IT Security Technical Specialist (Gauteng) at Sun International

Description

• The IT Security Technical Specialist is responsible for providing expert technical oversight and hands-on execution across Sun International’s security landscape.
• This role ensures the confidentiality, integrity, and availability of technology assets by designing, implementing, and continuously improving security controls for on-premises, cloud, and hybrid environments.
• The specialist drives proactive security through vulnerability management, incident response, and architectural reviews, while embedding security into DevSecOps pipelines and Infrastructure as Code (IaC) practices.
• By partnering with cross-functional teams, the role integrates security requirements into new projects and technologies, ensures compliance with regulatory frameworks (such as POPIA, GDPR, ISO 27001, and NIST), and delivers actionable reporting to support strategic decision-making.
• The IT Security Technical Specialist acts as a key enabler for secure innovation, operational resilience, and regulatory compliance across the enterprise.

Technical security oversight:

• Conduct security scans and vulnerability management (internal and external environment) and manage closure of vulnerabilities;
• Design appropriate security controls library for IT infrastructure, applications and systems.
• Review systems and applications for security risks and ensure they are mitigated by IT / Business owners;
• Manage the end to end lifecycle of any potential or actual security incident;
• Identify, investigate and report on suspected security breaches and manage resolution with key stakeholders;
• Assess Sun International’s security measures, such as firewalls, anti-virus software and passwords, to identify any weak points that might make information systems vulnerable to attack;
• Perform ongoing health-checks and test the effectiveness of the IT security environment;
• Oversee security testing of new or enhanced products to ensure information security requirements are met;
• Stay current with incident response, digital forensics methodology, the associated legal requirements and threats applicable to the South Africa;
• Identify, implement and monitor security controls required for new digital products
• Report, escalate and address non-compliance to defined incident response processes and procedures;

Shift Left & DevSecOps 

• Integrate and configure SAST/DAST tools and dependency scanners within CI/CD pipelines, ensuring seamless automation and minimal false positives.
• Apply and audit secure coding standards, troubleshooting code-level vulnerabilities during security gates for releases.
• Provide technical guidance to development teams on implementing security guardrails, conducting code reviews, and resolving automated check failures.

Infrastructure as Code (IaC) Security

• Conduct in-depth reviews of IaC templates (Terraform, CloudFormation, ARM/Bicep), identifying and fixing security flaws beyond baseline compliance.
• Develop and deploy policies-as-code, including custom scripts for automated compliance validation in pipelines.
• Actively monitor IaC deployments for anomalies, perform root cause analysis on security incidents, and execute targeted remediations.

Core behavioural and Technical / proficiency competencies:

• Proficiency in SIEM/SOAR tools, CSPM solutions, IaC security, and DevSecOps practices.
• Strong technical problem-solving and analytical skills.
• Collaborating & Communicating
• Agile & Adaptable
• Innovation
• Execution Focus

Requirements

• Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or equivalent.
• Preferred Certifications: CompTIA Security+, Certified Ethical Hacker (CEH), AWS Certified Security – Specialty, Azure Security Engineer Associate, or equivalent.
• Minimum 5 years in cybersecurity operations, incident handling, or technical security roles.
• At least 1 year in cloud security with practical experience in IaC tools and CI/CD environments.
• Background in IAM, vulnerability scanning, encryption, and network security.