73 Security Systems jobs in South Africa

ENVIRONMENT:

Your strong passion for Information Governance and Cyber Security and technical expertise is sought to fill the role of a Senior Security & Systems Engineer by a dynamic Healthcare Service Provider. Your core role will be taking charge of the optimization, monitoring, and support of internal and client-facing Security & Systems, both on-premises and in Azure and Office 365 cloud-based environments. The successful incumbent must possess a BSc. Degree/Diploma in Computer Science or equivalent, be MCSE, Azure & Office 365 Certified, and have Certifications such as Security+, CEH, CISA, CISSP, and OSCP. You will require 8-10 years of work experience as a Systems Administrator (both on-premises and cloud) and have solid knowledge of IT Service & Operation Management (ITSM & ITOM) tools and processes; IT Service Management SLAs & ITIL and/or COBIT frameworks.

DUTIES:

• Safely provision, deploy, manage, monitor, optimize, and decommission Azure and Office 365 and on-premises related systems and services.
• Follow best practice methodology for systems, cloud, architecture, and Cybersecurity.
• Develop and implement information security related processes/systems/services through project work.
• Provide input to Disaster Recovery plans.
• Perform risk assessments and recommend Information and Cybersecurity controls and technical measures (e.g., firewalls, data encryption).
• Plan and implement Information and Cybersecurity measures to protect computer systems, networks, and data.
• Support all IS Infrastructure, perform project work and weekly and monthly reporting.
• Contribute and participate in Information Security awareness drives and campaigns.

REQUIREMENTS:

Qualifications –

• BSc. Computer Science Degree or Diploma (NQF 7) equivalent.
• MCSE, Azure and Office 365 Certification.
• Security+, CEH, CISA, CISSP, OSCP.

Experience/Skills –

• Minimum of 8 – 10 years’ experience as a Systems Administrator (both on-premises and cloud).
• Knowledge of IT Service & Operation Management (ITSM & ITOM) tools and processes.
• Knowledge of IT Service Management SLAs.
• Knowledge of ITIL and/or COBIT frameworks.

ATTRIBUTES:

• Ability to multitask effectively and collaborate with others.
• Excellent verbal and written communication skills.
• Can rapidly learn new systems and processes while working under pressure.
• Accountability and ownership with a can-do attitude.
• Initiative-taking with excellent time management skills.
• Able to prioritize tasks and take decisive action.

While we would really like to respond to every application, should you not be contacted for this position within 10 working days please consider your application unsuccessful.

Advert reference: uj_

Advert status: Online

Apply by: 21 February 2025

Job category: Education and Training

Campus: Auckland Park Kingsway Campus

Contract: Permanent

Remuneration: Market Related

EE position: EE

The University of Johannesburg (UJ) is a vibrant and cosmopolitan university, anchored in Africa and driven by a powerful strategy focused on attaining global excellence and stature (GES). With an emphasis on independent thinking, sustainable development, and strategic partnerships, UJ is an international university of choice. The University is guided by the Vice-Chancellor’s vision of “Positioning UJ in the Fourth Industrial Revolution (4IR) for societal impact in the context of the changing social, political, and economic fortunes of Africa”.

Reporting to the Chief Information Officer within the Information and Communications Systems (ICS) Department, the Director of Information Security Management will be responsible for developing and implementing security strategies, policies and procedures to protect the organisation's data, systems and technology infrastructure from cyber threats and vulnerabilities. Upon joining the Department, you will:

• Be situated at the Auckland Park Kingsway Campus, but not excluded from supporting all campuses.
• Fulfil management, leadership, technical and administrative roles in the Department.

If you join the Department, you will:

• Establish an Information Security Management and Protection Framework for developing and implementing an effective enterprise-wide Information Security Governance and Strategy Programme.
• Define a Cybersecurity strategy and operating model aligned with UJ business objectives with a clear, tracked and measurable cybersecurity plan.
• Assume responsibility for UJ's information security and compliance programme, building and leading a high-performing cybersecurity and compliance team and advisory consultancy to business and IT domain leaders.
• Manage the day-to-day activities, including policies, procedures, training and communication regarding the Information Governance Programme.
• Perform regular IT Security Maturity Assessments for the respective UJ IT areas, including people, processes and technologies.
• Lead the security documentation process to ensure progress and auditability.
• Lead the implementation of a secure system development life cycle.
• Develop, implement and maintain IT security policies, procedures, standards and practices to ensure conformance with generally accepted practices and mandatory legislation / regulations.
• Conduct information assets security risk assessment.
• Lead the implementation and monitoring of information and data quality standards, policies and procedures.
• Oversee the selection, deployment and validation of IT Information security controls to ensure that security and compliance requirements are met.
• Ensure that information security threats are identified, detected, responded to, recovered from and followed up on.
• Ensure security programmes compliancy with relevant laws, regulations and policies to minimise or eliminate risk and audit findings.
• Integrate an Information and Cyber Security Risk Management Framework.
• Present regular reports to UJ executives and auditors on the cybersecurity status of the organisation.
• Collaborate with key stakeholders to proactively identify local issues and areas of risk that impact data quality, availability, and confidentiality. Implement preventive measures and remedial action when required.
• Conduct security audits to identify gaps and implement controls to mitigate risks.

