessions, provide technical support, and communicate security policies and procedures.

FUNCTIONAL KNOWLEDGE:

Contribute to strategy formulation & execution; business requirement analysis; Incident Management and Response; Business Threat Identification and Communication; Information Risk Assessment and Management; Regulatory and Legal Frameworks; Change Management and Change Risk; GRC and Security Standards, Policies and Practices; Information Risks within Systems and IT Architecture; Information Risks within people and processes; Infrastructure Risks to business delivery; Enterprise and Security Architecture; Operational Security Practices and Management; Information Security Awareness.

• NQF 7 Bachelor's degree in Cybersecurity or a related area, such as computer science or related fields.

• 5 - 6 years or more practical experience in IT and Information Security Governance, of which must include at least 3 years in an active Information Risk management role.

Overview

Reference: JHB -JK-1

Calling All Cyber Security Specialists in JHB. Your next big move starts here!

• Conduct vulnerability assessments and penetration testing.
• Analyze network, application, and infrastructure security.
• Use tools such as Kali Linux, Nessus, Acunetix or similar.
• Develop security testing methodologies beyond automated tools.
• Provide training and guidance in IT security.
• Deliver audit and risk assessment reports to senior management.
• Stay current with regulatory frameworks and security trends.

• Matric (Grade 12)
• BSc (Information Technology)
• EC-Council Certified Ethical Hacker (CEH)
• CISA, CISM, or CISSP

• Minimum 5 years information security experience.
• At least 2 years in penetration testing or across multiple areas of security.
• Practical experience with advanced security tools and manual testing techniques.

• Strong communication and reporting skills.
• Proficiency in MS Office.
• Regulatory framework knowledge.
• Analytical and problem‑solving approach.
• Integrity, discretion, and professionalism.
• Passion for IT security and continuous learning.

R - R

Full-Time

1

Summary

We are seeking a Security Specialist for a contract position in East London. This role is crucial in safeguarding the Departments ICT infrastructure by implementing and maintaining robust security measures. The specialist will collaborate with the ECDOH ICT team to ensure adherence to best-practice security standards manage information security governance and address security incidents and risks. This position is vital for maintaining the integrity and security of departmental systems and data.

• Assist in delivering solutions to protect ICT infrastructure from vulnerabilities.
• Collaborate with the ECDOH ICT team to ensure compliance with security standards.
• Manage information security governance incident and risk management.
• Develop and manage information security programs.
• Handle information security incident management.
• Maintain up-to-date documentation.
• Resolve customer issues and provide training on new and modified applications.
• Work with Business Application Support and IT teams to identify and resolve issues.
• Assist in user training.
• Plan organize and control work efforts providing regular progress feedback.
• Perform additional tasks as required by the line manager.

• Degree / National Diploma in Computer Science / Information Systems.
• Minimum of 6 years of experience in Information Security or Grade 12 with at least 10 years experience.
• ISACA CISM certification.
• Experience as an ICT security specialist is advantageous.
• Ability to quickly learn industry concepts and business processes.
• Proficiency in Windows systems update management (WSUS).
• Experience with Microsoft Virus and Threat protection management.
• Knowledge of Windows server security management and firewall management.
• Experience with ECDoH VPN management.
• Ability to manage ICT security threats.

Working experience as an ICT security specialist will be an added advantage. Be able to quickly learn industry concepts and business processes. Windows systems update management administration and management (WSUS) Microsoft Virus and Threat protection management Windows server security management; Firewall management ECDoH VPN management Management of ICT security threats

Degree / National Diploma in Computer Science / Information of 6 years of working experience in Information a Grade 12 with at least 10 years experience In Information CISM certified.

CCTV,Low Voltage,Network Management,IDS,Computer Networking,Field Service,ICD Coding,Military Experience,Security,Security System Experience,Information Security,Troubleshooting

Employment Type : Full Time

Experience : years

Vacancy : 1

It’s not just IT solutions, It’s IT global know-how! Logicalis is an international multi-skilled solution provider providing digital enablement services to help customers harness digital technology and innovative services to deliver powerful business outcomes.

