Job Description

AVI LIMITED is home to many of South Africa's leading and best-loved brands! Listed on the Johannesburg Stock Exchange and centred on the FMCG market, AVI's extensive brand portfolio includes more than 50 brands. Our brands span a range of categories, including hot beverages, sweet and savoury biscuits and snacks, frozen convenience foods, out-of-home ranges, personal care products, cosmetics, footwear, accessories, and fashion apparel. We have a well-developed Shared Services structure spanning: International, IT, Finance, Logistics, Marketing, Procurement and Field Marketing, that allows us to take advantage of our scale. Our single-minded purpose is our brands growth and development.An exciting opportunity exists for an IT Security Operations Engineer at AVI Limited IT Shared Services in Bryanston.The purpose of the role is: * Apply technical IT Security Infrastructure expertise and tools to ensure the security of AVI IT operations and supporting infrastructure

• Implement, Manage, Maintain and Administer AVI's Security Infrastructure and Systems
• Implement and optimise tools to effectively manage and monitor infrastructure and provide effective alerting and reporting with regards to security incidents and vulnerability assessments
• Play lead role in uplifting skills of the IT Network and Systems Engineering team members and provide guidance to all ITSS with regards to IT Security Operations.

Line Manager: IT Security Operations Team LeadNumber of Direct Reports: NoneJob Specification:Key Performance Areas: * IT Security threat / breach identification, prevention and remediation

• IT Security Infrastructure administration and maintenance
• Provide IT Security Infrastructure input to ITSS technical projects
• Provide input into relevant IT Security Policies, Procedures, standards and guidelines in conjunction with the IT Security Specialist and Manager
• Development of Network and Systems team skills for ITSS

Minimum Requirements:Experience:Essential

• 3 years' Security Appliance (including UTM) and related administration and analysis tools, specifically across the FortiGate security product line
• 2 years' experience implementing and managing a SIEM solution (either in house or hosted service)
• 3 years' experience managing Microsoft Windows solutions (Windows Server OS / Active Directory Services / Microsoft Business Servers)
• 2 years' experience managing an industry-leading virtualization platform (VMware / Hyper-V) or managing cloud resources (Azure/AWS)

Important

• 3 years' Network Administration (Switching, Routing and Wireless)
• 3 years' Network and Web security protocols
• 3 years' experience with Forensic and monitoring tools e.g. Wireshark, etc.

Nice to have

• 3 years' System Security vulnerability identification and remediation
• 2 years' experience with public key infrastructure (PKI) and cryptographic protocols e.g. SSL / TLS
• 2 years' experience in PCIDSS as well as knowledge of local personal information protection legislation (POPI)
• 3 years' experience in the installation, administration, maintenance and usage of security-hardened Operating Systems e.g. Kali Linux
• 2 years' experience working within DSS PCI environments
• 2 years' experience designing and deploying infrastructure security policies based on industry standards such as CIS, ISO27001
• Ability to automate / script solutions (PowerShell / Python), or implementation of orchestration services
• Exposure to SAP Business Systems (R/3, Netweaver) and database experience (MS SQL / MySQL)
• 2 years' experience working with ZTNA/SASE

Qualifications:

• Relevant industry certifications (see below)

Certifications:Essential

• Fortinet NSE4
• Microsoft Technology Associate (MTA) / MCSA (Microsoft Certified Systems Administrator)

Important (at least one of the following)

• Cisco Certified Network Associate (CCNA)
• Cisco Certified Network Associate (CCNA) Security
• MCSE (Microsoft Certified Systems Engineer)
• CompTIA Cybersecurity Analyst (CySA+)
• ISC2 CISSP/SSCP

Nice to have

• CEH (Certified Ethical Hacker)
• CCNA (Cisco Certified Network Administrator - Routing and Switching, Wireless, Collaboration
• VMware Certified Professional (VCP)
• Azure Security Engineer
• RHCSA - Red Hat Certified System Administrator
• CEH (Certified Ethical Hacker)
• CCNP (Cisco Certified Network Professional) - Routing and Switching, Wireless, Collaboration
• Fortinet NSE7
• KLCP - Kali Linux certified Professional and/or RHCE - Red Hat Certified Engineer
• CompTIA Advanced Security Practitioner (CASP+)
• CompTIA Cloud+
• Cisco ISE

AVI