425 Security Testing jobs in South Africa

Security Testing

R900000 - R1200000 Y QualiBlaze Consulting (Pty)

Posted today

Job Viewed

Tap Again To Close

Job Description

***Security Testing & GRC Specialist***

(see below for the Strategic Implementation Specialist)

Role Overview:

We are seeking a versatile Security Specialist who can combine deep hands-on expertise in ethical hacking and security testing with a strong understanding of governance, risk, and compliance (GRC). This individual will ensure our systems are continuously tested for vulnerabilities while also aligning our practices with regulatory and organisational security requirements.

Key Responsibilities:

  • Conduct penetration testing, ethical hacking, and vulnerability assessments using industry-standard tools (e.g., BurpSuite, OWASP ZAP, Metasploit, etc.).
  • Identify, document, and report security vulnerabilities, providing remediation guidance to development and operations teams.
  • Develop and maintain GRC frameworks, policies, and procedures in line with industry standards (ISO 27001, NIST, GDPR, POPIA, etc.).
  • Support risk assessments, audits, and compliance initiatives.
  • Act as a bridge between technical security testing and compliance-driven governance activities.
  • Provide security awareness and compliance training as needed.

Key Skills & Experience:

  • Proven experience as a penetration tester, ethical hacker, or security engineer.
  • Familiarity with GRC frameworks, regulatory compliance, and audit processes.
  • Strong knowledge of application, cloud, and infrastructure security.
  • Excellent communication and reporting skills to both technical and non-technical stakeholders.
  • Relevant certifications desirable (e.g., OSCP, CEH, CISSP, CISM, ISO 27001 Lead Implementer/Auditor).

***Security Strategy Implementation Specialist***

Role Overview:

We are looking for a motivated Security Strategy Implementation Specialist to support the rollout and execution of the organisation's security strategy. This role will work closely with the Head of Security to translate strategic initiatives into actionable programs, ensure alignment across teams, and drive adoption of security practices across the enterprise.

Key Responsibilities:

  • Support the execution of the organisation's security strategy and roadmap.
  • Coordinate cross-functional initiatives across development, operations, and business teams.
  • Track progress of security programs, metrics, and KPIs.
  • Assist in building maturity across key areas such as DevSecOps, threat modelling, security testing, cloud security, and compliance.
  • Develop executive-ready reports, dashboards, and communications to highlight progress, risks, and achievements.
  • Provide operational support for security projects and tools adoption.

Key Skills & Experience:

  • Experience in cybersecurity program management, security operations, or related domains.
  • Understanding of modern security domains (DevSecOps, cloud security, security testing, GRC).
  • Strong organisational, communication, and stakeholder management skills.
  • Ability to translate strategy into operational tasks and follow through on execution.
  • Certifications such as CISSP, CISM, or project/program management certifications (e.g., PMP, Prince2, Agile/Scrum) are an advantage.
This advertiser has chosen not to accept applicants from your region.

Security Testing & GRC Specialist (Pen Tester Governance, Risk & Compliance)

