Description<\/p>\n
\tWe are seeking a hands on, skilled and detail-oriented Security Leader to spear head our Architect and Engineering department with expertise in Microsoft technologies to join a rapidly expanding global team of security experts that provides services to protect our business. This role will report into the Head of Information Security and will work closely across all IT Teams and business units.
\n\tIn this role, you will be responsible for leading, designing, implementing, managing, and optimizing security solutions to protect our IT infrastructure, technology assets, cloud environments, and applications. The ideal candidate will have hands-on experience with Microsoft security tools and technologies, such as Azure, Microsoft 365, Microsoft Purview and Microsoft Defender, and will play a critical role in safeguarding our digital assets.<\/p>\n
Requirements<\/p>\n
\tLeadership and Team Management
\n\tLead and mentor a team of Security Engineers and Architects focused on, designing and implementing secure controls across Microsoft technologies, such as Microsoft 365, Microsoft Defender, Azure Security Centre, and Microsoft Sentinel.
\n\tEstablish team goals, manage performance, and provide regular feedback to ensure the success of security operations.
\n\tFoster a culture of continuous improvement and professional development within the team.
\n\tCloud Security Strategy
\n\tResponsible for the cloud security strategy for our Azure-based solutions, leveraging Azure Security Centre, Azure Active Directory, and other Azure-native security tools to secure infrastructure and applications.
\n\tDesign security controls in Azure to protect resources, networks, data, and identities.
\n\tOversee the integration of security practices in cloud migration strategies and help guide the secure adoption of cloud technologies.
\n\tSecurity Solution Implementation
\n\tImplement, configure, and manage security solutions in Microsoft environments, including Azure, Microsoft 365, Microsoft Defender, Microsoft Purview and other Microsoft security tools.
\n\tEnsure the secure deployment and configuration of Microsoft cloud resources, applications, and services, adhering to security best practices and company policies.
\n\tSet up and maintain security controls such as firewalls including WAFs, VPNs, and endpoint protection across all environments.
\n\tIdentity and Access Management (IAM)
\n\tResponsible for Architecting and implementing advanced identity and access management (IAM) solutions using Microsoft technologies such as Azure Active Directory\/EntraID, Azure AD B2B\/B2C, and Microsoft Identity Platform.
\n\tDesign and enforce least privilege access principles, multi-factor authentication (MFA), conditional access policies, and role-based access control (RBAC) across all Microsoft service.
\n\tVulnerability Management and Risk Assessment
\n\tResponsible for security assessments and risk analysis for new Microsoft technologies, AI, cloud services and digital products.
\n\tRegularly assess and monitor Microsoft systems and services for vulnerabilities and security gaps, using tools like Microsoft Defender for Endpoint and Azure Security Centre.
\n\tSecurity Automation and Optimization
\n\tResponsible for an Automation Strategy for security processes and tasks using PowerShell, Azure CLI, and other tools to improve efficiency and response times.
\n\tOptimize security configurations across Microsoft environments to ensure best practices and consistent application of security controls.
\n\tContinuously review and improve existing security processes, tools, and policies.
\n\tCompliance and Reporting
\n\tEnsure Microsoft-based systems meet regulatory requirements (e.g., GDPR), internal security standards (ISO 27001\/2, SOC) and policies.
\n\tAssist in security audits and assessments, providing the necessary documentation and evidence to support compliance initiatives.
\n\tGenerate regular security reports, dashboards, project status and metrics using Microsoft security tools.
\n\tCollaboration and Effective Communication
\n\tWork closely with IT, system administrators, and other security teams to coordinate incident response efforts, identify vulnerabilities, and implement mitigation strategies across the Microsoft technology stack.
\n\tCommunicate and conduct regularly presentations at a senior leadership level.
\n\tEnsure that the IT Security documentation is maintained and updated regularly as required
\n\tProvide guidance and support to internal teams regarding Microsoft security best practices, threat mitigation and security by design
\n\tParticipate in security projects, including cloud migration efforts, that involve Microsoft technologies, ensuring security is a top priority
\n\tProvide input to the monthly IT Security report.<\/p>\n
Who You Are:
\nEssential<\/p>\n
\t5+ years of experience in a security engineering\/architecture or cybersecurity leadership role, with a strong focus on Microsoft environments such as Microsoft 365, Azure, Microsoft Purview, and related Microsoft security products.
\n\tProven track record in leading security engineering\/architecture teams, managing risk, design and build security principles for products (e.g. Microsoft 365, Microsoft Azure, Copilot, Microsoft Defender, Microsoft Sentinel).
\n\tExperience of working in a diverse Global Company;
\n\tUnderstanding of key network and infrastructure security solutions such as firewalls, SD-WAN, WAF, DDoS protection IPS, Web Proxy, etc.