• Degree or any relevant qualification (NQF 8).
• 5 to 8 years' of management experience in an Information Security Management.
• Information security, project management and IT service management experience.
• Outsourced services and management of commercial partners.
• Managing strategic change in a dynamic operating environment.
• Translating broad business needs and understanding the key drivers of enterprise applications.
• Risk assessment and mitigation risk-related industry-standard qualifications such as CISA, CISM or CISSP.

Skills:

• Good interpersonal and communication skills (verbal and written).
• Ability to maintain sound human relations and transfer skills and knowledge.
• Strong decision making and budget control skills.
• Strong Risk management and Cyber security awareness.
• IT Policies and Procedures.
• Collaborating with business managers to determine and deliver value adding IT solutions.
• Ability to manage a multi technology technical support team.
• Knowledge of the latest Information security technologies.
• Firewall standards and protocols.
• Project Management.

Enquiries regarding the job content: Ms Maletsema Phofu on Tel:

Your application, comprising of a detailed Curriculum Vitae as well as the names and full contact details (including telephone numbers and e-mail addresses) of at least three traceable and credible referees must be uploaded before or on the closing date of the advertised post. Please also attach the following: a copy of your highest academic qualification, proof of registration with professional bodies you might belong to and if applying for an academic position, a list of accredited research output and/ or a portfolio of your creative output.

Please note that the University is obligated, in terms of recent amendments to the Criminal Law (Sexual Offences and Related Matters) Amendment Act 2021 (Act 13 of 2021) , to assess all prospective employees (including applicants) against the National Register for Sex Offenders (NRSO) . The outcome of such an assessment may have an impact upon possible employment with the University.

For more information, please review the following link: Justice/Criminal/NRSO .

Candidates may be subjected to appropriate psychometric testing and other selection instruments.

In conjunction to merit on the basis of qualifications, experience and proven achievements the University of Johannesburg is committed to providing equal employment opportunities for persons with disabilities and those individuals from the historically disadvantaged groups. As necessitated by operational requirements the University reserves the right not to make an appointment to positions advertised. If you have not received a response from the University within 8 weeks of the closing date, you should assume that your application has been unsuccessful.

Technical Support Manager (POS24084)

Strijdom Park (Randburg)

R 15 000 to R 18 000 per month

• Qualification : Minimum GR12 but Electronics / iT Technical Diploma or BTech degree recommended.
• PC HW & SW, Networks and Basic Electronics knowledge / qualifications & experience
• Experience as Support Technician / Help Desk operator and working with clients
• Own vehicle and drivers license to get to work
• Good knowledge of CCTV, Access Control, Alarms, Gatemotors and Electric Fence and able to technically support the products

Closing Date : 31 March 2024

Technical Support Manager (POS24084)

Strijdom Park (Randburg)

R 15 000 to R 18 000 per month

Requirements

• Qualification: Minimum GR12 but Electronics/iT Technical Diploma or BTech degree recommended.
• PC HW & SW, Networks and Basic Electronics knowledge/qualifications & experience
• Experience as Support Technician/Help Desk operator and working with clients
• Own vehicle and drivers license to get to work
• Good knowledge of CCTV, Access Control, Alarms, Gatemotors and Electric Fence and able to technically support the products

Closing Date: 31 March 2024

Job title: Information Security Architect

Contract duration: Start with 6 months

First preference: EEE candidates

Location: JHB

The Head of Security Architecture for the organization is responsible for designing, implementing, and maintaining robust security architectures that protect sensitive data in compliance with regulations such as POPIA, GDPR. This role is critical in safeguarding the confidentiality, integrity, and availability of electronic health records (EHR), patient and employee information, medical devices, and cloud-based healthcare services. The role will focus on designing and developing security architecture that aligns business and corporate security strategy. The role will collaboratively direct Security Architects, IT, and Engineers to design and build security controls and solutions compliant with approved enterprise architecture frameworks and standards across business and digital.

Key Responsibilities:

• Design and develop complex and comprehensive security architectures for our systems, applications, and infrastructure, considering both current and future needs.
• Collaborates with stakeholders, including developers, engineers, and project managers, to integrate security requirements into the system design and development lifecycle.
• Provides guidance and expertise in secure coding practices, network security, identity and access management, data protection, and other security domains.
• Model threats and risks, designing the controls necessary to mitigate them, on both an organizational and technical level – thinking like an attacker, understanding and anticipating the moves and tactics that a hacker might use to attack systems.
• Follow the architecture analysis process, which consists of research, validation, and evaluation of all new initiatives, with phase gate reviews presented to all stakeholders during key forums, including current trends such as AI and LLMS.
• Evaluates and selects security technologies, tools, and frameworks to support the organization’s security.
• Define portfolio vision and reusable security patterns aligned with the EA strategy.
• Lead architecture reviews for high-risk projects, driving recommendations to resolution.
• Advise on security controls for hybrid and cloud platforms, balancing usability, cost, and compliance.
• Defines and applies security policies, standards, and procedures to ensure compliance with industry regulations and best practices.
• Leads incident response activities, including identification, containment, eradication, and recovery, in coordination with the incident response team.
• Experience with Cloud Security platform vendors and technologies such as Azure and AWS.
• Manage security architects and mentor engineers, developers, and vendors.