Johannesburg, Gauteng

Posted today

Job Viewed

Tap Again To Close

Job Description

contract
W are seeking a versatile Security Specialist who can combine deep hands-on expertise in ethical hacking and security testing with a strong understanding of governance, risk, and compliance (GRC). This person will ensure our systems are continuously tested for vulnerabilities while also aligning our practices with regulatory and organizational security requirements. What you'll do: Conduct penetration testing, ethical hacking, and vulnerability assessments using industry-standard tools (e.g., BurpSuite, OWASP ZAP, Metasploit, etc.). Identify, document, and report security vulnerabilities, providing remediation guidance to development and operations teams. Develop and maintain GRC frameworks, policies, and procedures in line with industry standards (ISO 27001, NIST, GDPR, POPIA, etc.). Support risk assessments, audits, and compliance initiatives. Act as a bridge between technical security testing and compliance-driven governance activities. Provide security awareness and compliance training as needed. Your Expertise: Proven experience as a penetration tester, ethical hacker, or security engineer. Familiarity with GRC frameworks, regulatory compliance, and audit processes. Strong knowledge of application, cloud, and infrastructure security. Excellent communication and reporting skills to both technical and non-technical stakeholders. Behavioural competencies: Client-Centric Mindset Demonstrates a strong commitment to understanding and delivering value to clients. Builds trust-based relationships and adapts communication style to diverse client environments. Collaborative Leadership Leads by example and fosters a culture of collaboration, knowledge sharing, and mutual respect. Comfortable mentoring junior team members and contributing to a psychologically safe team environment. Adaptability Growth Orientation Thrives in dynamic, fast-paced environments and embraces change as an opportunity. Actively seeks feedback and continuously looks for ways to improve personally and professionally. Integrity Accountability Upholds high ethical standards and takes ownership of outcomes. Transparent in communication and dependable in delivering on commitments. Innovation Problem Solving Brings a proactive, solution-oriented mindset to complex challenges. Encourages experimentation and is open to new technologies, methodologies, and ideas. Communication Influence Communicates clearly and persuasively with both technical and non-technical stakeholders. Able to influence decision-making at senior levels through data, insight, and credibility. Alignment with Company Values Embodies the core values of our organization (e.g., excellence, inclusion, curiosity, impact). Acts as a cultural ambassador both internally and in client-facing engagements. Other information applicable to the job: Initial contract position Location: Johannesburg – hybrid way of work Level: Senior Why work for us? Want to work for an organization that solves complex real-world problems with innovative software solutions? At iOCO, we believe anything is possible with modern technology, software, and development expertise. We are continuously pushing the boundaries of innovative solutions across multiple industries using an array of technologies.†You will be part of a consultancy, working with some of the most knowledgeable minds in the industry on interesting solutions across different business domains.†ur culture of continuous learning will ensure that you will have all the opportunities, tools, and support to hone and grow your craft.†y joining IOCO you will have an open invitation to developer inspiring forums. A place where you will be able to connect and learn from and with your peers by sharing ideas, experiences, practices, and solutions.†OCO is an equal opportunity employer with an obligation to achieve its own unique EE objectives in the context of Employment Equity targets. Therefore, our employment strategy gives primary preference to previously disadvantaged individuals or groups.
This advertiser has chosen not to accept applicants from your region.

Security Analyst - Penetration Testing & Red Teaming

Johannesburg, Gauteng The Legends Agency

Posted 7 days ago

Job Viewed

Tap Again To Close

Job Description

Security Analyst - Penetration Testing & Red Teaming

Johannesburg, South Africa

Job Openings Security Analyst - Penetration Testing & Red Teaming

About the job Security Analyst - Penetration Testing & Red Teaming

Exciting Opportunity: Security Analyst: Penetration Testing & Red Teaming Specialist

Our client is looking for a talented Security Analyst who is ready to take on a variety of security assessments and grow their career in a high-energy, cutting-edge environment.

Responsibilities:

Penetration Testing:

  • Collaborate within a team of experts to conduct vulnerability assessments and penetration tests across a wide range of technologies.
  • Assess network, application (web and thick client), mobile, wireless, social engineering, and physical security, using both automated and manual techniques.
  • Engage with clients professionally to deliver insights and constructive feedback, ensuring their security needs are met.
  • Dive deep into security topics like network, database, and application security, developing your expertise along the way.
  • Leverage your skills with penetration testing tools to uncover vulnerabilities and improve security measures.

Red Teaming:

  • Become part of an elite Red Team, focusing on reconnaissance using open-source intelligence (OSINT) to gather actionable data.
  • Take the lead in compromising systems by identifying vulnerabilities in people, processes, and technology.
  • Develop and deploy command-and-control servers and custom payloads, establishing persistence within target environments.
  • Evolve your craft by creating new tools, techniques, and procedures to avoid detection by defenders.
  • Work on escalation, maintaining long-term access to compromised networks, and exfiltrating critical data.

Research and Development:

  • Stay ahead of the curve by researching and identifying new vulnerabilities, focusing on high-profile products and systems.
  • Understand and analyze the latest tactics used by threat actors to craft innovative security strategies.
  • Develop and refine attack methodologies that will be used to strengthen future defensive efforts.

Requirements:

Experience:

  • 2-5 years' hands-on Penetration Testing, including a strong background in network, mobile, web, and wireless security assessments.
  • Strong understanding of common vulnerability assessment and penetration testing tools.
  • Ability to think critically and creatively to solve complex security challenges.
  • Strong communication skills for both internal collaboration and client-facing interactions.
  • Passion for continuous learning and staying updated on the latest in cybersecurity.

#J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.

Security Analyst - Penetration Testing & Red Teaming

Johannesburg, Gauteng The Legends Agency

Posted 4 days ago

Job Viewed

Tap Again To Close

Job Description

Our client is looking for a talented Security Analyst who is ready to take on a variety of security assessments and grow their career in a high-energy, cutting-edge environment.

Responsibilities:

Penetration Testing:

  • Collaborate within a team of experts to conduct vulnerability assessments and penetration tests across a wide range of technologies.
  • Assess network, application (web and thick client), mobile, wireless, social engineering, and physical security, using both automated and manual techniques.
  • Engage with clients professionally to deliver insights and constructive feedback, ensuring their security needs are met.
  • Dive deep into security topics like network, database, and application security, developing your expertise along the way.
  • Leverage your skills with penetration testing tools to uncover vulnerabilities and improve security measures.

