Security jobs in South Africa

The Senior Security Platform Engineer is an advanced subject matter expert, responsible for facilitating problem resolution and mentoring for the overall team.

This role involves operational security tasks such as performance and availability monitoring, log monitoring, security incident detection and response, security event reporting, and content maintenance (tuning).

The Senior Security Platform Engineer is responsible for detecting and monitoring escalated threats and suspicious activity affecting the organization's technology domain, including servers, networks, appliances, and all infrastructure supporting production applications and development environments.

Key Responsibilities:

• Work as part of a global CSIRT team operating 24/7 on rotational shifts.
• Handle platform and content engineering tasks, including tuning, stakeholder requests, escalations, reporting, and training.
• Administer NTT Data security tools, manage the security tools' lifecycle, perform break-fix, patching, and live updates.
• Adhere to SOPs and notify stakeholders of log flow or format issues.
• Document best practices and identify opportunities for automation to assist incident response.
• Handle security incidents across various vectors, including endpoint protection, enterprise detection and response tools, attack and malware analysis, network and computer forensics, and LAN security technologies.
• Perform maintenance tasks, utilize knowledge articles for incident diagnosis, and monitor service delivery against SLAs.
• Investigate incidents, seek resolution, escalate unresolved issues, and document resolutions.
• Identify root causes and assist with implementing remedies and preventative measures.
• Maintain expertise in specific security areas and provide detailed advice on their application.
• Ensure efficient incident resolution, coordinate product requests, and collaborate with team members.
• Log incidents promptly with detailed information and cooperate with stakeholders to expedite error diagnosis and resolution.

Knowledge and Attributes:

• Advanced knowledge of SIEM and security tools/technologies.
• Strong understanding of security architecture and various security technologies.
• Customer-oriented, proactive, detail-oriented, analytical, and logical thinker.
• Excellent communication skills, team player, and stakeholder collaboration skills.

Academic Qualifications and Certifications:

• Bachelor's degree or equivalent in IT or related field.
• Networking certifications such as CCNA, JNCIA, ACCA, PCNSA, CCSA preferred.
• Security certifications like AZ-500, SC-200, Security+, CEH, CISSP, CISM are advantageous.

Required Experience:

• Experience with security technologies such as Firewall, IPS, IDS, Proxy.
• Experience with Fortigate, FortiManager, FortiAuthenticator, FortiWeb, FortiAnalyzer, Zscaler, and DDoS mitigation.
• Support experience in security support, troubleshooting, SOC/CSIRT operations, and incident handling.
• Knowledge of networking, Linux, and security concepts.
• Experience configuring security controls like Firewall, IDS/IPS, EDR, NDR, UTM, Proxy, SOAR, HoneyPots.
• Knowledge of log collection mechanisms such as Syslog, log files, and APIs.
• Expertise in security architecture and security engineering.

Workplace type: Hybrid Working

Equal Opportunity Employer

NTT DATA is proud to be an Equal Opportunity Employer committed to a diverse and inclusive environment. We do not discriminate based on age, race, color, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Accelerate your career with us. Apply today.