Cyber Security Engineer

Cyber Security Engineer - 6 Month Contract

Minimum Requirements:

• 7+ years experience in Infrastructure, Software Development, DevOps or Security
• 4+ years of design and implementation of highly available, enterprise-scale public Cloud infrastructure.
• 3+ years in AWS with a focus on Data, Security & IAM
• introducing cloud security technology (start-up) in an environment processes, principles etc.
• Design and hands-on troubleshooting background on AWS Platform (Azure or GCP will be advantageous).
• Experience working in a DevOps environment.
• Experience developing and supporting infrastructure and cloud security capabilities for microservices-based architectures.
• Experience working with CI/CD technologies. Ie; GitLab and GitHub
• Experience with authentication and Authorization technologies and protocols (LDAP, Kerberos, AD, OAuth 2.0, OpenID Connect, SAML).
• Experience working with scripting and provisioning and IAC tools like Terraform, Ansible, CloudFormation or equivalent.

Ideal:

• 2+ years in AWS with focus on Networking
• Experience in a financial services or banking organization
• Infrastructure security
• Experience in engineering data pipelines using Big Data technologies such as Spark, Kafka, Hadoop, Storm, etc.
• Experience with ELK, New Relic, or similar on Public Cloud Platforms.
• Experience with Docker and Kubernetes, EKS.
• Experience working in a fast-paced Agile/Scrum environment (Atlassian Stack).
• Experience working with various Database technologies, SQL Server, MySQL, PostgresSQL, RedShift, Oracle, etc.
• Experience working with Vault/Secret platforms, ie; Hashicorp.

Qualifications (Minimum)

• A relevant tertiary qualification in AWS Foundation or Cloud Computing

Qualifications (Ideal or Preferred)

• Bachelor's Degree in Information Technology or Engineering Other
• Relevant certifications such as CISSP, CISM, CISA, or other security-related certifications.
• AWS Data/Security certification

Knowledge

Minimum:

• Basic understanding of at least one high-level programming language (GoLang / .net / Java/python)
• Advanced scripting skills in at least one interpreted language (Bash/PowerShell)
• Design and deployment of highly available, enterprise-scale Cloud infrastructure.
• Advanced knowledge of infrastructure concepts, technologies, and patterns. (SDLC, IaC)
• Practical, working knowledge of:
• Developing and delivering systems on AWS Platforms (Azure or GCP will be advantageous).
• Supporting and enhancing build and release processes through automation using a combination of processes and existing tools.
• Understanding of Cloud Security technologies and best practices.
• Understanding of Networking in Cloud environments.

Ideal:

• Previous experience in a DevOps role and incorporating security controls in the build process.
• Experience in engineering data and/or security log pipelines using Big Data technologies such as Spark, Kafka, Hadoop, Storm, etc.
• Demonstrated experience in designing, implementing, and managing data security solutions for structured and unstructured data.
• Understanding of modern software engineering patterns, including those used in highly scalable, distributed, and resilient systems.
• Ability to deliver long-term, repeatable IAC solutions that incorporate directly into an overall CI/CD process.
• Knowledge of JSON templates, PowerShell, CLIs, Shell, and Python.
• Experience working with cross-functional teams and providing data security guidance to developers and IT staff.
• Familiarity with regulatory requirements and industry standards related to data protection.

Skills

• Communications Skills
• Cloud Data Security: Experience securing data in cloud environments (e.g., AWS, Azure, GCP).
• Data Security: Proficiency with securing big data platforms, and database systems and ensuring data integrity (e.g., Hadoop, Spark, MSSQL, Oracle).
• Data Masking:
• Knowledge of data masking and tokenization tools and their integration.
• Knowledge of data obfuscation techniques to protect sensitive information.
• Data Privacy Regulations: Familiarity with POPIA, GDPR, or other data privacy regulations.
• 2 - 3 years of Cloud experience.
• Data Encryption: Proficiency in data encryption techniques and technologies to safeguard structured and unstructured data.
• Access Control: Expertise in managing user access, permissions, and identity management systems for data security.
• Data Loss Prevention (DLP): Implementation and management of DLP solutions for monitoring and controlling data in transit and at rest.
• Secure Data Transfer Protocols: Understanding of secure protocols like TLS/SSL for data in transition.
• Data Classification: Ability to classify data based on sensitivity and apply appropriate security measures.
• Secure Logging and Auditing: Setting up comprehensive logs and audit trails for data access and changes.

Competencies

• Care and passion for our people (Departmental Contributor)
• Earn and extend trust (Departmental Contributor)
• Simplify and make it easy (Departmental Contributor)
• Drive innovation mindset (Departmental Contributor)
• Lead with the "Why" (Departmental Contributor)
• Attract and relentlessly develop people (Departmental Contributor)
• Make decisions - faster and smarter (Departmental Contributor)
• Inspire optimism and persistence (Departmental Contributor)

Conditions of Employment

• Clear criminal and credit record
• A valid driver's license and own vehicle is required