Red Teaming:

  • Become part of an elite Red Team, focusing on reconnaissance using open-source intelligence (OSINT) to gather actionable data.
  • Take the lead in compromising systems by identifying vulnerabilities in people, processes, and technology.
  • Develop and deploy command-and-control servers and custom payloads, establishing persistence within target environments.
  • Evolve your craft by creating new tools, techniques, and procedures to avoid detection by defenders.
  • Work on escalation, maintaining long-term access to compromised networks, and exfiltrating critical data.

Research and Development:

  • Stay ahead of the curve by researching and identifying new vulnerabilities, focusing on high-profile products and systems.
  • Understand and analyze the latest tactics used by threat actors to craft innovative security strategies.
  • Develop and refine attack methodologies that will be used to strengthen future defensive efforts.

Requirements:

Experience:

  • 2-5 years' hands-on Penetration Testing, including a strong background in network, mobile, web, and wireless security assessments.
  • Strong understanding of common vulnerability assessment and penetration testing tools.
  • Ability to think critically and creatively to solve complex security challenges.
  • Strong communication skills for both internal collaboration and client-facing interactions.
  • Passion for continuous learning and staying updated on the latest in cybersecurity.
This advertiser has chosen not to accept applicants from your region.

Security analyst - penetration testing & red teaming

Johannesburg, Gauteng The Legends Agency

Posted 1 day ago

Job Viewed

Tap Again To Close

Job Description

permanent
Security Analyst - Penetration Testing & Red Teaming Johannesburg, South Africa Job Openings Security Analyst - Penetration Testing & Red Teaming About the job Security Analyst - Penetration Testing & Red Teaming Exciting Opportunity: Security Analyst: Penetration Testing & Red Teaming Specialist Our client is looking for a talented Security Analyst who is ready to take on a variety of security assessments and grow their career in a high-energy, cutting-edge environment. Responsibilities: Penetration Testing: Collaborate within a team of experts to conduct vulnerability assessments and penetration tests across a wide range of technologies. Assess network, application (web and thick client), mobile, wireless, social engineering, and physical security, using both automated and manual techniques. Engage with clients professionally to deliver insights and constructive feedback, ensuring their security needs are met. Dive deep into security topics like network, database, and application security, developing your expertise along the way. Leverage your skills with penetration testing tools to uncover vulnerabilities and improve security measures. Red Teaming: Become part of an elite Red Team, focusing on reconnaissance using open-source intelligence (OSINT) to gather actionable data. Take the lead in compromising systems by identifying vulnerabilities in people, processes, and technology. Develop and deploy command-and-control servers and custom payloads, establishing persistence within target environments. Evolve your craft by creating new tools, techniques, and procedures to avoid detection by defenders. Work on escalation, maintaining long-term access to compromised networks, and exfiltrating critical data. Research and Development: Stay ahead of the curve by researching and identifying new vulnerabilities, focusing on high-profile products and systems. Understand and analyze the latest tactics used by threat actors to craft innovative security strategies. Develop and refine attack methodologies that will be used to strengthen future defensive efforts. Requirements: Experience: 2-5 years' hands-on Penetration Testing, including a strong background in network, mobile, web, and wireless security assessments. Strong understanding of common vulnerability assessment and penetration testing tools. Ability to think critically and creatively to solve complex security challenges. Strong communication skills for both internal collaboration and client-facing interactions. Passion for continuous learning and staying updated on the latest in cybersecurity. #J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.

Security Engineer

Iqtalent

Posted 26 days ago

Job Viewed

Tap Again To Close

Job Description

Restream is looking for a talented Security Engineer to join us to solve complex challenges and build world-class products. In this role, you will conduct architecture security reviews, application testing, penetration testing, and work with the engineering team, security researchers, and third-party vendors to ensure the security of our systems as we rapidly scale our product and organization. You understand the importance of simplicity and reliability, and you calculate the impact of every decision on each. We believe in small teams where each member contributes significant value.

What You’ll Do

  • Perform application and penetration testing.
  • Work with engineers to analyze systems, threat model new features, and create responsive controls to ensure end-to-end customer protection.
  • Work with third-party vendors to perform annual application and penetration testing reports.
  • Maintain, and grow our private bug bounty program; lead the transition to a public bug bounty program.
  • Give and receive code review feedback from the team.
  • Maintain a pulse on emerging technologies and discover hidden opportunities in our environment.
  • Ensure security and resilience of Restream production infrastructure.