\n\tExcellent knowledge of security solutions and technologies including Network Firewalls, proxy technologies, EDR, SIEM (Sentinel);
\n\tUnderstanding of SASE solutions and cloud-based service delivery of traditional security controls (e.g. content filtering, firewall)
\n\tKnowledge of Intrusion detection\/prevention systems (IDS\/IPS\/WAF) and vulnerability assessment tools (Nessus\/Tenable.io\/Qualys);
\n\tExcellent knowledge of different threat scenarios, incident response and remediation techniques;
\n\tHands on experience of applying security by design across a Microsoft eco system.
\n\tKnowledge of security technologies (encryption, data protection, permissions, privilege access etc.);
\n\tKnowledge of applying CIS benchmark policies in Azure & O365;
\n\tExperience with Security frameworks, ISO 27001, Cyber Essentials, NIST, PCI;
\n\tGood working knowledge of Active Directory services, including reporting and auditing of Active Directory objects;
\n\tSkilled in using scripting tools (PowerShell, MS CLI & VBS).
\n\tUnderstand Incident Response, Cyber Kill Chain, Threat Modelling and pertinent Attack Vectors;
\n\tDesirable qualifications, Microsoft Certified: Azure Security Engineer or Architect Associate, Microsoft Certified: Security, Compliance, and Identity Fundamentals, Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), CompTIA Security+, Certified Cloud Security Professional (CCSP) or other similar security certifications or demonstratable experience.
\n\tGood communication (English Writing, Reading and Speaking) skills and ability to articulate subjects clearly.
\n\tProven analytical and problem-solving skills;
\n\tStrong documentation skills;
\n\tOrganized, methodical and self-motivated;
\n\tKeeping abreast of industry trends and security technologies.
\n\tTakes the initiative to proactively resolve issues within own remit and recognizes when escalation is required;
\n\tUses own knowledge and experience to make sounds judgements or assist others with sound judgements;
\n\tConsiders the regional and global implications of what we do in our own areas of responsibility;
\n\tIdentifies and builds relationships across team and region;
\n\tUnderstands need to work within project scope, including price;
\n\tShows understanding of others in order to influence as appropriate.<\/p>\n
go to method of application \u00bb<\/p>\n
Apply via company website ( https:\/\/www.controlrisks.com ) or<\/p>\n
<\/p>\n","protected":false},"author":2,"featured_media":0,"template":"","meta":{"_promoted":"","_job_location":"","_application":"","_company_name":"Control Risks","_company_website":"https:\/\/www.controlrisks.com","_company_tagline":"Control Risks is an independent, global risk consultancy specialising in political, integrity and security risk. We help some of the most influential organisations in the world to understand and manage the risks and opportunities of operating in complex or hostile environments. We support clients b... read morey providing strategic consultancy, expert analysis and in-depth investigations through to handling sensitive political issues and providing practical on the ground protection and support. Our unique combination of services, our geographical reach and the trust our clients place in us, ensures we can help them effectively solve their problems and realise new opportunities across the world. Working across five continents and with 36 offices worldwide, Control Risks provides a broad range of services to help our clients manage political, integrity and security risk. Culross Court 16 Culross Road Bryanston Johannesburg, 2191","_company_twitter":"","_company_video":"","_filled":0,"_featured":0,"_remote_position":0,"_job_salary":"","_job_salary_currency":"","_job_salary_unit":""},"job_listing_region":[11],"job-types":[37],"class_list":["post-21581","job_listing","type-job_listing","status-expired","hentry","job_listing_region-gauteng","job-type-full-time-remote"],"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/jobs.dataaxisnode.com\/southafrica\/wp-json\/wp\/v2\/job-listings\/21581","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/jobs.dataaxisnode.com\/southafrica\/wp-json\/wp\/v2\/job-listings"}],"about":[{"href":"https:\/\/jobs.dataaxisnode.com\/southafrica\/wp-json\/wp\/v2\/types\/job_listing"}],"author":[{"embeddable":true,"href":"https:\/\/jobs.dataaxisnode.com\/southafrica\/wp-json\/wp\/v2\/users\/2"}],"wp:attachment":[{"href":"https:\/\/jobs.dataaxisnode.com\/southafrica\/wp-json\/wp\/v2\/media?parent=21581"}],"wp:term":[{"taxonomy":"job_listing_region","embeddable":true,"href":"https:\/\/jobs.dataaxisnode.com\/southafrica\/wp-json\/wp\/v2\/job_listing_region?post=21581"},{"taxonomy":"job_listing_type","embeddable":true,"href":"https:\/\/jobs.dataaxisnode.com\/southafrica\/wp-json\/wp\/v2\/job-types?post=21581"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}