Our customers span industries and geographical regions; and our focus is to engage in the dynamics of our customers’ vertical markets; including financial services, TMT (telecommunications, media and technology), education, healthcare, retail, government, manufacturing and professional services, and apply the skills of our 4,500 employees in modernising key digital pillars; data centre and cloud services, security and network infrastructure, workspace communications and collaboration, data and information strategies, and IT operation modernisation. We are the advocates for our customers for some of the world’s leading technology companies including Cisco, HPE, IBM, CA Technologies, NetApp, Microsoft, Oracle, VMware and ServiceNow

Logicalis employees are innovative, smart, entrepreneurial and customer centric, with a shared ambition of making Logicalis the worlds leading IT Solutions provider!

We offer speedy decision-making, opportunities for personal development, and a supportive, inclusive environment that celebrates our diversity.

Join us and become a part of something epic!

ROLE PURPOSE

The Security Operations Centre will provide defence against security breaches and actively isolate and mitigate security risks. The Security Specialist forms part of the security operations centre SOC team. The SOC Team will identify, analyse, and react to cyber security threats using a reliable set of processes and security technologies. The SOC Team includes the SOC Manager, SIEM Platform Manager, Case Manager, SOC Tier 1,2 and 3 Analysts and Security Specialists. They work with IT operational teams to address security incidents and events

quickly. The SOC Team will provide a critical layer of analysis needed to seek out any irregular activity that could suggest a security incident.

ROLE AND DELIVERY RESPONSIBILITIES:

The job role includes actively participating in the incident detection process as follows:

• Possesses in-depth knowledge of network, endpoint, threat intelligence, forensics and malware reverse Analysis, as well as the functioning of specific applications or underlying IT infrastructure
• Acts as an incident “hunter,” not waiting for escalated incidents
• Closely involved in developing, tuning, and implementing threat detection analytics
• Acts as the escalation for Tier 1 and 2 SOC Analysts
• Responds to and oversees the remediation of a declared security incident
• Completes the Root Cause Analysis Report for P1 to P4
• Provides guidance to Tier 1 and 2 SOC Analysts
• Uses threat intelligence such as updated rules and Indicators of Compromise (IOCs) to pinpoint affected systems and the extent of the attack
• Monitors shift-related metrics ensuring applicable reporting is gathered and disseminated to the SOC Manager
• Make recommendations to the SOC Manager
• Oversees the analysis on running processes and configs on affected systems.
• Undertakes in-depth threat intelligence analysis to find the perpetrator, the type of attack, and the data or systems impacted
• Oversees the containment and recovery
• Oversees the deep-dive incident analysis by correlating data from various sources
• Validates if a critical system or data set has been impacted
• Provides support for analytic methods for detecting threats
• Conducts advanced triage based on defined run books of alerts
• Undertakes threat intelligence research if need be
• Validates false positives, policy violations, intrusion attempts, security threats and potential compromises
• Undertakes security incident triage to provide necessary context prior to escalating to relevant Security Specialists to perform deeper analysis when necessary
• Further analyses alarms by method e.g. credentials compromised and by asset class
• Based on the correlation rules and alarms within the SIEM and run books, further analyses anomaly tactic using the MITRE ATT&CK framework
• Analyses event and process metadata in real-time or retrospectively, and identify suspicious files/scripts seen for the first time
• Closes tickets in the SIEM platform – this would be automatically created into Service Now
• Manages security incidents using the SIEM platform and defined operational procedures
• Performs a further investigation of potential incidents, and escalate or close events as applicable
• Validates investigation results, ensuring relevant details are passed on to Tier 2 SOC Level 2 for further event analysis
• Closes out deeper analysis and review activities
• Assist senior SOC staff with operational responsibilities

PERSON REQUIREMENTS:

EXPERIENCE:

