IT Security Operations Engineer

Description:

AVI LIMITED is home to many of South Africa’s leading and best-loved brands! Listed on the Johannesburg Stock Exchange and centred on the FMCG market, AVI’s extensive brand portfolio includes more than 50 brands. Our brands span a range of categories, including hot beverages, sweet and savoury biscuits and snacks, frozen convenience foods, out-of-home ranges, personal care products, cosmetics, footwear, accessories, and fashion apparel. We have a well-developed Shared Services structure spanning: International, IT, Finance, Logistics, Marketing, Procurement and Field Marketing, that allows us to take advantage of our scale. Our single-minded purpose is our brands growth and development.

An exciting opportunity exists for an IT Security Operations Engineer at AVI Limited IT Shared Services in Bryanston.

The purpose of the role is:

1. Apply technical IT Security Infrastructure expertise and tools to ensure the security of AVI IT operations and supporting infrastructure
2. Implement, Manage, Maintain and Administer AVI’s Security Infrastructure and Systems
3. Implement and optimise tools to effectively manage and monitor infrastructure and provide effective alerting and reporting with regards to security incidents and vulnerability assessments
4. Play lead role in uplifting skills of the IT Network and Systems Engineering team members and provide guidance to all ITSS with regards to IT Security Operations.

Line Manager : IT Security Operations Team Lead

Number of Direct Reports : None

Job Specification:

Key Performance Areas:

1. IT Security threat / breach identification, prevention and remediation
2. IT Security Infrastructure administration and maintenance
3. Provide IT Security Infrastructure input to ITSS technical projects
4. Provide input into relevant IT Security Policies, Procedures, standards and guidelines in conjunction with the IT Security Specialist and Manager
5. Development of Network and Systems team skills for ITSS

Minimum Requirements:

Experience :

Essential

• 3 years’ Security Appliance (including UTM) and related administration and analysis tools, specifically across the FortiGate security product line
• 2 years’ experience implementing and managing a SIEM solution (either in house or hosted service)
• 3 years’ experience managing Microsoft Windows solutions (Windows Server OS / Active Directory Services / Microsoft Business Servers)
• 2 years’ experience managing an industry-leading virtualization platform (VMware / Hyper-V) or managing cloud resources (Azure/AWS)

Important

• 3 years’ Network Administration (Switching, Routing and Wireless)
• 3 years’ Network and Web security protocols
• 3 years’ experience with Forensic and monitoring tools e.g. Wireshark, etc.

Nice to have

• 3 years’ System Security vulnerability identification and remediation
• 2 years’ experience with public key infrastructure (PKI) and cryptographic protocols e.g. SSL / TLS
• 2 years’ experience in PCIDSS as well as knowledge of local personal information protection legislation (POPI)
• 3 years’ experience in the installation, administration, maintenance and usage of security-hardened Operating Systems e.g. Kali Linux
• 2 years’ experience working within DSS PCI environments
• 2 years’ experience designing and deploying infrastructure security policies based on industry standards such as CIS, ISO27001
• Ability to automate / script solutions (PowerShell / Python), or implementation of orchestration services
• Exposure to SAP Business Systems (R/3, Netweaver) and database experience (MS SQL / MySQL)
• 2 years’ experience working with ZTNA/SASE

Qualifications:

• Relevant industry certifications (see below)

Certifications :

Essential

• Fortinet NSE4
• Microsoft Technology Associate (MTA) / MCSA (Microsoft Certified Systems Administrator)

Important (at least one of the following)

• Cisco Certified Network Associate (CCNA)
• Cisco Certified Network Associate (CCNA) Security
• MCSE (Microsoft Certified Systems Engineer)
• CompTIA Cybersecurity Analyst (CySA+)
• ISC2 CISSP/SSCP

Nice to have

• CEH (Certified Ethical Hacker)
• CCNA (Cisco Certified Network Administrator - Routing and Switching, Wireless, Collaboration
• VMware Certified Professional (VCP)
• Azure Security Engineer
• RHCSA - Red Hat Certified System Administrator
• CEH (Certified Ethical Hacker)
• CCNP (Cisco Certified Network Professional) – Routing and Switching, Wireless, Collaboration
• Fortinet NSE7
• KLCP – Kali Linux certified Professional and/or RHCE - Red Hat Certified Engineer
• CompTIA Advanced Security Practitioner (CASP+)
• CompTIA Cloud+
• Cisco ISE

