We are looking for a Senior DevSecOps who will help make our cloud infrastructure safe, stable, and automated. You will work together with the development, platform, and security teams to add security at every step of product creation.

This is a great chance to grow in security automation, improve processes, and bring modern DevSecOps practices into the company.

Requirements

Must-Have Skills

5+ years of hands-on experience in DevOps / DevSecOps / Cloud Engineering roles;

Deep expertise with AWS services (IAM, VPC, CloudTrail, GuardDuty, KMS, WAF);

Proven experience with Kubernetes security — RBAC, network segmentation, image scanning, Falco or similar runtime security tools;

Strong proficiency in Infrastructure-as-Code tools, particularly Terraform (modules, state management, policy as code);

Experience managing CI/CD pipelines on GitHub Actions with integrated vulnerability scanning and secret protection;

Solid knowledge of Cloudflare security suite (Zero Trust, WAF, DNS, Access, API Gateway rules);

Familiarity with SSO and MFA solutions (DUO SSO, OIDC flows, federation via SAML);

Scripting and automation using Python, Bash, or Go;

We are seeking a highly experienced IT Professional to support and enhance our mission-critical systems with a focus on financial (systems) and cybersecurity infrastructure. This role is pivotal in maintaining system integrity, ensuring compliance with financial regulations, and defending against evolving cyber threats. 

Systems engineering 

• Provide tier 3 support for complex infrastructure and application issues. 

• Design, implement, and maintain high-availability systems for financial platforms. 

• Perform system performance tuning, capacity planning, and disaster recovery testing. 

• Automate operational tasks using PowerShell, Python, or other scripting tools. 

Financial systems support 

• Manage and support financial applications such as ERP systems and reporting tools. 

• Ensure systems meet security standards. 

• Collaborate with finance and audit teams to support secure data flows and reporting. 

Cybersecurity operations 

·         Lead and manage the end-to-end functioning of the SOC team, ensuring 24x7 coverage.

·         Oversee daily operations, incident response quality, and compliance with SLAs.Work closely with the SOC Manager to prepare periodic threat reports, executive dashboards, and compliance status updates.

·         Develop and maintain SOC playbooks, SOPs, and reporting dashboards.

·         Conduct regular review meetings, threat landscape briefings, and knowledge sharing sessions.

·         Act as point of contact for critical escalations, audits, and client reporting.

·         Coordinate with OEMs, security architects, and client IT teams for policy updates and improvements.

·         Train and mentor L1 and L2 SOC Analysts to build internal capabilities.

·         Ensure policies for endpoints, DLP, firewall rules, and SOAR playbooks are appropriately enabled and updated as per approved change management.

·        Assist in root cause analysis (RCA) for incidents and recommend corrective actions.

·         Document incidents, resolutions, and playbook adjustments for knowledge base updates.

Qualification & Skills:

·         Bachelor’s degree in Computer Science, IT, or related field (Master’s preferred).

·         7–10 years of experience in SOC operations, including at least 2–3 years in a lead/managerial role.

·         Handle advanced incident investigation, correlation, and in-depth threat analysis.

·         Validate and respond to escalations from L1 Analysts.

·         Perform threat hunting, malware analysis, and root cause analysis as needed.

·         Implement and tune detection use cases and SIEM rules/playbooks.

·         Coordinate with OEM L3 Support for complex incident resolution.

·         Support dashboard reporting, policy compliance, and continuous improvement.

Qualification & Skills:

·         Bachelor’s degree in IT, Computer Science, or Cyber Security.

·         2–4 years of experience in SOC operations, threat detection, and incident response.

·         Good working knowledge of EDR, SIEM, SOAR, DLP, and network security tools.

·         Relevant certifications preferred:EC-Council CEH, CompTIA CySA+, EC-Council CHFI, Cisco CyberOps Professional, or equivalent.

·         Strong analytical, problem-solving, and communication skills.

·        Perform continuous monitoring of security events and alerts from EDR, SIEM, SOAR, DLP, NDR, and other security solutions.

·        Conduct initial triage and categorization of incidents as per defined playbooks.

·        Escalate confirmed incidents to L2 SOC Analysts with proper documentation.

·        Generate daily incident and alert reports for review.

·        Ensure timely closure of false positives and routine alerts.

·        Follow standard operating procedures (SOPs) for all security monitoring tasks.

Qualification & Skills:

·        Graduate in IT, Computer Science, or related field.

·        Basic understanding of security concepts, log analysis, and network fundamentals.

·        Familiarity with EDR, SIEM, or SOC workflows is preferred.