• Strong knowledge and experience working with SIEM Solutions, QRadar, McAfee ESM, Azure Sentinel
• Proven experience with Office 365, Active Directory, Azure and Microsoft Exchange.
• Strong knowledge and experience working with Linux Operating systems
• Good experience working with Nessus or Qualys
• Good understanding of the MITRE ATT&CK framework
• Good understanding of the ITIL Framework.
• Brilliant with a support ticketing system and experience in meeting SLA targets.
• Familiarity with risk management and quality assurance control.
• Excellent interpersonal skills and professional demeanor
• Excellent verbal and written communication skills
• Candidate must be eligible to obtain National Security Clearance

QUALIFICATIONS:

• Grade 12
• AZ500,SC100
• Degree or Diploma in Computer Technology
• CompTIA A+, N+ S+
• CompTIA CySa, CISSP and CASP+ advantageous

ADDITIONAL SKILLS/ATTRIBUTES:

• Advanced Microsoft Excel experience, specifically data interpretation
• Good understanding of IT infrastructure
• A high command of the English language both written and verbal is essential.
• Self-motivated with the ability to work unsupervised.
• Punctuality
• Excellent verbal and written communication skills
• Ability to remain flexible and adapt to changing priorities with promptness, efficiency, and ease
• Possess proficient analytical and decision-making skills
• Demonstrated capacity for gathering and scrutinizing data to identify issues, opportunities, and patterns
• Proficient relationship building skills – predict customer behavior and respond accordingly
• A strong service-oriented (‘can-do’) culture, with a strong focus on the ‘internal customer’ approach, committed to exceeding customer expectations
• Good communicator with the customer environment
• Dynamic but aware of the views and feelings of others
• Able to operate as a good team player
• Drive and Energy
• Demonstrate clear purpose, enthusiasm, and commitment

If you’re interested in career opportunities, but not ready to apply, join our Talent Network to stay connected to us and receive updates on the latest job opportunities and company news.

Overview

Our client has a vacancy for a logical and open-minded security specialist that has a good security foundation based in Johannesburg.

• Ability to conduct information security risk assessments
• Ability to create and execute security monitoring tool sets such as DLP, SIEM and Web Gateway, Cyber Protection
• Cyber security or SOC monitoring
• Understanding of the NIST and ISO 27000 frameworks

Overview

Job Description

Why choose Logicalis? It’s not just IT solutions, It’s IT global know-how! Logicalis is an international multi-skilled solution provider providing digital enablement services to help customers harness digital technology and innovative services to deliver powerful business outcomes.Our customers span industries and geographical regions; and our focus is to engage in the dynamics of our customers’ vertical markets; including financial services, TMT (telecommunications, media and technology), education, healthcare, retail, government, manufacturing and professional services, and apply the skills of our 4, employees in modernising key digital pillars; data centre and cloud services, security and network infrastructure, workspace communications and collaboration, data and information strategies, and IT operation modernisation. We are the advocates for our customers for some of the world’s leading technology companies including Cisco, HPE, IBM, CA Technologies, NetApp, Microsoft, Oracle, VMware and ServiceNow

Logicalis employees are innovative, smart, entrepreneurial and customer centric, with a shared ambition of making Logicalis the worlds leading IT Solutions provider!

We offer speedy decision-making, opportunities for personal development, and a supportive, inclusive environment that celebrates our diversity.

Join us and become a part of something epic!

Why choose Logicalis? It’s not just IT solutions, It’s IT global know-how! Logicalis is an international multi-skilled solution provider providing digital enablement services to help customers harness digital technology and innovative services to deliver powerful business outcomes.

Our customers span industries and geographical regions; and our focus is to engage in the dynamics of our customers’ vertical markets; including financial services, TMT (telecommunications, media and technology), education, healthcare, retail, government, manufacturing and professional services, and apply the skills of our 4,500 employees in modernising key digital pillars; data centre and cloud services, security and network infrastructure, workspace communications and collaboration, data and information strategies, and IT operation modernisation.

