Senior Security Engineer

S-RM Cape Town, Western Cape, South Africa

Join to apply for the Senior Security Engineer role at S-RM

S-RM is a global intelligence and cybersecurity consultancy.

Since its inception, we've helped some of the most sophisticated clients in the world solve their toughest challenges. We attribute our success to our outstanding people.

We're committed to developing bright, curious, and driven individuals who want to think critically, solve complex problems, and achieve success. We also value work-life balance and invest in our people's wellbeing, learning, and ideas every day.

This is an opportunity to join a company where infosec is embedded into the culture. Our world-class cybersecurity team thinks critically about security practices at all levels and sees information security as an asset, not a cost center.

Our security team is encouraged to speak openly about ideas for improvement, with regular access to senior leadership, helping us stay ahead of threats.

S-RM is growing fast, and the information security challenges this brings mean no day is the same. We believe this variety offers immense career development opportunities.

As a Security Engineer, you'll play a lead technical role in maintaining and evolving S-RM's information security.

1. Improve and implement development pipeline security features, such as SAST and DAST.
2. Manage, monitor, and improve compliance, vulnerability management, threat intelligence, detection/prevention tools across a multi-cloud environment.
3. Provide expert security design and engineering guidance on complex cloud security challenges and risks.
4. Define annual and quarterly penetration testing of infrastructure and applications, re-testing vulnerabilities as needed.
5. Work with engineering, development, and product teams to architect and implement secure solutions from inception to completion, including threat modeling assessments.
6. Implement security hardening standards (e.g., CIS, Cloud Foundations).
7. Handle security alert triage, investigation, and containment of incidents across corporate and cloud environments.
8. Maintain Microsoft Sentinel SIEM/SOAR and Defender XDR deployment.
9. Lead investigation and containment activities within the incident response team.

• At least 3+ years in Cyber/Information Security.
• AZ or AWS Solutions Architect Associate certification is essential.
• Ability to translate technical issues into business language.
• Experience with Bash and/or PowerShell automation.
• Experience with ethical hacking tools (e.g., nmap, Nessus, Burp Suite).
• Practical experience with SDLC and Agile frameworks.
• Ability to foster a positive security culture among end users, engineers, developers, and product managers.
• Excellent communication, teamwork, presentation, and stakeholder management skills.
• The candidate must have permission to work in South Africa from the start.

We offer balanced rewards and support, including:

• 23 days holiday per year plus public holidays (up to 30 days).
• Hybrid and flexible working hours.
• Matching pension contributions (up to 7%, max 14%).
• Life insurance (4x salary).
• Parental support, including fertility treatment leave, maternity, and paternity leave.
• Health benefits, medical aid, EAP, and mindfulness app access.

Mid-Senior level

Full-time

Information Technology

Security and Investigations

If this sounds like your kind of team, we'd like to hear from you!