Requirements:

AVI LIMITED is home to many of South Africa’s leading and best-loved brands! Listed on the Johannesburg Stock Exchange and centred on the FMCG market, AVI’s extensive brand portfolio includes more than 50 brands. Our brands span a range of categories, including hot beverages, sweet and savoury biscuits and snacks, frozen convenience foods, out-of-home ranges, personal care products, cosmetics, footwear, accessories, and fashion apparel. We have a well-developed Shared Services structure spanning: International, IT, Finance, Logistics, Marketing, Procurement and Field Marketing, that allows us to take advantage of our scale. Our single-minded purpose is our brands growth and development.

An exciting opportunity exists for an IT Security Operations Engineer at AVI Limited IT Shared Services in Bryanston.

The purpose of the role is:

AVI LIMITED is home to many of South Africa’s leading and best-loved brands! Listed on the Johannesburg Stock Exchange and centred on the FMCG market, AVI’s extensive brand portfolio includes more than 50 brands. Our brands span a range of categories, including hot beverages, sweet and savoury biscuits and snacks, frozen convenience foods, out-of-home ranges, personal care products, cosmetics, footwear, accessories, and fashion apparel. We have a well-developed Shared Services structure spanning: International, IT, Finance, Logistics, Marketing, Procurement and Field Marketing, that allows us to take advantage of our scale. Our single-minded purpose is our brands growth and development.

An exciting opportunity exists for an IT Security Operations Engineer at AVI Limited IT Shared Services in Bryanston.

The purpose of the role is:

• 3 years’ Security Appliance (including UTM) and related administration and analysis tools, specifically across the FortiGate security product line
• 2 years’ experience implementing and managing a SIEM solution (either in house or hosted service)
• 3 years’ experience managing Microsoft Windows solutions (Windows Server OS / Active Directory Services / Microsoft Business Servers)
• 2 years’ experience managing an industry-leading virtualization platform (VMware / Hyper-V) or managing cloud resources (Azure/AWS)

• 3 years’ Network Administration (Switching, Routing and Wireless)
• 3 years’ Network and Web security protocols
• 3 years’ experience with Forensic and monitoring tools e.g. Wireshark, etc.

• 3 years’ System Security vulnerability identification and remediation
• 2 years’ experience with public key infrastructure (PKI) and cryptographic protocols e.g. SSL / TLS
• 2 years’ experience in PCIDSS as well as knowledge of local personal information protection legislation (POPI)
• 3 years’ experience in the installation, administration, maintenance and usage of security-hardened Operating Systems e.g. Kali Linux
• 2 years’ experience working within DSS PCI environments
• 2 years’ experience designing and deploying infrastructure security policies based on industry standards such as CIS, ISO27001
• Ability to automate / script solutions (PowerShell / Python), or implementation of orchestration services
• Exposure to SAP Business Systems (R/3, Netweaver) and database experience (MS SQL / MySQL)
• 2 years’ experience working with ZTNA/SASE

• Relevant industry certifications (see below)

• Fortinet NSE4
• Microsoft Technology Associate (MTA) / MCSA (Microsoft Certified Systems Administrator)

• Cisco Certified Network Associate (CCNA)
• Cisco Certified Network Associate (CCNA) Security
• MCSE (Microsoft Certified Systems Engineer)
• CompTIA Cybersecurity Analyst (CySA+)
• ISC2 CISSP/SSCP

• CEH (Certified Ethical Hacker)
• CCNA (Cisco Certified Network Administrator - Routing and Switching, Wireless, Collaboration
• VMware Certified Professional (VCP)
• Azure Security Engineer
• RHCSA - Red Hat Certified System Administrator
• CEH (Certified Ethical Hacker)
• CCNP (Cisco Certified Network Professional) – Routing and Switching, Wireless, Collaboration
• Fortinet NSE7
• KLCP – Kali Linux certified Professional and/or RHCE - Red Hat Certified Engineer
• CompTIA Advanced Security Practitioner (CASP+)
• CompTIA Cloud+
• Cisco ISE