We are the advocates for our customers for some of the world’s leading technology companies including Cisco, HPE, IBM, CA Technologies, NetApp, Microsoft, Oracle, VMware and ServiceNow.

Logicalis employees are innovative, smart, entrepreneurial and customer centric, with a shared ambition of making Logicalis the worlds leading IT Solutions provider! We offer speedy decision-making, opportunities for personal development, and a supportive, inclusive environment that celebrates our diversity.

The Security Operations Centre will provide defence against security breaches and actively isolate and mitigate security risks. The Security Specialist forms part of the security operations centre SOC team.

• Possesses in-depth knowledge of network, endpoint, threat intelligence, forensics and malware reverse Analysis, as well as the functioning of specific applications or underlying IT infrastructure.
• Acts as an incident “hunter,” not waiting for escalated incidents.
• Closely involved in developing, tuning, and implementing threat detection analytics.
• Acts as the escalation for Tier 1 and 2 SOC Analysts.
• Responds to and oversees the remediation of a declared security incident.
• Completes the Root Cause Analysis Report for P1 to P4.
• Provides guidance to Tier 1 and 2 SOC Analysts.
• Uses threat intelligence such as updated rules and Indicators of Compromise (IOCs) to pinpoint affected systems and the extent of the attack.
• Monitors shift-related metrics ensuring applicable reporting is gathered and disseminated to the SOC Manager.
• Make recommendations to the SOC Manager.
• Oversees the analysis on running processes and configs on affected systems.
• Undertakes in-depth threat intelligence analysis to find the perpetrator, the type of attack, and the data or systems impacted.
• Oversees the containment and recovery.
• Oversees the deep-dive incident analysis by correlating data from various sources.
• Validates if a critical system or data set has been impacted.
• Provides support for analytic methods for detecting threats.
• Conducts advanced triage based on defined run books of alerts.
• Undertakes threat intelligence research if need be.
• Validates false positives, policy violations, intrusion attempts, security threats and potential compromises.
• Undertakes security incident triage to provide necessary context prior to escalating to relevant Security Specialists to perform deeper analysis when necessary.
• Further analyses alarms by method e.g. credentials compromised and by asset class.
• Based on the correlation rules and alarms within the SIEM and run books, further analyses anomaly tactic using the MITRE ATT&CK framework.
• Analyses event and process metadata in real-time or retrospectively, and identify suspicious files/scripts seen for the first time.
• Closes tickets in the SIEM platform – this would be automatically created into Service Now.
• Manages security incidents using the SIEM platform and defined operational procedures.
• Performs a further investigation of potential incidents, and escalate or close events as applicable.
• Validates investigation results, ensuring relevant details are passed on to Tier 2 SOC Level 2 for further event analysis.
• Closes out deeper analysis and review activities.
• Assist senior SOC staff with operational responsibilities.

• Strong knowledge and experience working with SIEM Solutions, QRadar, McAfee ESM, Azure Sentinel.
• Proven experience with Office 365, Active Directory, Azure and Microsoft Exchange.
• Strong knowledge and experience working with Linux Operating systems.
• Good experience working with Nessus or Qualys.
• Good understanding of the MITRE ATT&CK framework.
• Good understanding of the ITIL Framework.
• Brilliant with a support ticketing system and experience in meeting SLA targets.
• Familiarity with risk management and quality assurance control.
• Excellent interpersonal skills and professional demeanor.
• Excellent verbal and written communication skills.
• Candidate must be eligible to obtain National Security Clearance.

• Grade 12.
• SIEM Technology certification.
• AZ500, SC100.
• ITIL Foundation qualification.
• Degree or Diploma in Computer Technology.
• CompTIA A+, N+ S+.
• CompTIA CySa, CISSP and CASP+ advantageous.

