425 Security Testing jobs in South Africa
Security Testing
Posted today
Job Viewed
Job Description
***Security Testing & GRC Specialist***
(see below for the Strategic Implementation Specialist)
Role Overview:
We are seeking a versatile Security Specialist who can combine deep hands-on expertise in ethical hacking and security testing with a strong understanding of governance, risk, and compliance (GRC). This individual will ensure our systems are continuously tested for vulnerabilities while also aligning our practices with regulatory and organisational security requirements.
Key Responsibilities:
- Conduct penetration testing, ethical hacking, and vulnerability assessments using industry-standard tools (e.g., BurpSuite, OWASP ZAP, Metasploit, etc.).
- Identify, document, and report security vulnerabilities, providing remediation guidance to development and operations teams.
- Develop and maintain GRC frameworks, policies, and procedures in line with industry standards (ISO 27001, NIST, GDPR, POPIA, etc.).
- Support risk assessments, audits, and compliance initiatives.
- Act as a bridge between technical security testing and compliance-driven governance activities.
- Provide security awareness and compliance training as needed.
Key Skills & Experience:
- Proven experience as a penetration tester, ethical hacker, or security engineer.
- Familiarity with GRC frameworks, regulatory compliance, and audit processes.
- Strong knowledge of application, cloud, and infrastructure security.
- Excellent communication and reporting skills to both technical and non-technical stakeholders.
- Relevant certifications desirable (e.g., OSCP, CEH, CISSP, CISM, ISO 27001 Lead Implementer/Auditor).
***Security Strategy Implementation Specialist***
Role Overview:
We are looking for a motivated Security Strategy Implementation Specialist to support the rollout and execution of the organisation's security strategy. This role will work closely with the Head of Security to translate strategic initiatives into actionable programs, ensure alignment across teams, and drive adoption of security practices across the enterprise.
Key Responsibilities:
- Support the execution of the organisation's security strategy and roadmap.
- Coordinate cross-functional initiatives across development, operations, and business teams.
- Track progress of security programs, metrics, and KPIs.
- Assist in building maturity across key areas such as DevSecOps, threat modelling, security testing, cloud security, and compliance.
- Develop executive-ready reports, dashboards, and communications to highlight progress, risks, and achievements.
- Provide operational support for security projects and tools adoption.
Key Skills & Experience:
- Experience in cybersecurity program management, security operations, or related domains.
- Understanding of modern security domains (DevSecOps, cloud security, security testing, GRC).
- Strong organisational, communication, and stakeholder management skills.
- Ability to translate strategy into operational tasks and follow through on execution.
- Certifications such as CISSP, CISM, or project/program management certifications (e.g., PMP, Prince2, Agile/Scrum) are an advantage.
Security Testing & GRC Specialist (Pen Tester Governance, Risk & Compliance)
Posted today
Job Viewed
Job Description
Security Analyst - Penetration Testing & Red Teaming
Posted 7 days ago
Job Viewed
Job Description
Security Analyst - Penetration Testing & Red Teaming
Johannesburg, South Africa
Job Openings Security Analyst - Penetration Testing & Red Teaming
About the job Security Analyst - Penetration Testing & Red TeamingExciting Opportunity: Security Analyst: Penetration Testing & Red Teaming Specialist
Our client is looking for a talented Security Analyst who is ready to take on a variety of security assessments and grow their career in a high-energy, cutting-edge environment.
Responsibilities:
Penetration Testing:
- Collaborate within a team of experts to conduct vulnerability assessments and penetration tests across a wide range of technologies.
- Assess network, application (web and thick client), mobile, wireless, social engineering, and physical security, using both automated and manual techniques.
- Engage with clients professionally to deliver insights and constructive feedback, ensuring their security needs are met.
- Dive deep into security topics like network, database, and application security, developing your expertise along the way.
- Leverage your skills with penetration testing tools to uncover vulnerabilities and improve security measures.
Red Teaming:
- Become part of an elite Red Team, focusing on reconnaissance using open-source intelligence (OSINT) to gather actionable data.
- Take the lead in compromising systems by identifying vulnerabilities in people, processes, and technology.
- Develop and deploy command-and-control servers and custom payloads, establishing persistence within target environments.
- Evolve your craft by creating new tools, techniques, and procedures to avoid detection by defenders.
- Work on escalation, maintaining long-term access to compromised networks, and exfiltrating critical data.
Research and Development:
- Stay ahead of the curve by researching and identifying new vulnerabilities, focusing on high-profile products and systems.
- Understand and analyze the latest tactics used by threat actors to craft innovative security strategies.
- Develop and refine attack methodologies that will be used to strengthen future defensive efforts.
Requirements:
Experience:
- 2-5 years' hands-on Penetration Testing, including a strong background in network, mobile, web, and wireless security assessments.
- Strong understanding of common vulnerability assessment and penetration testing tools.
- Ability to think critically and creatively to solve complex security challenges.
- Strong communication skills for both internal collaboration and client-facing interactions.
- Passion for continuous learning and staying updated on the latest in cybersecurity.
Security Analyst - Penetration Testing & Red Teaming
Posted 4 days ago
Job Viewed
Job Description
Our client is looking for a talented Security Analyst who is ready to take on a variety of security assessments and grow their career in a high-energy, cutting-edge environment.
Responsibilities:
Penetration Testing:
- Collaborate within a team of experts to conduct vulnerability assessments and penetration tests across a wide range of technologies.
- Assess network, application (web and thick client), mobile, wireless, social engineering, and physical security, using both automated and manual techniques.
- Engage with clients professionally to deliver insights and constructive feedback, ensuring their security needs are met.