What We Look For

  • A scrappy, entrepreneurial attitude that gets high-quality projects done quickly.
  • Solid knowledge of web applications vulnerabilities and attack vectors.
  • Experience manually testing web applications, performing penetration testing, and using automated tools for reconnaissance and discovery.
  • Experience with scripting languages and at least one general-purpose programming language. Node.JS (TypeScript) or Rust would be a plus but are not a requirement.
  • Strong written and verbal communication skills.
  • Self-directed, analytical, and work well in a team environment.
  • Passionate about keeping Restream customers and employees safe online.

Restream is the #1 solution for creating professional live videos and streaming them to all social networks at once. Millions of people around the world use Restream to reach, engage, and monetize their audiences. We’re a small and diverse group of dreamers who make technology work for the world. We believe that a small but highly driven and focused team can make a lasting impact in any area.

What We Offer

  • Startup environment and a flat company structure.
  • Work closely with founders and team to build and grow the product.
  • Direct influence and impact on the direction of the product and development.
  • The ability to create something that influences people’s lives.
  • Competitive pay and equity packages for you to truly be a part of the Restream journey.
  • Flexible paid time off.
  • The tech you need to get your job done.

#J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.

Security Engineer

MSP Staffing LTD

Posted today

Job Viewed

Tap Again To Close

Job Description

Seeking a mid-level Security Engineer with 37 years of hands-on experience in cybersecurity operations. Key Requirements · 37 years experience in information security or a related role · Proficient in cybersecurity frameworks (NIST, ISO 27001) and remote workforce security practices · Strong experience with endpoint protection, anti-virus management, and device hardening · Expertise in email security, phishing detection, and threat analysis · Working knowledge of SSDLC and DevSecOps methodologies · Familiarity with SAST and DAST tools and integration · Experience with log analysis, SIEM tools, and threat monitoring platforms · Understanding of POPIA, GDPR, and regulatory compliance standards · Solid foundation in encryption, access controls, and identity management · Strong communication skills, capable of delivering engaging security training Should you meet the requirements for this position, please email your CV to You can also contact the IT team on XXX-XXX or visit our website at NOTE : When replying to the advert, include the reference number in the subject line. Correspondence will only be conducted with short-listed candidates. Should you not hear from us within 3 days, please consider your application unsuccessful.
This advertiser has chosen not to accept applicants from your region.
Be The First To Know

About the latest Security testing Jobs in South Africa !

Security Engineer

Gauteng, Gauteng MSP Staffing LTD

Posted today

Job Viewed

Tap Again To Close

Job Description

Seeking a mid-level Security Engineer with 37 years of hands-on experience in cybersecurity operations. Key Requirements · 37 years experience in information security or a related role · Proficient in cybersecurity frameworks (NIST, ISO 27001) and remote workforce security practices · Strong experience with endpoint protection, anti-virus management, and device hardening · Expertise in email security, phishing detection, and threat analysis · Working knowledge of SSDLC and DevSecOps methodologies · Familiarity with SAST and DAST tools and integration · Experience with log analysis, SIEM tools, and threat monitoring platforms · Understanding of POPIA, GDPR, and regulatory compliance standards · Solid foundation in encryption, access controls, and identity management · Strong communication skills, capable of delivering engaging security training Should you meet the requirements for this position, please email your CV to You can also contact the IT team on XXX-XXX or visit our website at NOTE : When replying to the advert, include the reference number in the subject line. Correspondence will only be conducted with short-listed candidates. Should you not hear from us within 3 days, please consider your application unsuccessful.
This advertiser has chosen not to accept applicants from your region.

Security Engineer

Western Cape, Western Cape MSP Staffing LTD

Posted today

Job Viewed

Tap Again To Close

Job Description

Seeking a mid-level Security Engineer with 37 years of hands-on experience in cybersecurity operations. Key Requirements · 37 years experience in information security or a related role · Proficient in cybersecurity frameworks (NIST, ISO 27001) and remote workforce security practices · Strong experience with endpoint protection, anti-virus management, and device hardening · Expertise in email security, phishing detection, and threat analysis · Working knowledge of SSDLC and DevSecOps methodologies · Familiarity with SAST and DAST tools and integration · Experience with log analysis, SIEM tools, and threat monitoring platforms · Understanding of POPIA, GDPR, and regulatory compliance standards · Solid foundation in encryption, access controls, and identity management · Strong communication skills, capable of delivering engaging security training Should you meet the requirements for this position, please email your CV to You can also contact the IT team on XXX-XXX or visit our website at NOTE : When replying to the advert, include the reference number in the subject line. Correspondence will only be conducted with short-listed candidates. Should you not hear from us within 3 days, please consider your application unsuccessful.
This advertiser has chosen not to accept applicants from your region.

