Job Description

Our client is based in North West Brits district. They current have a position available for Jnr IT Security Architect.
This is a hybrid opportunity Brits/Pretoria.Job Summary:
We are seeking a highly skilled and dedicated IT Security Engineer to join our team and help safeguard our organization's IT infrastructure and data from cyber threats. The ideal candidate will have a strong background in information security, network security, and a deep understanding of security technologies. As an IT Security Engineer, you will be responsible for designing, implementing, and maintaining security solutions to protect our systems and data from unauthorized access, breaches, and other cyber threats.
Key Responsibilities:

• Security Monitoring & Threat Detection:

• Continuously monitor the organization's IT infrastructure for security incidents and potential vulnerabilities.
• Leverage security tools and solutions (e.g., SIEM, firewalls, IDS/IPS) to detect, analyse, and respond to security events.
• Conduct vulnerability assessments and penetration testing to identify and mitigate security weaknesses.
• Incident Response & Investigation:

• Respond promptly to security incidents and breaches, minimizing damage and ensuring proper documentation of incidents.
• Perform forensic investigations to determine the root cause and scope of security incidents.
• Work with cross-functional teams to develop incident response plans and execute them effectively.
• Security Architecture & Design:

• Design and implement security solutions, including network security protocols, encryption systems, and access control mechanisms.
• Work closely with IT teams to ensure that new infrastructure and systems are designed with security in mind.
• Stay up-to-date with industry trends, emerging threats, and evolving security technologies to provide innovative solutions.
• Policy & Compliance:

• Develop, implement, and enforce security policies, procedures, and best practices across the organization.
• Ensure compliance with industry standards and regulatory frameworks (e.g., ISO27001
• Conduct security audits and assessments to ensure adherence to security protocols and legal requirements.
• Risk Management:

• Identify and evaluate security risks across the organization and recommend mitigation strategies.
• Collaborate with risk management teams to assess the potential impact of threats and ensure that appropriate safeguards are in place.
• Assist in the creation and execution of disaster recovery and business continuity plans.
• User & Access Management:

• Manage identity and access management (IAM) systems to ensure secure user authentication, authorization, and access control.
• Enforce multi-factor authentication (MFA) and role-based access control (RBAC) policies to safeguard sensitive data.
• Provide guidance and training to employees on security best practices, phishing awareness, and safe IT practices.
• Documentation & Reporting:

• Document security incidents, processes, and procedures for future reference and compliance audits.
• Prepare and present regular reports to senior management regarding security status, incidents, and ongoing improvements.
• Maintain a comprehensive inventory of security tools, policies, and infrastructure components.

Skills & Qualifications:

• Education:

• Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field. (Relevant certifications may substitute for education requirements.)
• Certifications (Preferred):

• CISSP (Certified Information Systems Security Professional)
• CISM (Certified Information Security Manager)
• CEH (Certified Ethical Hacker)
• CompTIA Security+
• CISA (Certified Information Systems Auditor)

• Experience:

• Proven experience (3+ years) as an IT Security Engineer, Security Analyst, or in a similar role with responsibility for security operations and incident management.
• Strong knowledge of networking concepts (e.g., TCP/IP, VPNs, DNS, HTTP/S, etc.).
• Experience with security tools such as firewalls, IDS/IPS, SIEM, vulnerability scanners, and endpoint protection software.
• Familiarity with cloud security concepts and technologies ( Azure).
• Experience with security compliance standards (NIST, ISO 27001).
• Technical Skills:

• Expertise in network security, including firewalls, VPNs, IDS/IPS, and encryption technologies.
• Strong knowledge of system and application security, including web application firewalls (WAF), patch management, and secure software development practices.
• Hands-on experience with incident response tools, forensics software, and network monitoring systems.
• Familiarity with scripting and automation tools (Python, Bash, PowerShell).
• Knowledge of endpoint security solutions, antivirus software, and endpoint detection and response (EDR) tools.
• Soft Skills:

• Strong analytical and problem-solving skills to evaluate security risks and respond effectively to threats.
• Excellent communication skills to collaborate with cross-functional teams and provide clear reports to management.
• Detail-oriented with the ability to handle multiple tasks simultaneously in a fast-paced environment.
• Strong commitment to continuous learning and staying current on cybersecurity trends and best practices.

Working Conditions:

• Full-time position, with on-call requirements for emergency security incidents.
• May involve occasional travel for conferences, training, or audits.
• Ability to work remotely or in a hybrid environment.

If you do not hear from us within 30 days, kindly consider your application as unsuccessful. Twiga may keep your CV for future opportunities.

Twiga Consulting