Senior Infrastructure Security Engineer

Swan iT is searching for a Senior Infrastructure Security Engineer to join a client in Cape Town.

This candidate will serve as a technical leader and guide as needed on technical efforts initiated by the Cybersecurity, Infrastructure, and Operations teams and projects outside of Security.

Responsibilities:

• Active Directory Security Management
  
  
  
  • Design and manage security configurations for AD environments, including multi-domain forests
  
  
  • Perform regular security assessments and audits of AD infrastructure
  
  
  • Develop and enforce security policies related to AD, including password policies, account lockout policies, and privileged access management
  
  
  
  


• Identity and Access Management (IAM)
  
  
  
  • Manage the lifecycle of AD accounts, groups, and organisational units (OUs)
  
  
  • Implement and manage Role-Based Access Control (RBAC) and least privilege access models
  
  
  
  


• Incident Response and Threat Mitigation
  
  
  
  • Coordinate technical response during investigations into infrastructure security-related security incidents, including unauthorised access, privilege escalation, and breaches (primary point of contact for the CSIRT)
  
  
  • Develop and maintain incident response playbooks related to AD, firewalls, and VPN
  
  
  • Collaborate with the Security Operations Center (SOC) to detect and respond to AD and other infrastructure threats.
  
  
  • Implement measures to protect AD against common threats like Pass-the-Hash, Golden Ticket attacks, and Kerberoasting
  
  
  
  


• Infrastructure Management:
  
  
  
  • Implement disaster recovery solutions for AD, including backup and restore processes
  
  
  • Plan and coordinate lifecycle and capacity management of the SIEM service (software version upgrades, hardware upgrades and migrations, deployment of new infrastructure)
  
  
  • Ensuring compliance with regulatory standards, industry best practices, and company policies and standards
  
  
  
  


• Collaboration and Communication:
  
  
  
  • Work closely with cybersecurity, compliance, architecture, and infrastructure & operations teams to align infrastructure security with overall organisational goals
  
  
  • Provide technical leadership and mentoring to junior engineers and other IT staff.
  
  
  • Prepare and present reports on AD security posture to senior management and stakeholders
  
  
  • Timely and accurate communication of project status reports, risks and issues to key stakeholders
  
  
  • Represent team as senior technical subject matter expert and key decision maker in project meetings and activities; function as a member of the extended central Cyber Security team during weekly progress meetings, ISO Forums; and participate in the annual strategic planning of the central Cyber Security Team
  
  
  • Contribute to both Cybersecurity and Infrastructure & Operations roadmaps and overviews to key stakeholders and internal customers
  
  
  • Management and oversight of 3rd party consultants assigned to specific projects
  
  
  • Manage SIEM service provider
  
  
  • Coordinate technical efforts in support of new initiatives to improve Cyber resilience in the group
  
  
  
  

Requirements:

• Bachelor’s degree in Computer Science, Information Technology, or a related field. Equivalent experience may be considered


• Certifications such as CISSP, CISM, Microsoft Certified: Identity and Access Administrator Associate, or similar


• At least 7 years of experience in IT security, with at least 5 years focused on Active Directory


• Proven experience in managing and securing multi-domain AD environments


• Experience with AD integration in hybrid cloud environments


• Experience in the technologies involved in networking, firewalls, Windows and Unix/Linux Operating Systems and internet protocols


• Experience with security tools such as Microsoft Entra ID Protection, Checkpoint or FortiGate firewalls and SIEM tools


• Experience with AD migrations, mergers, or restructuring


• Experience with logging systems and log analysis

Apply today!