Security Specialist (IT Infrastructure) at Gcubed Boutique Recruitment

Responsibilities:

The Security Specialist’s role is to establish an enterprise security stance through policy, architecture and training processes. Secondary tasks will include the selection of appropriate security solutions, and oversight of any vulnerability audits and assessments. The IT Security Specialist is expected to interface with peers in the Systems and Network departments as well as with the leaders of the business units to both share the corporate security vision with those individuals and to solicit their involvement in achieving higher levels of enterprise security through information sharing and co-operation. This person will also analyze and resolve security breaches and vulnerability issues in a timely and accurate fashion, and conduct user activity audits where required.

Strategy & Planning

• Create and maintain the enterprise’s security architecture design
• Develop, implement, maintain, and oversee enforcement of policies, procedures and associated plans for system security and user system access 
• Design and implement disaster recovery plan for operating systems, databases, networks, servers, and software applications
• Assess need for any security reconfigurations (minor or significant) and execute them if required
• Keep current with emerging security alerts and issues
• Conduct research on emerging products, services, protocols, and standards in support of security enhancement and development efforts

Acquisition & Deployment

• Select and acquire additional security solutions or enhancements to existing security solutions to improve overall enterprise security 
• Recommend, schedule, and perform security improvements, upgrades, and/or purchases.
• Oversee the deployment, integration and initial configuration of all new security solutions and of any enhancements to existing security solutions 

Operational Management

• Deploy, manage and maintain all security systems and their corresponding or associated software
• Ensure the confidentiality, integrity and availability of the data residing on or transmitted
• Manage the implementation and execution of Data-Loss strategies
• Ensure the enforcement of enterprise security documents
• Manage connection security for local area networks, the company Web site, the company intranet, and e-mail communications
• Design, perform, and/or oversee penetration testing of all systems in order to identify system vulnerabilities
• Design, implement, and report on security system and end user activity audits
• Supervise all investigations into problematic activity and provide on-going communication with senior management
• Recommend, schedule (where appropriate), and apply fixes, security patches, disaster recovery procedures, and any other measures required in the event of a security breach
• Supervise the design and execution of vulnerability assessments, penetration tests and security audits
• Engage in ongoing communications with peers in the Systems and Networking areas accordingly
• Manage and/or provide guidance to junior members of the team

Requirements:

• Technikon diploma or university degree in the field of computer science and/or 5 years equivalent work experience.
• Certifications in one or more of the following:

1. GIAC Security Essentials Certification
2. Microsoft Certified Systems Engineer: Security an advantage
3. Fortigate NSE4, NSE7 preferred
4. CCNA Security / CISSP

Knowledge and Experience

• Broad and deep hands-on knowledge of firewalls, intrusion detection systems, anti-virus software, data encryption, and other industry-standard security techniques and practices
• Web applications firewalls and web applications security
• Experience in enterprise security architecture design
• Experience in developing Data-Loss Protection strategies
• In-depth technical knowledge of network, PC, and platform operating systems, including Windows, Linux and Unix
• Working technical knowledge of current systems software, protocols, and standards, including LDAP, TCP/IP, HTTP, etc.
• Hands-on experience with devices such as hubs, switches, and routers.
• Knowledge of applicable practices and laws relating to data privacy and protection.
• Fort iGATE suite of products and management console