IT Security Specialist

The Mr Price Group (MRPG) is a fashion value retailer, selling predominantly for cash. The Group retails Apparel, Homeware and Sportsware and is one of the fastest growing retailers in South Africa. Our History: 1885 - The first John Orrs store opens 1934 - The first Hub store opens 1952 - John Orrs is listed on the JSE 1967 - Acquisition of two Miladys stores 1986 - Laurie Chiappini and Stewart Cohen, together with BOE, acquire a major shareholding in John Orr Holdings 1987 - The first Mr Price store opens 1991 - Laurie Chiappini and Stewart Cohen acquire control of the Group from BOE 1993 - Launch of the Mr Price Group Share Partnership Initiative 1996 - Acquisition of Galaxy & Co. and Sheet Street 1997 - Alastair McArthur is appointed as CEO 1998 - Mr Price Home launched 2000 - Mr Price opens stores in Botswana and Namibia 2001 - Specialty Stores becomes MR Price Group 2005 - Over 100 million units are sold across the group 2006 - Sale of the Hub and Galaxy divisions 2007 - Launch of Mr Price Sport stores and Mr Price Franchising 2008 - Miladys wins the Orange Index award for excellence in customer service 2008 - Mr Price Apparel is voted the most loved and most frequented retail apparel brand for the first time 2008 - This year Mr Price Home is voted the most loved and most frequented homeware retailer 2011 - Retail sales exceed R10 billion and profit attributable to shareholders exceeds R1 billion for the first time 2011 - The group celebrates the 25th anniversary of change in control, recording a CAGR share of 25.3% and headline earnings per share of 23.5% over this period 2012 - First Corporate owned Mr Price store opens in Lagos, Nigeria 2013 - Mr Price launches its online store

JOB DESCRIPTION

Empower our company's security infrastructure and safeguard our valuable assets as a Security Specialist. Your expertise will be crucial in maintaining the day-to-day operations of our security solutions and swiftly identifying, investigating, and resolving security breaches. Share your knowledge in shaping policies, standards, baselines, guidelines, and procedures, ensuring compliance with cloud service providers. Become an integral part of our team, actively upholding the company's security goals and safeguarding our future.

RESPONSIBILITIES

Work with architects, system engineers and other IT support teams to define, guide, advise on security standards across the IT landscape, monitoring network activity to identify vulnerable points Design and configure security hardware and software Use the toolsets available to identify and detect intrusions on corporate network and endpoints; detect any unauthorized attempts to access the systems Solutionise by providing options for the IT network for enhancement to the security roadmap Train other employees on security best practices, mentoring to junior team members Monitor software and hardware for any possible cyber attacks Perform security assessments and conduct internal scanning on the network Analyze existing systems and make recommendations for changes or improvements Prepare reports, action plans and updating of the risk register Organize and conduct tests and 'ethical hacks' of the existing company IT architecture Keep technical knowledge current through continuation of education Provide automation solutions as far as possible Serve as a security specialist and conduct training when required Draft policies, standard operating procedures and guidelines Prepare reports, action plans and updating of the risk register Be an active change advisory member by reviewing production changes Research and Design, benchmark, baseline exercises, trend analysis Align with enterprise's security goals as established by its stated policies, procedures, and guidelines, and to actively work towards upholding those goals.

QUALIFICATIONS

Experience 3 years' experience in a Security role 5+ years in an Infrastructure Back-end support environment and Implementation and deployment of enterprise solutions Solid technical experience in Networking (LAN and WAN management, FW/Routers/Switches/Wifi/DHCP/DNS/DMZ/Edge/Segmentation etc). Essential understanding of the response required in a Security Operations Centre. Strong knowledge of design, test solutions, authentication methods, Windows, Apple & Linux operating systems, protocols, Data leakage, Mobile device management, endpoint, application, cloud solutions, identity and access management, penetration testing, web security, strong networking or Microsoft back-end experience. Scripting and knowledge of the NIST and SANS framework would be advantageous. Experience in Governance (POPI/Data Protection/PCI/Policy and Procedure) is required. Knowledge of current security risks and protocols, creation of policy, procedure and standards documentation. Management of a Security information and event management environment Design, test, implementation and support of vulnerability management solutions, authentication methods, email and collaboration tools Windows, Apple & Linux operating systems, protocols, Mobile device management, Intrusion Detection and Prevention software, network, perimeter, endpoint, application, cloud solutions, identity and access management, penetration testing Scripting and knowledge of the NIST and SANS framework would be a great advantage Knowledge of current security risks and protocols, creation of policy, procedure and standards documentation. Cloud security and controls Education & Certifications Relevant IT degree and certifications in 1 or more of the following: CompTIA Security+ CISSP

GIAC

Microsoft Certified Systems Engineer Microsoft Certified Azure Administrator AWS Engineer GSuite Engineer Associate of ISC Certified Cisco or Meraki Engineer