Security Engineer - Contract
  • South Africa Johannesburg
  • ProDevelopment Group
1 year before
31.12.2023
Securely Provision
Systems Architecture
Job Description

About the job
Our Client a Global tech firm is seeking a Security Engineer to join their team in Johannesburg on a contract basis. They offer stability, growth, attractive rates and a great working environment.

To ensure that the design of IT security architecture as well as appropriate security controls are in line with policies, processes, standards and procedures. The incumbent will also ensure that proper and adequate IT technology and tools are in place to enforce these controls. Responsible for the design, implementation, and operational aspects of the Data Centre Network Security environment.

Requirements

Drive business profitability in the context of cost management through Information technology solutions
Increase operational efficiency and suggest solutions to enhance cost effectiveness
Develop financial model for charge-out for all components to ensure relevant income are generated
Cultivate and manage objective working relationships with a variety of stakeholders, including end-users, SME’s, project managers and senior staff members by providing input to business requirements
Develop appropriate strategic plans for the network design and architecture by executing plans and all changes required to optimize business network
Monitor changes in legislation, regulations, initiatives, and relevant industry practices. Ensure drafting and implementation of appropriate interventions. Ensure compliance with audit requirements
Identify all the components within the network by defining benchmarks for latency and utiisation of network components
Implement network changes during defined slots and at appropriate times by executing all changes
Ensure all network testing and analysis of network facilities are executed and findings used to increase efficiencies in the business
Produce multi-network designs, design policies and applications for the business
Manage own development to increase own competencies

Qualifications

6 years’ experience in IT Network Security
Expert knowledge of Cisco Next Generation Firewalls, remote access VPN and associated security technologies.
Essential to have an excellent understanding of best practices in layered Network security appliances, devices, and components.
Strong Network troubleshooting skills
Must have a very good knowledge of security trends and technology changes.
A knowledge of complementary Cisco technologies like ACI and Tetration or cloud services {Azure/AWS}, would be advantageous.

Quick response
Required Knowledge
  • K0001   Knowledge of computer networking concepts and protocols, and network security methodologies.
  • K0004   Knowledge of cybersecurity and privacy principles.
  • K0027   Knowledge of organization's enterprise information security architecture.
  • K0028   Knowledge of organization's evaluation and validation requirements.
  • K0061   Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).
  • K0264   Knowledge of program protection planning (e.g. information technology (IT) supply chain security/risk management policies, anti-tampering techniques, and requirements).
  • K0516   Knowledge of physical and logical network devices and infrastructure to include hubs, switches, routers, firewalls, etc.
  • K0008   Knowledge of applicable business processes and operations of customer organizations.
  • K0010   Knowledge of communication methods, principles, and concepts that support the network infrastructure.
  • K0202   Knowledge of the application firewall concepts and functions (e.g., Single point of authentication/audit/policy enforcement, message scanning for malicious content, data anonymization for PCI and PII compliance, data loss protection scanning, accelerated cryptographic operations, SSL security, REST/JSON processing).
Required Skills
  • S0005   Skill in applying and incorporating information technologies into proposed solutions.
  • S0027   Skill in determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.
  • S0122   Skill in the use of design methods.
  • S0367   Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
  • S0059   Skill in using Virtual Private Network (VPN) devices and encryption.
  • S0076   Skill in configuring and utilizing software-based computer protection tools (e.g., software firewalls, antivirus software, anti-spyware).
Required Abilities
  • A0008  Ability to apply the methods, standards, and approaches for describing, analyzing, and documenting an organization's enterprise information technology (IT) architecture (e.g., Open Group Architecture Framework [TOGAF], Department of Defense Architecture Framework [DoDAF], Federal Enterprise Architecture Framework [FEAF]).
  • A0027  Ability to apply an organization's goals and objectives to develop and maintain architecture.
  • A0038  Ability to optimize systems to meet enterprise performance requirements.
  • A0123  Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
  • A0172  Ability to set up a physical or logical sub-networks that separates an internal local area network (LAN) from other untrusted networks.
  • A0048  Ability to apply network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).