Cybersecurity Specialist - 3

Main purpose statement 

The Cyber Security Specialist is responsible for various tasks, including specifying the parameters that the security solutions require to function properly, contributing to the engineering of the security solutions, carrying out operations with the support of the security solutions, operating the security solutions in functional and technical terms, and providing help and support to users.

Key responsibilities

• Implementation of business enablement through securing IoT, 5G and Edge Computing.
• Developing and implementing security architecture strategies encompassing traditional network and micro segmentation, defense-in-depth, remote access, encryption technologies, backup and replication, Software Defined Networking (SDN), network function virtualization, zero trust models, Secure Access Service Edge (SASE)/Secure Service Edge (SSE), and overlay networks and secure enclaves.
• Management of risk by conducting risk assessments and penetration testing.
• Ensuring security operations resilience through threat prevention involving network and application firewalls, assess management, SaaS detection, and encryption (SSL, PKI).
• Ensuring security operations resilience through threat detection, including log analysis and correlation, threat hunting, insider threat detection, integration with Managed Security Service Providers (MSSP), integration of Threat Intelligence Platform (TIP), utilisation of deception technologies for breach detection, full packet inspection, and detection of misconfigurations.
• Management of identities by providing oversight of identity credentialing, account creation and deletion, Single Sign On (SSO), and privileged access management (PAM).
• Timely and proficient handling of security breaches, employing rapid response protocols and comprehensive remediation strategies.
• Methodically testing and assessing security products to guarantee alignment with specific operational requirements and standards.
• Compiling comprehensive reports meticulously documenting security incidents and the corresponding course of action.
• Research cutting-edge security technologies and proactive strategies to ensure current and proactive protection against evolving threats.

Key Competencies

• Ability to problem solve and think creatively
• Possess business skills e.g. IT knowledge, infrastructure, development, production operations steering and IT security and cybersecurity 
• Ability to work in a team and collaborate 
• Ability to facilitate meetings, training etc.
• Creating specifications and conducting technical and operational reviews.
• Implementing and engineering solutions, including deployment, configuration, and testing.
• Managing operations, changes, and incidents.
• Conducting operations using security solutions such as IAM, DLP, DSPM, PAM and TPRM.
• Providing support and guidance to entities for installing and operating security solutions.
• Designing and producing indicators, reporting documents, and reports on the performance of security solutions.
• Implementing warranties such as alerts and controls.
• Leading working groups.
• Creating user, technical, and operational documentation.

Qualifications, skills and experience

• Grade 12
• Relevant degree/diploma - desirable
• Industry Certification will be advantageous (CompTIA, ISC2, etc.)
• Vendor Certification will be advantageous (Fortinet, Cisco, Microsoft, etc.)
• At least ten years’ experience in a technical hands-on administrative or engineering role responsible for cybersecurity toolsets including IAM, PAM, firewall, NAC, WAF, DDoS, MFA, MDM, endpoint protection, DLP, vulnerability scanning, AD, Windows OS, Linux OS, network and Wi-Fi administration