What will you bring?

• Risk-based decision-making - expert in ISO 27001 / NIST / CIS controls, able to quantify and articulate risk, then select proportionate, cost-effective controls.
• Pen-testing & threat-modelling - scoping, overseeing, and translating results into enforceable patterns and backlog items.
• Influential communication - proven ability to engage C-suite and delivery stakeholders alike, adapting style to gain agreement and drive secure-by-design culture.
• Teamwork and Energy – work across different functional and business teams with effective collaboration.
• Technical depth - hands-on knowledge of cloud security, IAM, container & API security, network segmentation, encryption, and DevSecOps toolchains; capable of explaining the exploitability of complex vulnerabilities. Zero trust design thinking.
• Mentoring & governance - experience in line-managing or coaching security architects/engineers and running architecture assurance or design-review boards.
• Secure-system design leadership - demonstrable track record creating or validating architectures for large-scale, high-risk services using recognised frameworks (SABSA, TOGAF).

Requirements / Skills and Competence

• Tertiary qualification in Computer Science, Engineering, or related field (preferred)
• Minimum of 5-10 years of experience in Security Architecture.
• CISSP, CISA, CISM, or other relevant security-related designation(s) preferred.
• Certifications in CISSP-ISSAP, TOGAF, or SABSA, cloud architecture (Microsoft, AWS, GCP)
• Experience in identifying gaps in existing architectures.
• Understanding of security infrastructure in Public and Private Cloud, e.g., virtual network infrastructure, hybrid IaaS/PaaS/SaaS solutions.
• Experience in designing security architectures to mitigate threats and sound knowledge of security strategies and technologies.
• Direct the Project and Security teams with the guidance to build policies, standards, risks, and controls frameworks supporting operational requirements for the business.
• Good experience in security architecture design in Cloud and on-prem.
• Design and implementation of IOT, endpoint protection, and secure IAM.
• Understanding of authentication and authorisation technologies (SAML, LDAP, PKI, etc.) and other IAM technologies
• Understanding of the implementation, operation, and maintenance of SIEM, boundary protection technologies (firewalls, mail gateways), Antivirus, and AD security products
• Knowledge of web application architectures and threat modelling.

The KPMG Africa Information Security Specialist is responsible for ensuring the confidentiality, integrity, and availability of all systems across KPMG Africa offices (South Africa, Botswana, Mauritius, Mozambique, Namibia, Zambia, Zimbabwe, Nigeria, Ghana, Kenya, Uganda, Tanzania, and Rwanda). The role involves actively managing and monitoring information security systems to detect, respond to, and remediate security risks and threats across the infrastructure.

4. Position Specifications

Educational Requirements (minimum necessary to perform the job):

• Professional / Tertiary qualification

Other Requirements:

Experience (minimum necessary):

Desired Qualifications and Experience:

• 3-5 years' experience in Information Technology Support or Information Security, including Microsoft Azure
• Industry-recognized certifications such as A+, N+, Security+, CySA+, and Cloud Security certifications like:

o Microsoft Certified: Security Operations Analyst Associate

o Microsoft Certified: Information Protection and Compliance Administrator Associate

o Microsoft Certified: Security, Compliance, and Identity Fundamentals

o Microsoft Certified: Identity & Access Management

o Microsoft Certified: Azure Security Engineer

• Professional certifications such as CISM, CISSP, ECIH are preferred but not required
• Strong knowledge of information security and cloud security concepts
• Experience in identifying, analyzing, and reporting on security risks and incidents
• Experience with security tools such as Qualys, Microsoft Defender Endpoint, Microsoft Sentinel, etc.
• Ability to evaluate vulnerabilities, develop mitigation strategies, and implement remediation
• Strong knowledge of operating systems, Microsoft Servers, Active Directory, and network protocols and technologies

5. Core Competencies:

• Attention to detail and accurate documentation
• Analytical skills to interpret information
• Ability to work independently and in a team
• Organizational and prioritization skills under pressure

6. Key Responsibilities & KPIs

Main Responsibilities:

• Monitoring incident response channels
• Executing the Information Security Incident Management Process and escalating high-priority issues
• Tracking and escalating open incidents
• Producing weekly and quarterly reports for the CISO on incident status and trends

Security Systems Configuration and Management:

• Daily monitoring of security systems to ensure proper functioning
• Configuration and management of security tools such as vulnerability, privileged access, and log management systems
• Reconciliation of assets to ensure coverage of security systems
• Reporting and issue resolution support for operational teams

Patch Management Monitoring:

• Monitoring patch management performance and identifying risks
• Addressing challenges to compliance

Threat and Event Monitoring:

• Detecting and escalating security threats and events

Vulnerability Management:

• Monitoring vulnerabilities daily
• Monthly asset reconciliation
• Managing vulnerability remediation with owners
• Supporting penetration testing activities

Supporting NITSO projects and other initiatives as required.