Ethical Hacker and Security Lead
Deka Minas (Pty) Ltd
Johannesburg, Gauteng, ZA
3d ago

This position involves understanding and taking steps to mitigate the risks associated with collecting,

storing, and transmitting data in a business setting. You will be expected to set up security measures

that help prevent security breaches, as well as analysing any breeches that do occur.

RESPONSIBILITIES

  • Research the latest information technology security trends.
  • Monitor their organization’s networks for security breaches and investigate violations when
  • they occur.

  • Help to design, implement, and maintain the organization’s cyber-security plan.
  • Develop and direct implementation of security standards and best practices for the
  • organization.

  • Direct the installation and use of security tools (e.g., firewalls, data encryption), to protect
  • sensitive information.

  • Recommend security enhancements to IT Management.
  • Help computer technicians, end users when they need to install or learn about new security
  • products and / or procedures.

  • Ensure that IT security audits are conducted periodically or as needed (e.g., when a security
  • breach occurs).

  • Analyse existing security systems and make recommendations for changes or improvements
  • Prepare reports and action plans if a security breech does occur
  • Organize and conduct tests and ethical hacks of the existing security architecture
  • Monitor the network and provide early warning of abnormalities or problems
  • Upgrade systems regularly to remain competitive in the field of security
  • Communicate the system status and keep users informed of downtime or changes to the
  • system

  • Keep technical knowledge current through continuing education
  • Provide system updates and write code fixes
  • REQUIRED SKILLS / EXPERIENCE & QUALIFICATIONS

  • Bachelor’s degree in Computer Science, Information Systems, or equivalent education or
  • work experience and CEH

  • 4+ years relevant experience
  • Familiarity with the DOD information assurance vulnerability management program
  • Proficiency with any of the following : anti-virus, HIPS, ID / PS, Host-based Forensics,
  • Network Forensics and RSA security

  • In-depth knowledge of architecture, engineering, and operations of at least one
  • enterprise SIEM platform) e.g Nitro / McAfee Enterprise Security Manager, ArcSight,

    QRadar, LogLogic, Splunk)

  • Experience in developing and deploying signatures (e.g., YARA, HIPS etc.)
  • Understanding of mobile technology, and UNIX and basic Unix commands
  • Exceptional understanding of security vulnerabilities, attacker exploit techniques and
  • methods for remediation of such.

  • Experience in protecting large-scale applications using Web Application Firewalls
  • WAFs), network firewalls and Intrusion Prevention System (IPS).

  • Experience in designing, building, or testing web and API-based architectures.
  • Experience communicating technical concepts to non-technical audience.
  • Exceptional presentation and written English communication skills, high degree of
  • comfort with technical and executive audiences.

  • Experience scripting in common languages.
  • 4+ years of experience in application and network security engineering.
  • Experience with threat hunting.
  • Experience working on public Cloud platforms.
  • Good understanding of HTTP and TCP / IP
  • A solid background in Internet and Security technologies such as SWG, Sandboxing,
  • Firewalls, DLP and VPNs.

  • Network transformation technologies such as MPLS, SD-WAN or WAN Optimization.
  • The ability to read packet captures.
  • Ability to interpret security reports to provide actionable improvements for our clients.
  • A detailed working knowledge of web-based security and network infrastructure,
  • Security Proxies, such as NGFW, SSL / IPSec VPNs and Firewalls.

  • Good understanding of ITIL / Service Management / Release Pipeline
  • Troubleshooting knowledge, design, and implementation experience
  • A vendor certification such as CISSP, CCIE, CCNP, JNCIE, MCSE
  • Experience in security audits both internal and external endpoints.
  • Please note that by submitting your personal information to Deka Minas you free-willingly issue the business consent to make use of such data for the specific purpose of securing you either permanent or temporary employment.

    Our business makes use of a POPIA compliant database and you have the right to access, right to correction and right to deletion of your personal information.

    Report this job
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form