Systems Engineer II (Systems Vulnerability Management)
  • South Africa Brackenfell
  • The Shoprite Group of Companies
1 year before
31.12.2023
Protect and Defend
Vulnerability Assessment and Management
Job Description

The purpose of the Senior Systems Engineer is to advise on and effectively coordinate the remediation of complex, scanned and reported systems vulnerability concerns raised by the security teams. This role facilitates the technical support, system administration and fit-for-purpose solutions (i.e., Patching) with the respective systems support teams. This role leverages in-depth system engineering knowledge of various systems engineering operations (Linux and Microsoft Operating Systems, Integration, Database Management, etc.) to develop, implement and maintain systems vulnerability processes and documentation.


This role advises and assists systems support teams with systems vulnerability analysis, understanding and remediation as per escalated security report, whilst managing system vulnerability resolutions as per agreed service levels and quality standards. This role is part of a team of System and Security Engineers and supporting assigned system teams, applications, and/or associated technologies in the enterprise.

Quick response
Required Knowledge
  • K0004   Knowledge of cybersecurity and privacy principles.
  • K0005   Knowledge of cyber threats an`d vulnerabilities.
  • K0006   Knowledge of specific operational impacts of cybersecurity lapses.
  • K0070   Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
  • K0089   Knowledge of systems diagnostic tools and fault identification techniques.
  • K0167   Knowledge of system administration, network, and operating system hardening techniques.
  • K0224   Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems.
  • K0265   Knowledge of infrastructure supporting information technology (IT) for safety, performance, and reliability.
Required Skills
  • S0001   Skill in conducting vulnerability scans and recognizing vulnerabilities in security systems.
  • S0367   Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
Required Abilities
  • A0001  Ability to identify systemic security issues based on the analysis of vulnerability and configuration data.
  • A0123  Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).