Security Engineer
Cape Town
SECURITY ENGINEER
The Security Engineer oversees the response to information system security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, and policy breaches; engages, interacts, and coordinates with third-party incident responders, including law enforcement. Oversees the administration of authentication and access controls, including provisioning, changes, and deprovisioning of user and system accounts, security/access roles, and access permissions to information assets. Analyses trends, news and changes in threat and compliance environment with respect to organizational risk; advises organization management and develops and executes plans for compliance and mitigation of risk; oversees risk and compliance self-assessments and engages and coordinates third-party risk and compliance assessments. Analyses and oversees the development of information security governance, including organizational policies, procedures, standards, baselines, and guidelines with respect to information security and use and operation of information systems. Oversees the development and administration of information security training and awareness programs. The Security Engineer is expected to take ownership of implementations, maintenance and operations of information system security controls and countermeasures
Key Responsibilities
Security Engineers work closely with clients, displaying good client engagement skills and engaging at a high level of professionalism.
They are required to interact with clients to meet more complex requirements of a solution. Problems and issues that cannot be resolved are escalated to the relevant third parties.
Assists in analysing, planning, implementing, maintaining, troubleshooting, and enhancing large complex systems or networks consisting of a combination that may will include several security products, demonstrates project management and administration ability.
They write reports and assist with input for proposals and project documentation. The Security Engineer ensures the compilation of the documentation of standard operating procedures relating to installations and fixes.
Certification, both in vendor, technology and product is elevated to a specialized level and activities continue to progress towards an expert level.
Academic Qualifications
Advanced diploma, degree, or relevant qualification in IT/Computing (or demonstrated equivalent work experience)
Certifications (Minimum)
Computer Science / Information Technology Degree or equivalent together with specialized training in new technologies and legacy systems or equivalent
Network security certifications (vendor certifications)
Competence and certification in other security technologies
Microsoft Azure Security Technologies (AZ-500 + MS-500)
Industry certifications (CISSP, CISM, Security+)
Experience Required
5 years solid work experience in a technical implementation engineering or similar role
Experience engaging with clients and conducting presentations
End to end deployment and support of above-mentioned technologies
Practical Skills Required
Good understanding and appreciation of technical design and business principles
Demonstrates project management and administration ability
Good project skills which are demonstrated in the execution
Demonstrate customer engagement skills
Demonstrate relevant domain specialist knowledge
Good verbal communication skills
Client focused and displayed a proactive approach to solving problems
Ability to work under pressure
Ability to coach, mentor and provide guidance to team members
Good understanding of project management principles
Be proficient in the implementation, configuration of the products in the security GTM.
Interact with clients to meet complex requirements of a solution.
Escalate unresolved problems and issues to the relevant third parties.
Respond to escalated client requests and support client applications to a first line resolution.
Escalate complex problems to the relevant third parties.
Write reports and proposals and complete and maintain documentation.
Assist with the documentation of standard operating procedures relating to installations and fixes.
Included in higher complex security design work, with input to the design expected.
Expected to take ownership of relevant security technologies according to domain or specialization.
Knowledge, Skills and Attributes
Ability to communicate and work across different cultures and social groups
Ability to plan activities and projects well in advance, and considers possible changing circumstances
Ability to maintain a positive outlook at work
Ability to work well in a pressurized environment
Ability to work hard and put in longer hours when it is necessary
Ability to apply active listening techniques such as paraphrasing the message to confirm understanding, probing for further relevant information, and refraining from interrupting
Ability to adapt to changing circumstances
Ability to place client at the forefront of all interactions, understanding their requirements and creating a positive client experience throughout the total client journey