Plus
Включить Plus
Назад
Company hidden
7 дней назад

Platform Security Engineer

Формат работы
hybrid
Тип работы
fulltime
Грейд
middle
Английский
b2
Страна
SA
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Platform Security Engineer: Securing cloud-native infrastructure, container platforms, CI/CD pipelines, and product services with an accent on security controls, vulnerability management, and compliance activities. Focus on implementing container image scanning, infrastructure-as-code security, secrets management, and shift-left practices in developer workflows.

Location: Hybrid role in Johannesburg, South Africa office

Company

Global standard for process intelligence and automation, trusted by over 10,000 organizations across 90 countries including Amazon, Coca-Cola, and Microsoft.

What you will do

  • Implement and maintain security controls across the platform, including container orchestration policies, network segmentation, RBAC, and admission controls.
  • Manage container image scanning, enforce policies in CI/CD and clusters, and ensure only vetted images reach production.
  • Support IaC security scanning, secrets management, cloud posture management, and service mesh configurations like mTLS.
  • Conduct vulnerability assessments, maintain tracking systems, and produce security posture reports.
  • Implement security gates in CI/CD (SAST, SCA, dependency scanning) and participate in incident response.
  • Contribute to compliance activities (SOC 2, ISO 27001), security reviews, and developer education on secure practices.

Requirements

  • Bachelor’s degree in Computer Science, Cybersecurity, IT, Engineering or equivalent
  • 2+ years in security engineering, infrastructure security, DevSecOps, or related
  • Hands-on with Azure or AWS
  • Kubernetes security: pod security, RBAC, network policies, admission controllers
  • IaC tools and CI/CD security (dependency scanning, SAST/SCA)
  • Security frameworks (SOC 2, ISO 27001, CIS, OWASP)
  • Scripting (Python, Bash, Go, PowerShell); programming (C#, JavaScript/TypeScript)
  • Penetration testing concepts, vulnerability management, incident response
  • Strong communication to explain security to teams

Culture & Benefits

  • Hybrid working model blending at-home and in-office collaboration
  • Flexible paid time off, global gratitude and recharge days
  • Employee wellness programs, counseling, peer recognition
  • Paid parental leave, invention/patenting assistance
  • Community impact, volunteer time, intercultural learning
  • Learning tools and global community support

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →