Security Engineer II

Shoprite Group - Brackenfell, Cape Town, Western Cape

Closing date yi 17 ka July 2026

Regrettably, this position has been removed.

Purpose

  • The purpose of the Senior Security Engineer is to secure the organisation's computer systems, networks and ensure that all platforms are protected.
  • This role involves analysing existing security measures/controls and creating new and enhanced security measures.
  • This role will also implement security measures that effectively safeguard sensitive data in the event of a cyber-attack.
  • This is a highly collaborative role that is part of a larger team dedicated to cybersecurity and involves frequent interaction with various members of the IT team.
  • In addition, this role will be responsible for collecting threat intelligence and automating systems to consume threat feeds and track adversaries.
  • The Senior  Security Engineer is also responsible for the development and execution of large-scale cyber security initiatives and requires a professional with problem-solving abilities who can work in a fast-paced environment and has a clear passion for cybersecurity and related technologies.

Requirements
  • An IT related qualification in computer science, cybersecurity, or any related field - (desired)
  • Recognised industry certifications in cybersecurity such as CISSP - (essential).
  • 5 years of experience in cybersecurity, with solid experience across a variety of security 
    products including firewalls, EDR, SIEM, WAF, IAM, PAM, DLP and encryption solutions - 
    (essential).
  • Banking sector experience and/or exposure (preferred).
  • Experience with AI (generative and agentic), workflow automation, and orchestration technologies to drive automation, improve operational efficiency, and enhance incident response within a Security Operations Centre (SOC). (preferred).
  • Experience in creating new ways to solve existing production security issues and recommending security enhancements - (desired).
  • Experience in Incident Response including the ability to document, any security threats, resolve technical faults and allocate resources to deliver real solutions in a cost-effective way - (desired).
Skills & Competencies
  • Knowledge of services related to cloud compute, network, storage, content delivery, administration and security - (essential)
  • Good understanding and exposure to Information Security standards, architecture, and models - (essential)
  • Hands on knowledge of automation and DevSecOps skills - (essential).
  • Good understanding of software development principles, including design patterns, code structure, programming languages, continuous integration, continuous deployment, and  deployment orchestration - (preferred)
Responsibilities

Security Engineering & Control Implementation

  • Implement and enhance security controls to protect systems, networks, applications, and data.
  • Automate security controls, security processes, and operational activities to improve efficiency and effectiveness.
  • Assist with the implementation, configuration, and maintenance of security technologies and solutions.
  • Identify and implement new security technologies and best practices to strengthen the security environment.
  • Work with technical teams to integrate security requirements into technology solutions and operational processes.

Security Governance, Standards & Compliance

  • Provide assurance through collaboration with stakeholders that technology platforms meet security requirements and standards.
  • Develop, maintain, and improve security standards, policies, procedures, and best practice documentation.
  • Translate technical security requirements into business requirements and communicate security risks to a variety of stakeholders.
  • Provide security recommendations to support secure decision-making across the organisation.
  • Influence cross-functional teams in the implementation and operation of cybersecurity controls.

Threat Management & Vulnerability Assessment

  • Monitor emerging cyber threats, vulnerabilities, and industry security trends to proactively address potential risks.
  • Conduct continual monitoring, vulnerability assessments, and log analysis to identify security weaknesses and threats.
  • Collect, analyse, and operationalise threat intelligence to improve threat detection and response capabilities.
  • Automate systems and processes used to consume threat feeds and track threat actors.
  • Conduct proactive research to identify security risks and recommend appropriate remediation measures.

Security Monitoring & Incident Response

  • Monitor networks, systems, and security tools for suspicious activity and security incidents.
  • Identify, investigate, and respond to information security events in collaboration with Digital 
    Forensics and Incident Response teams.
  • Support the containment, remediation, and recovery of cybersecurity incidents.
  • Analyse security events and incidents to identify root causes and recommend improvements to security controls.

Stakeholder Collaboration & Security Advisory

  • Partner with application development and engineering teams to deliver secure technology solutions.
  • Collaborate with business and technical stakeholders to address complex security challenges and requirements.
  • Provide specialist security guidance and recommendations to support project delivery and operational activities.
  • Communicate security risks, priorities, and mitigation strategies to technical and non-technical audiences.

Continuous Improvement & Security Innovation 

  • Recommend innovative technologies, methodologies, and approaches to enhance cybersecurity capabilities.
  • Drive large-scale cybersecurity initiatives aimed at improving the organisation's security posture.
  • Evaluate and improve existing security measures to address evolving business and threat landscapes.
  • Continuously assess and optimise security processes, controls, and technologies to improve resilience and operational effectiveness.
Additional Information
  • If you don’t hear from us within 14 days, please consider your application unsuccessful.
  • Any personal information collected as part of your application will be destroyed, securely, in accordance with South African legislation.
Ref No
  • SHO260703-5
Ukhangela eyiphi imisebenzi?

Sixelele imisebenzi owuyifunayo ukwenzela sizokukhangelela, sikufakele and sikuthumelele yona.

Cofa apha
Eminye Imisebenzi

Unitrans Recruitment - Richards Bay, KwaZulu-Natal

South African Breweries - Gqeberha, Eastern Cape

Shoprite Group - Brackenfell, Cape Town, Western Cape

Western Cape Department of Health - Observatory, Cape Town, Western Cape

Artscape - Cape Town, Western Cape

Shoprite Group - Brackenfell, Cape Town, Western Cape

Babcock International - Rustenburg, North West

Transnet - Saldanha, Western Cape