- Dive deep into security topics like network, database, and application security, developing your expertise along the way.
- Leverage your skills with penetration testing tools to uncover vulnerabilities and improve security measures.
Red Teaming:
- Become part of an elite Red Team, focusing on reconnaissance using open-source intelligence (OSINT) to gather actionable data.
- Take the lead in compromising systems by identifying vulnerabilities in people, processes, and technology.
- Develop and deploy command-and-control servers and custom payloads, establishing persistence within target environments.
- Evolve your craft by creating new tools, techniques, and procedures to avoid detection by defenders.
- Work on escalation, maintaining long-term access to compromised networks, and exfiltrating critical data.
Research and Development:
- Stay ahead of the curve by researching and identifying new vulnerabilities, focusing on high-profile products and systems.
- Understand and analyze the latest tactics used by threat actors to craft innovative security strategies.
- Develop and refine attack methodologies that will be used to strengthen future defensive efforts.
Requirements:
Experience:
- 2-5 years' hands-on Penetration Testing, including a strong background in network, mobile, web, and wireless security assessments.
- Strong understanding of common vulnerability assessment and penetration testing tools.
- Ability to think critically and creatively to solve complex security challenges.
- Strong communication skills for both internal collaboration and client-facing interactions.
- Passion for continuous learning and staying updated on the latest in cybersecurity.
Security analyst - penetration testing & red teaming
Posted 1 day ago
Job Viewed
Job Description
Security Engineer
Posted 26 days ago
Job Viewed
Job Description
Restream is looking for a talented Security Engineer to join us to solve complex challenges and build world-class products. In this role, you will conduct architecture security reviews, application testing, penetration testing, and work with the engineering team, security researchers, and third-party vendors to ensure the security of our systems as we rapidly scale our product and organization. You understand the importance of simplicity and reliability, and you calculate the impact of every decision on each. We believe in small teams where each member contributes significant value.
What You’ll Do
- Perform application and penetration testing.
- Work with engineers to analyze systems, threat model new features, and create responsive controls to ensure end-to-end customer protection.
- Work with third-party vendors to perform annual application and penetration testing reports.
- Maintain, and grow our private bug bounty program; lead the transition to a public bug bounty program.
- Give and receive code review feedback from the team.
- Maintain a pulse on emerging technologies and discover hidden opportunities in our environment.
- Ensure security and resilience of Restream production infrastructure.
What We Look For
- A scrappy, entrepreneurial attitude that gets high-quality projects done quickly.
- Solid knowledge of web applications vulnerabilities and attack vectors.
- Experience manually testing web applications, performing penetration testing, and using automated tools for reconnaissance and discovery.
- Experience with scripting languages and at least one general-purpose programming language. Node.JS (TypeScript) or Rust would be a plus but are not a requirement.
- Strong written and verbal communication skills.
- Self-directed, analytical, and work well in a team environment.
- Passionate about keeping Restream customers and employees safe online.
Restream is the #1 solution for creating professional live videos and streaming them to all social networks at once. Millions of people around the world use Restream to reach, engage, and monetize their audiences. We’re a small and diverse group of dreamers who make technology work for the world. We believe that a small but highly driven and focused team can make a lasting impact in any area.
What We Offer
- Startup environment and a flat company structure.
- Work closely with founders and team to build and grow the product.
- Direct influence and impact on the direction of the product and development.
- The ability to create something that influences people’s lives.
- Competitive pay and equity packages for you to truly be a part of the Restream journey.
- Flexible paid time off.
- The tech you need to get your job done.
Security Engineer
Posted today
Job Viewed
Job Description
Be The First To Know
About the latest Security testing Jobs in South Africa !
Security Engineer
Posted today
Job Viewed
Job Description
Security Engineer
Posted today
Job Viewed
Job Description
Security Engineer
Posted 22 days ago
Job Viewed
Job Description
- Cybersecurity Management
- Infrastructure Management
- Risk Management and Compliance
- QMS and Documentation
Minimum education (essential):
- Engineering degree (Computer, Software, Mechanical or Electronic)
Minimum education (desirable):
- OSCP (Offensive Security Certified Professional)
- PNPT (Practical Network Penetration Tester)
- CISSP (Certified Information Systems Security Professional)
- CCSP (Certified Cloud Security Practitioner)
Minimum applicable experience (years):
- AWS' ecosystem:
- AWS Well Architected Framework
- Trusted Advisor
- GuardDuty / SCP / SSM / IAM / WAF
- Container services such as ECS/EKS
- Incident detection and response management.
- Performing penetration tests and vulnerability scans against networks and infrastructure, applications and AWS environments.
- Drafting and implementing security policies, security procedures, security design and implementation.
The following would be advantageous:
- ISO 14971 (risk management) compliance
- ISO 27032 (cybersecurity) compliance
- SOC2 Type 2 (with HiTrust attestation) or HiTrust experience (or equivalent)
Skills and Knowledge (essential):
- Deep understanding of automation, quality engineering, architectural methodologies, principles, and solution design.
- Familiarity with operational observability, including log aggregation, application performance monitoring, etc.
- Understanding of the following: Linux/Windows server and application administration and configuration, networking, scripting and automation, large scale distributed computing architecture.
- Solid knowledge of IT security (firewalls, EDR, IDS/IPS, SOAR, vulnerability scanning forensic and Threat Hunting).
- Understanding of AWS ECS & Kubernetes and Containerisation (Docker/Podman/Containerd) with implementation, support, and design.
- Knowledge in security classification frameworks like MITRE or the cyber-attack kill chain.
- Good knowledge and understanding of industry standards, memberships, and frameworks such as CIS and SOC 2.