SYSTEM ENGINEERING TECHNICAL SPECIALIST III

What will you do?

This role is responsible Implementing and operating Security DevOps Platforms & Services within autonomous ‘x-as a service” teams, with a particular focus on building, owning and maturing Security as Code (SaC) and Policy as Code for the enterprise. Automate and codify security best practices and controls for the enterprise. Define, deploy and maintain permission guardrails and for the enterprise. Other critical components of this position are participation in the full stack design, deployment, maintenance and operation of the team's services and products to its customers and furthering the organization's self-service strategy.

What will make you successful in this role?

• Implementing and operating Security DevOps Platforms & Services in accordance with the business's reliability, capacity and full-stack observability requirements.
• Deliver repeatable operations as code and security configuration as code.
• Deliver and maintain Infrastructure using IaC (infrastructure as code) as applicable.
• Drive and own Security as Code (SaC) and Policy as Code roadmaps and frameworks to maturity for the organization.
• Own and operate Security as Code (SaC) and Policy as Code as a shared service for the enterprise within a ‘x-as a service” team.
• Active engagement with technology partners to deliver an integrated solution across platforms.
• Familiarity with security best practices and the ability to implement security measures in the software development lifecycle.
• Collaborate with stakeholders, including business leaders, project managers, developers and architects to understand requirements and constraints.
• Continuously improve and refine processes, procedures and system development life cycle frequently to deliver business value to the business.
• Stay up to date with the latest industry trends, technology, emerging threats, and best practices.
• Ensure appropriate standards, patterns, best practices and operational maturity models are in place and monitored.
• Participate in implementing and maturing Agile and DevOps tooling and practices for the Security Platforms environment.
• Prioritize efforts with cross-functional teams.
• Adhere to and implement software development and security standards and best practices.
• Coach team members in adopting DevOps practices and tooling.

Qualifications and Experience

• Matric
• A relevant IT qualification.
• AWS Certified Solutions Architect(preferred) or Microsoft Azure Solutions Architect Expert certification preferable.

Experience:

• Experience working in a hybrid- and multi-cloud environment (AWS preferred) and cloud technologies (AWS & Azure technologies preferred).
• Proven experience designing and operating Security solutions and Access management in AWS using Security as Code (SaC) practices and principles.
• Proven experience deploying and configuring Cloud Services using Terraform.
• Proven experience deploying, maintaining and operating Kubernetes environments in AWS.
• Minimum 5 years of experience in technology roles.
• Working in a DevOps environment (including proven CI/CD experience with technologies such as GitLab or Github, Nexus and others). Technical expertise in software development, IT operations, and DevOps tools and technologies.
• Proven experience delivering long-term, repeatable IaC solutions into an overall CI/CD process.
• Experience working in an Agile environment.
• Experience in cloud security concepts.
• Understanding of Cloud technologies and best practices, Networking in Public and Hybrid Cloud environments, Network protocols, network architecture and security.
• Experience operating and engineering solutions in a Cloud-focussed organization.
• Understanding of virtualization technologies, such as VMWare, Docker, and Kubernetes.
• Understanding of Security Architecture concepts including encryption, authentication, database security, Identity Providers, Enterprise single sign-on (SSO), Federated SSO, multi-factor authentication, API security.
• Knowledge of JSON templates, PowerShell, CLI’s, Shell, Python.
• Proven programming and automation experience. (Any of Python, C#, Java, GoLang or C++ in addition preferred).
• Experience in application development, version control, support and release management

Ideal:

• Proven experience working in Azure DevOps Services.
• Practical experience using and integrating Hashicorp Vault.
• Kubernetes and platform security experience.
• Experience with the Atlassian toolset (or similar) in DevSecOps.
• Experience building and delivering web services, SOAP, REST.
• Hands on experience of deploying and supporting Federation capabilities like SSO, SAML, OAuth, OpendID and SCIM.
• Working experience with Windows, scripting (e.g. Powershell), and Linux Scripting.

Personal Attributes

Build a successful career with us

We’re all about building strong, lasting relationships with our employees. We know that you have hopes for your future – your career, your personal development and of achieving great things. We pride ourselves in helping  our employees to realise their worth. Through its five business clusters – Sanlam Fintech, Sanlam Life and Savings, Sanlam Investment Group, Sanlam Allianz, Santam, as well as MiWay and the Group Office – the group provides many opportunities for growth and development.

Core Competencies

Turnaround time

The shortlisting process will only start once the application due date has been reached. The time taken to complete this process will depend on how far you progress and the availability of managers. 

Our commitment to transformation