·        Carry out on-site installation, configuration, and testing of XDR, SIEM, DLP, SOAR components as per deployment plans.

·        Perform initial troubleshooting of deployment and integration issues; resolve wherever possible or escalate to L2/L3 teams.

·        Coordinate with the client’s IT, network, and security teams for necessary access, log configurations, and policy enablement.

·        Ensure proper ingestion of logs, agent installations, network traffic configurations, and data flow for solution effectiveness.

·        Maintain detailed deployment and issue logs, prepare installation reports, and update project status to the project manager.

·        Conduct basic training for client IT/security staff on solution operation and basic troubleshooting.

·        Support acceptance testing and handover documentation.

·        Follow change management and security best practices during deployment.

Required Qualifications and Experience: 

·        Diploma/Bachelor’s Degree in Computer Science, IT, Electronics, or related field.

·        1–5 years of hands-on experience in deploying or supporting cybersecurity solutions (XDR/EDR, SIEM, DLP, SOAR) or enterprise network security solutions.

·        Sound knowledge of networking concepts (routing, switching, firewalls, proxy, VPN).

·        Working knowledge of operating systems (Windows/Linux) and endpoint security tools.

About METRO

METRO is one of Greece’s top employers, with over 11,500 employees. We operate My market, one of the country’s largest retail networks with 240 outlets, and are the leading company in wholesale consumer goods with 51 METRO Cash & Carry stores nationwide. As we expand our IT team, we are seeking a talented Mid/Senior Cybersecurity Engineer to join our dynamic environment and help shape the future of our infrastructure.

Are you a highly skilled and motivated Cybersecurity Engineer with a passion for safeguarding digital assets and innovative infrastructure?

If you thrive in a fast-paced environment and are eager to work in threat detection and mitigation across on-premise and cloud environments, we want you in #teammetro!

Your Role & Responsibilities

As a Cybersecurity Engineer, you will be a key technical expert, responsible for the design, implementation and operation of security solutions for on-premise, cloud, and hybrid infrastructures.  Your focus will include:

·         Firewall/WAF Infrastructure:

o    Manage and maintain firewalls / WAF such as Checkpoint, Cisco, Imperva and ensure optimal configuration and operation in cooperation with external partners.

o    Conduct regular vulnerability assessments and penetration testing.

 ·         EDR/NDR Infrastructure:

Contract duration: Start with 6 months

Location: JHB

Pay rate: Negotiable

Security Architectures

The Head of Security Architecture for the organization is responsible for designing, implementing, and maintaining robust security architectures that protect sensitive data in compliance with regulations such as POPIA, GDPR. This role is critical in safeguarding the confidentiality, integrity, and availability of electronic health records (EHR), patient and employee information, medical devices, and cloud-based healthcare services. The role will focus on designing and developing security architecture that aligns business and corporate security strategy. The role will collaboratively direct Security Architects, IT, and Engineers to design and build security controls and solutions compliant with approved enterprise architecture frameworks and standards across business and digital.

What will you bring?

Risk-based decision-making - expert in ISO 27001 / NIST / CIS controls, able to quantify and articulate risk, then select proportionate, cost-effective controls.

Pen-testing & threat-modelling - scoping, overseeing, and translating results into enforceable patterns and backlog items.

Influential communication - proven ability to engage C-suite and delivery stakeholders alike, adapting style to gain agreement and drive secure-by-design culture.

InfyStrat is seeking a motivated Cyber Security Analyst to join our team and contribute to our mission of safeguarding our digital assets and infrastructure. In this role, you will monitor, detect, and respond to security threats, vulnerabilities, and incidents across our systems. You'll perform risk assessments, analyze security breaches, and provide remediation recommendations while collaborating with various teams to enhance our security posture. This is a fantastic opportunity to grow your skills in a fast-paced environment while playing a critical role in protecting our organization from cyber threats.

Job title: Information Security Architect

Contract duration: Start with 6 months

First preference: EEE candidates

Location: JHB

The Head of Security Architecture for the organization is responsible for designing, implementing, and maintaining robust security architectures that protect sensitive data in compliance with regulations such as POPIA, GDPR. This role is critical in safeguarding the confidentiality, integrity, and availability of electronic health records (EHR), patient and employee information, medical devices, and cloud-based healthcare services. The role will focus on designing and developing security architecture that aligns business and corporate security strategy. The role will collaboratively direct Security Architects, IT, and Engineers to design and build security controls and solutions compliant with approved enterprise architecture frameworks and standards across business and digital.

Key Responsibilities: