Cyber Security Engineer (Stellenbosch)

We're on the lookout for energetic, self-motivated individuals who share our passion for service in the banking industry. To be part of the journey, follow the steps below: To see what life at Capitec is all about and complete a short assessment, please click here!Once you have completed the above finalize your application by clicking apply belowResponsibilities: To provide data security expertise to build out and maintain resilient, scalable, cost-effective and high-performing data security solutions that will assist Capitec to become the best bank in the world.The ideal candidate will be responsible for ensuring the confidentiality, integrity, and availability of our organisation's data assets across various data states; including structured and unstructured data, data at rest, data in transition, and data in transaction.This role will involve designing, implementing, and maintaining data security solutions to protect against threats and vulnerabilities, along with deep knowledge of data security products and associated concepts.This role will enable the successful candidate to make business and innovative decisions, leveraging the agility of Cloud.Join Us in Becoming the Best Bank in the World We continuously look for talented, driven individuals to help us innovate and evolve the banking industry. If you are looking for a rewarding role, in an exciting and fast-paced environment - where you will work with new and disruptive technologies, and receive exposure to various architectures and business processes - you should apply today!Qualifications (Minimum)A relevant tertiary qualificationGrade 12 National Certificate / VocationalQualifications (Ideal or Preferred)A relevant tertiary qualification in AWS Foundation or Cloud ComputingAWS Data/Security certificationBachelor's Degree in Information Technology or EngineeringRelevant certifications such as CISSP, CISM, CISA, or other security-related certificationsExperience and Knowledge5+ years in Infrastructure, Software Development, DevOps or Security; OR 3+ years' design and implementation of highly available, enterprise-scale public Cloud infrastructure; OR 3+ years in AWS with a focus on either Data or Security or IAMDesign and hands-on troubleshooting background on AWS platform (Azure or GCP will be advantageous)Working in a DevOps environmentDeveloping and supporting infrastructure and Cloud security capabilities for microservices-based architecturesWorking with CI/CD technologies (i.e., GitLab and GitHub)Authentication and Authorisation technologies and protocols (LDAP, Kerberos, AD, OAuth 2.0, OpenID Connect, SAML)Working with scripting and provisioning and IaC tools (like Terraform, Ansible, CloudFormation, etc.)Basic understanding of at least one high-level programming language (GoLang / .Net / Java / Python)Advanced scripting skills in at least one of the following: Bash / PowerShellDesign and deployment of highly available, enterprise-scale cloud infrastructureAdvanced knowledge of infrastructure concepts, technologies and patterns; including SDLC and IaC principlesPractical, working knowledge of:Developing and delivering systems on AWS platforms (Azure or GCP will be advantageous)Supporting and enhancing build and release processes through automation, using a combination of processes and existing toolsUnderstanding of Cloud and data security technologies and best practicesUnderstanding of networking in Cloud environmentsIdeal Experience and Knowledge:3+ years in AWS with a focus on data securityExperience in a financial services or banking organisationExperience in infrastructure securityExperience in engineering data and/or security log pipelines using Big Data technologies (such as Spark, Kafka, Hadoop, Storm, etc.)Experience with ELK, New Relic, or similar on public Cloud platformsExperience with Docker and KubernetesExperience working in a fast-paced Agile/Scrum environment (Atlassian Stack)Experience working with various database technologies, SQL Server, MySQL, PostgreSQL, RedShift, Oracle, etc.Experience working with vault/secret platforms (i.e., HashiCorp)Previous experience in a DevOps role and incorporating security controls in the build processDemonstrated experience in designing, implementing, and managing data security solutions for structured and unstructured dataUnderstanding of modern software engineering patterns; including those using in highly scalable, distributed and resilient systemsAbility to deliver long-term, repeatable IaC solutions that incorporate directly into an overall CI/CD processKnowledge of JSON templates, Powershell, CLIs, Shell, and PythonExperience working with cross-functional teams and providing data security guidance to Developers and IT staffFamiliarity with regulatory requirements and industry standards related to data protectionSkillsAnalytical SkillsCommunications SkillsPlanning, organising and coordination skillsAdditional SkillsExcellent written and verbal communication skillsCloud Data Security: Proficiency with securing data in Cloud environments (e.g., AWS, Azure, GCP)Data Security: Proficiency with securing Big Data platforms, and database systems - ensuring data integrity (e.g., Hadoop, Spark, MSSQL, Oracle)Data Masking and Obfuscation:Data masking and tokenisation tools and their integrationData obfuscation techniques to protect sensitive informationData Governance: Understanding of data governance frameworks and practicesData Privacy Regulations: Familiarity with POPIA, GDPR, or other data privacy regulationsData Encryption: Proficiency in data encryption techniques and technologies to safeguard structured and unstructured dataAccess Control: Expertise in managing user access, permissions, and identity management systems for data securityData Loss Prevention (DLP): Expertise in the management and administration of DLP solutions for monitoring and controlling data in transit and at restSecure Data Transfer Protocols: Proficiency with secure protocols (like TLS / SSL) for data in transitionData Classification: Ability to classify data based on sensitivity, and to apply appropriate security measuresSecure Logging and Auditing: Expertise in setting up comprehensive logs and audit trails for data access and changesConditions of EmploymentClear criminal and credit recordCapitec is committed to diversity and, where feasible, all appointments will support the achievement of our employment equity goals. Capitec Bank is an authorised financial services provider (FSP 46669) and registered credit provider (NCRCP13). Capitec Bank Limited Reg. No: 1980/003695/06

#J-18808-Ljbffr