Job Description

AVI LIMITED

is home to many of South Africa's leading and best-loved brands! Listed on the Johannesburg Stock Exchange and centred on the FMCG market, AVI's extensive brand portfolio includes more than 50 brands. Our brands span a range of categories, including hot beverages, sweet and savoury biscuits and snacks, frozen convenience foods, out-of-home ranges, personal care products, cosmetics, footwear, accessories, and fashion apparel. We have a well-developed Shared Services structure spanning: International, IT, Finance, Logistics, Marketing, Procurement and Field Marketing, that allows us to take advantage of our scale. Our single-minded purpose is our brands growth and development.


An exciting opportunity exists for an

IT Security Operations Engineer

at

AVI Limited IT Shared Services

in Bryanston.



The purpose of the role is:

Apply

technical IT Security Infrastructure expertise

and tools to ensure the security of AVI IT operations and supporting infrastructure

Implement, Manage, Maintain and Administer

AVI's Security Infrastructure and Systems

Implement and optimise tools

to effectively

manage

and

monitor

infrastructure and provide effective

alerting and reporting

with regards to security incidents and vulnerability assessments Play lead role in

uplifting

skills of the IT Network and Systems Engineering team members and provide guidance to all ITSS with regards to IT Security Operations.

Line Manager

: IT Security Operations Team Lead

Number of Direct Reports

: None

Job Specification:

Key Performance Areas:

IT Security threat / breach

identification,

prevention and remediation

IT Security Infrastructure administration and maintenance Provide IT Security Infrastructure input to ITSS technical projects Provide input into relevant IT Security Policies, Procedures, standards and guidelines in conjunction with the IT Security Specialist and Manager Development of Network and Systems team skills for ITSS

Minimum Requirements:

Experience

:

Essential

3 years' Security Appliance (including UTM) and related administration and analysis tools, specifically across the FortiGate security product line 2 years' experience implementing and managing a SIEM solution (either in house or hosted service) 3 years' experience managing Microsoft Windows solutions (Windows Server OS / Active Directory Services / Microsoft Business Servers) 2 years' experience managing an industry-leading virtualization platform (VMware / Hyper-V) or managing cloud resources (Azure/AWS)

Important

3 years' Network Administration (Switching, Routing and Wireless) 3 years' Network and Web security protocols 3 years' experience with Forensic and monitoring tools e.g. Wireshark, etc.

Nice to have

3 years' System Security vulnerability identification and remediation 2 years' experience with public key infrastructure (PKI) and cryptographic protocols e.g. SSL / TLS 2 years' experience in PCIDSS as well as knowledge of local personal information protection legislation (POPI) 3 years' experience in the installation, administration, maintenance and usage of security-hardened Operating Systems e.g. Kali Linux 2 years' experience working within DSS PCI environments 2 years' experience designing and deploying infrastructure security policies based on industry standards such as CIS, ISO27001 Ability to automate / script solutions (PowerShell / Python), or implementation of orchestration services Exposure to SAP Business Systems (R/3, Netweaver) and database experience (MS SQL / MySQL) 2 years' experience working with ZTNA/SASE

Qualifications:

Relevant industry certifications (see below)

Certifications

:

Essential

Fortinet NSE4 Microsoft Technology Associate (MTA) / MCSA (Microsoft Certified Systems Administrator)

Important

(at least one of the following)

Cisco Certified Network Associate (CCNA) Cisco Certified Network Associate (CCNA) Security MCSE (Microsoft Certified Systems Engineer) CompTIA Cybersecurity Analyst (CySA+) ISC2 CISSP/SSCP

Nice to have

CEH (Certified Ethical Hacker) CCNA (Cisco Certified Network Administrator - Routing and Switching, Wireless, Collaboration VMware Certified Professional (VCP) Azure Security Engineer RHCSA - Red Hat Certified System Administrator CEH (Certified Ethical Hacker) CCNP (Cisco Certified Network Professional) - Routing and Switching, Wireless, Collaboration Fortinet NSE7 KLCP - Kali Linux certified Professional and/or RHCE - Red Hat Certified Engineer CompTIA Advanced Security Practitioner (CASP+) CompTIA Cloud+ * Cisco ISE