Johannesburg: Vulnerability Management Specialist posted by Deka Minas (Pty) Ltd

About the Role

We are seeking a Vulnerability Management Specialist with expertise in enterprise vulnerability assessment and management. The successful candidate will play a critical role in identifying, analyzing, and mitigating security risks across organization’s network, applications, databases, and other IT assets. This role requires a deep understanding of security best practices, emerging threats, and industry compliance standards. The ideal candidate is passionate about cybersecurity, stays updated on the latest security trends, and thrives in a collaborative team environment.

Key Responsibilities

• Oversee and coordinate security incident response activities.
• Perform recurring and on-demand vulnerability scanning across on-premises and cloud environments.
• Investigate and resolve security incidents, including targeted threats and internal vulnerabilities.
• Maintain and update documentation regarding threat management, including policies, procedures, and remediation strategies.
• Assist IT teams in designing, implementing, and automating security solutions to mitigate risks.
• Improve and automate vulnerability management processes and reporting.
• Monitor intrusion detection and prevention systems to identify potential security threats.
• Research and assess emerging security threats and vulnerabilities, providing recommendations for remediation.
• Provide technical guidance and support for vulnerability management initiatives.
• Communicate identified vulnerabilities, assess their impact, and recommend appropriate security controls to mitigate risks.

Requirements

• Minimum 3+ years of experience in vulnerability management, cybersecurity, or compliance monitoring.
• Proven experience with vulnerability management, cloud security, and Continuous Threat Exposure Management (CTEM).
• Strong knowledge of cloud security platforms (e.g., Azure, AWS, Google Cloud), vulnerability scanning tools (e.g., Qualys, Tenable, Nessus), and OWASP security standards.
• Hands-on experience in vulnerability scanning, penetration testing, network access control, and/or SIEM solutions.
• Proficiency in the design and implementation of security technologies and controls.
• Experience in IT compliance monitoring and regulatory security requirements.
• Familiarity with data visualization tools for security reporting.
• Strong understanding of security concepts, including cloud computing, automation, networking, and application development.
• Experience managing vulnerability data and automating reporting processes.
• Knowledge of OWASP tools, methodologies, and best practices for application security.
• Proficiency in scripting languages such as Python or Perl to support automation and reporting.

Qualifications

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• Professional security certifications such as CEH, Security+, CVA, Qualys, Tenable, AZ-500.
• Experience in DevSecOps and security automation.
• Familiarity with regulatory compliance frameworks (e.g., ISO 27001, NIST, GDPR).

Salary & Benefits

No salary details are mentioned in the original job description. Therefore, this section is skipped.

How to Apply

If you are interested in this role, please submit your application to reach za for more information. Please note that by submitting your personal information to Deka Minas, you free-willingly issue the business consent to make use of such data for the specific purpose of securing you either permanent or temporary employment. Our business makes use of a POPIA compliant database and you have the right to access, right to correction and right to deletion of your personal information.