Senior Security Administrator at NRF National Research Foundation

About the position

Postion Summary:
The Senior Security Administrator to be responsible for vulnerability management, applying and monitoring security controls and security hardening, troubleshooting security incidents and ensuring compliance as well as implementing security policies and procedures at our organization. The candidate will work within the Cybersecurity Department in the Compute Infrastructure group to ensure implementation of cybersecurity strategy, risk assessments, vulnerability scans, security audits, penetration testing, staff training & security awareness sessions and managing security advisories that impacts the organization.

Key Responsibilities:

• Day-to-Day running of security advisory, vulnerability scans, generate security reports and incident management
• Monitor and report on the security status of network, systems, applications and vulnerabilities to highlight areas of non-compliance
• Administration of vulnerability scanning tools and internal security audits/penetration testing tools
• Analysis of security scan reports, triage and recommend remediation
• Administration of security profiles for all hardware and software assets
• Security awareness & presentations to various teams within organizational teams
• Key role player in the implementation of cybersecurity strategy & governance
• Integration of IT systems development and infrastructure deployments with security policies and information protection strategies

Minimum Qualification:

• Bachelors Degree / Advanced Diploma / NQF 7

Minimum Experience:

• 5-5 years

• Bachelor’s Degree in Information Technology or Computer Science5+ years in the field of Information Technology with vulnerability management and security implementation experience, some familiarity of cybersecurity frameworks and standards

Experience:

• Vulnerability assessment and Penetration testing
• CIS top 18 security controls frameworkSecurity monitoring & events management via SIEM/XDR/EDRSecurity hardening of digital assets
• Understanding of TCP, UDP, SNMP, SMTP, PGP, SFTP, SSH, IPSec, VPN, LDAP, HTTP, SSL/TLS, PKI and DNS
• Understanding of LAN, WAN, VLANs, VM, IP Tables and End-Point security
• Understanding of the security on routers, switches and firewalls operations
• Operating systems such as Windows, macOS and LinuxTroubleshooting techniques and end-user support
• Project delivery methodologies
• Understanding of DevSecOps practices

Knowledge:

• Familiar with Kali tools and/or any other commercial and/or open source security tools
• Knowledge of IAM controls, Identity Providers, SIEM/XDR/EDR, Platform security hardening & Network Access Control
• Knowledge of Cybersecurity controls (CIS Top 18), OWASP Top 10, NIST Cybersecurity Framework and/or ISO27001 will be advantageous
• Vulnerability Management and vulnerability assessment toolsHandling zero-day vulnerabilitiesSecurity configurations and hardeningThreat modeling for security-by-design principleApplication and implementation of security controlSecurity and risk management

The NRF website provides more details on the initiatives and activities Applicants should submit a comprehensive CV by registering and apply online through the NRF Recruitment and Selection Portal. Applications should be accompanied by a letter of motivation indicating the applicant·s suitability for the position. The names and contact details of at least three referees should be provided.

Desired Skills:

• Skilled in applied field of position
• Knowledge to be relevant
• Responsible in performing duties

About The Employer:

The National Research Foundation (NRF) supports and promotes research and human capital development through funding, the provision of National Research Facilities and science outreach platforms and programmes to the broader community in all fields of science and technology, including natural sciences, engineering, social sciences and humanities. The South African Radio Astronomy Observatory (SARAO) spearheads South Africa??s activities in the Square Kilometre Array Radio Telescope, commonly known as the SKA, in engineering, science and construction. SARAO is a National Facility managed by the National Research Foundation and incorporates radio astronomy instruments and programmes such as the MeerKAT telescope in the Karoo, the Hartebeesthoek Radio Astronomy Observatory (HartRAO) in Gauteng, the African Very Long Baseline Interferometry (AVN) programme in nine African countries as well as the associated human capital development and commercialisation endeavours.