• Advanced Microsoft Excel experience, specifically data interpretation.
• Good understanding of IT infrastructure.
• A high command of the English language both written and verbal is essential.
• Self-motivated with the ability to work unsupervised.
• Attention to detail.
• Punctuality.
• Excellent verbal and written communication skills.
• Ability to remain flexible and adapt to changing priorities with promptness, efficiency, and ease.
• Possess proficient analytical and decision-making skills.
• Demonstrated capacity for gathering and scrutinizing data to identify issues, opportunities, and patterns.
• Proficient relationship building skills – predict customer behavior and respond accordingly.
• A strong service-oriented (‘can-do’) culture, with a strong focus on the ‘internal customer’ approach, committed to exceeding customer expectations.
• Good communicator with the customer environment.
• Dynamic but aware of the views and feelings of others.
• Able to operate as a good team player.
• Drive and Energy.
• Demonstrate clear purpose, enthusiasm, and commitment.

Job Information

Date Opened: 03/10/2025

Job Type: Contract

Industry: IT Services

Work Experience: 5-7 years

Salary: Market related salary

City: Eastern Cape

Province: Eastern Cape

Country: South Africa

Postal Code: 7100

We are seeking a Security Specialist for a contract position in East London. This role is crucial in safeguarding the Department's ICT infrastructure by implementing and maintaining robust security measures. The specialist will collaborate with the ECDOH ICT team to ensure adherence to best-practice security standards, manage information security governance, and address security incidents and risks. This position is vital for maintaining the integrity and security of departmental systems and data.

• Assist in delivering solutions to protect ICT infrastructure from vulnerabilities.
• Collaborate with the ECDOH ICT team to ensure compliance with security standards.
• Manage information security governance, incident, and risk management.
• Develop and manage information security programs.
• Handle information security incident management.
• Maintain up-to-date documentation.
• Resolve customer issues and provide training on new and modified applications.
• Work with Business, Application Support, and IT teams to identify and resolve issues.
• Assist in user training.
• Plan, organize, and control work efforts, providing regular progress feedback.
• Perform additional tasks as required by the line manager.

• Degree/National Diploma in Computer Science/Information Systems.
• Minimum of 6 years of experience in Information Security, or Grade 12 with at least 10 years' experience.
• ISACA CISM certification.
• Experience as an ICT security specialist is advantageous.
• Ability to quickly learn industry concepts and business processes.
• Proficiency in Windows systems update management (WSUS).
• Experience with Microsoft Virus and Threat protection management.
• Knowledge of Windows server security management and firewall management.
• Experience with ECDoH VPN management.
• Ability to manage ICT security threats.

We are seeking a Security Specialist for a contract position in East London. This role is crucial in safeguarding the Department's ICT infrastructure by implementing and maintaining robust security measures. The specialist will collaborate with the ECDOH ICT team to ensure adherence to best-practice security standards, manage information security governance, and address security incidents and risks. This position is vital for maintaining the integrity and security of departmental systems and data.

• Assist in delivering solutions to protect ICT infrastructure from vulnerabilities.
• Collaborate with the ECDOH ICT team to ensure compliance with security standards.
• Manage information security governance, incident, and risk management.
• Develop and manage information security programs.
• Handle information security incident management.
• Maintain up-to-date documentation.
• Resolve customer issues and provide training on new and modified applications.
• Work with Business, Application Support, and IT teams to identify and resolve issues.
• Assist in user training.
• Plan, organize, and control work efforts, providing regular progress feedback.
• Perform additional tasks as required by the line manager.

• Degree/National Diploma in Computer Science/Information Systems.
• Minimum of 6 years of experience in Information Security, or Grade 12 with at least 10 years' experience.
• ISACA CISM certification.
• Experience as an ICT security specialist is advantageous.
• Ability to quickly learn industry concepts and business processes.
• Proficiency in Windows systems update management (WSUS).
• Experience with Microsoft Virus and Threat protection management.
• Knowledge of Windows server security management and firewall management.
• Experience with ECDoH VPN management.
• Ability to manage ICT security threats.