Security Engineer

Pretoria, Gauteng The Hiring House

Posted 22 days ago

Job Viewed

Tap Again To Close

Job Description

Key Performance Areas
- Cybersecurity Management
- Infrastructure Management
- Risk Management and Compliance
- QMS and Documentation

Minimum education (essential):
- Engineering degree (Computer, Software, Mechanical or Electronic)

Minimum education (desirable):
- OSCP (Offensive Security Certified Professional)
- PNPT (Practical Network Penetration Tester)
- CISSP (Certified Information Systems Security Professional)
- CCSP (Certified Cloud Security Practitioner)

Minimum applicable experience (years):
- AWS' ecosystem:
- AWS Well Architected Framework
- Trusted Advisor
- GuardDuty / SCP / SSM / IAM / WAF
- Container services such as ECS/EKS
- Incident detection and response management.
- Performing penetration tests and vulnerability scans against networks and infrastructure, applications and AWS environments.
- Drafting and implementing security policies, security procedures, security design and implementation.

The following would be advantageous:
- ISO 14971 (risk management) compliance
- ISO 27032 (cybersecurity) compliance
- SOC2 Type 2 (with HiTrust attestation) or HiTrust experience (or equivalent)

Skills and Knowledge (essential):
- Deep understanding of automation, quality engineering, architectural methodologies, principles, and solution design.
- Familiarity with operational observability, including log aggregation, application performance monitoring, etc.
- Understanding of the following: Linux/Windows server and application administration and configuration, networking, scripting and automation, large scale distributed computing architecture.
- Solid knowledge of IT security (firewalls, EDR, IDS/IPS, SOAR, vulnerability scanning forensic and Threat Hunting).
- Understanding of AWS ECS & Kubernetes and Containerisation (Docker/Podman/Containerd) with implementation, support, and design.
- Knowledge in security classification frameworks like MITRE or the cyber-attack kill chain.
- Good knowledge and understanding of industry standards, memberships, and frameworks such as CIS and SOC 2.

This advertiser has chosen not to accept applicants from your region.
 

Nearby Locations

Other Jobs Near Me

Industry

  1. request_quote Accounting
  2. work Administrative
  3. eco Agriculture Forestry
  4. smart_toy AI & Emerging Technologies
  5. school Apprenticeships & Trainee
  6. apartment Architecture
  7. palette Arts & Entertainment
  8. directions_car Automotive
  9. flight_takeoff Aviation
  10. account_balance Banking & Finance
  11. local_florist Beauty & Wellness
  12. restaurant Catering
  13. volunteer_activism Charity & Voluntary
  14. science Chemical Engineering
  15. child_friendly Childcare
  16. foundation Civil Engineering
  17. clean_hands Cleaning & Sanitation
  18. diversity_3 Community & Social Care
  19. construction Construction
  20. brush Creative & Digital
  21. currency_bitcoin Crypto & Blockchain
  22. support_agent Customer Service & Helpdesk
  23. medical_services Dental
  24. medical_services Driving & Transport
  25. medical_services E Commerce & Social Media
  26. school Education & Teaching
  27. electrical_services Electrical Engineering
  28. bolt Energy
  29. local_mall Fmcg
  30. gavel Government & Non Profit
  31. emoji_events Graduate
  32. health_and_safety Healthcare
  33. beach_access Hospitality & Tourism
  34. groups Human Resources
  35. precision_manufacturing Industrial Engineering
  36. security Information Security
  37. handyman Installation & Maintenance
  38. policy Insurance
  39. code IT & Software
  40. gavel Legal
  41. sports_soccer Leisure & Sports
  42. inventory_2 Logistics & Warehousing
  43. supervisor_account Management
  44. supervisor_account Management Consultancy
  45. supervisor_account Manufacturing & Production
  46. campaign Marketing
  47. build Mechanical Engineering
  48. perm_media Media & PR
  49. local_hospital Medical
  50. local_hospital Military & Public Safety
  51. local_hospital Mining
  52. medical_services Nursing
  53. local_gas_station Oil & Gas
  54. biotech Pharmaceutical
  55. checklist_rtl Project Management
  56. shopping_bag Purchasing
  57. home_work Real Estate
  58. person_search Recruitment Consultancy
  59. store Retail
  60. point_of_sale Sales
  61. science Scientific Research & Development
  62. wifi Telecoms
  63. psychology Therapy
  64. pets Veterinary
View All Security Testing Jobs