Cyber Security
3 weeks ago
**Position Title**
**CSOC Lead Analyst (Level 2)**
**Main purpose of the role**
To lead the team in the daily operation of our Real-time Threat Management activities. This includes operational security tasks such as performance and availability, monitoring, log monitoring, security incident detection and response, security event reporting, and content maintenance (tuning).
To mentor and coach team to ensure service is effectively delivered and at the required level of services.
**Job level**
Level 2
**Reports to [role]**
CSOC Manager
**Required minimum education and work experience**
- Matric / University Degree in Information Security and/ or a minimum of 5 years
related practical SOC experience.
- Industry Certifications: CISSP, CISM, CISA, CEH, CHFI (desired)
- Prior experience working in a SOC/CSIRT for at least 5years
- Product Certifications in SIEM, Security Analytics, AV, Log Management
- Strong knowledge of security standards including ISO27001, ASD, PCI DSS
- Proven skills in improving SIEM alerting rules
- Must have the ability to understand large, complex systems and be able to focus
on specific details or subsystems, their vulnerabilities and linkages
- Extensive experience dealing with malware, attack vectors and the ability to
perform pattern analysis
- Requires basic knowledge of hardware / software architecture and domains in IT
operations with a focus on governance, risk and compliance.
**Internal contacts**
- Head of Cyber Security Operations Centre CSOC.
- CSIRT team.
- Other functional peers.
- Account manager.
- Service delivery manager.
- Technical delivery manager.
**External contacts**
- Client.
- Vendor.
**Key performance areas**
1. Delivery of quality security monitoring service.
2. Reporting and documentation.
3. Mentoring and coaching.
4. Personal development.
5. Deliver according to Statement of Work.
**Technical knowledge / competencies**
- Be familiar will current SOC operational methodologies
- Knowledge of NIST 800 - (any SP in the 800 range)
- Knowledge of firewalls, IDS, IPS, VLANS, AD, LDAP, routers and switches
- Knowledge of SIEM technologies
- Knowledge of root cause analysis and escalation procedures
- Knowledge of CVE, Google Hacking and threat intelligence
- Knowledge of MITRE Att&ck Framework
- Knowledge of ISO 27001
- Reporting skills, being able to articulate technical reports into business language in
order to provide situational awareness and specialist advisory.
- CISSP
- OSCP
- SANS Cyber Threat Intelligence
- Project and process management
**Behavioural competencies**
- Leadership and climate setting
- Team player and Team building (creation of a cohesive division)
- Must be capable of setting goals and priorities for others and prioritization for
self
- Adopting and accepting the organization's professional standards
- Awareness and consistency in own self-awareness and basic managerial style
- Structured thinking
- Teachability - (having a positive attitude and a willingness to learn)
- Individual thinking within the current role
- Collaboration - willingness and ability to collaborate with other Team Leaders/
Supervisors
- Action oriented - production of desired outcomes within the required timeframes
- Work pro-actively - both independently and with peers
- Assertive and confident.
- Ability to handle conflict.
- Ability to plan and organize work tasks.
- Strong sense of accountability and responsibility.
**Description of key performance areas**
**Key performance area**
**1. Delivery of quality security monitoring service**
- Makes customers and their needs a primary focus of one’s actions and attention,
while developing/maintaining productive customer relationships.
- Seeks to understand customer environment to ensure realistic and effective
recommendations and/or solutions.
- Seeks to understand customer circumstances, problems, expectations and needs,
while resolving problems quickly.
- Responsible for ensuring divisional policies, procedures and standards are
documented, approved, communicated and adhered to.
- Act as an advisor to internal and external customers regarding CSOC related
matters.
- Meeting customer expectations/deliverables in line with SOW.
- Number of complaints/compliments from customers.
**2. Reporting and Documentation**
- Manage and report on the team’s performance, including mentoring and coaching
- Develop and deliver timely reports to management
- Log and report all customer interactions
- Drive the effective service delivery at the required level of services
- Actively support technology and product adoption within the department to ensure
it is best of breed (discerning), in order to provide quality services at scale
- Implement automation of processes and technology management wherever
possible to eliminate human error and effort, and to facilitate faster incident
alerting and response times.
Level of cooperative reliability in working with other functional Peers
Quality of products and service
-
Cyber Security
2 weeks ago
Johannesburg, Gauteng, South Africa Tower Group Full timeCyber Security Specialist required on a Fixed Term Contract in Midrand to oversee and manage initiatives within the financial services, insurance, and lending sector.A Deep understanding of cyber security practices and trends as well as leadership skills necessary to guide a team of professionals in implementing and maintaining an effective and comprehensive...
-
Cyber Security
2 weeks ago
Johannesburg, Gauteng, South Africa Tower Group Full timeCyber Security Specialist role available on a Fixed Term Contract in Midrand. Opportunity to lead initiatives in the financial services, insurance, and lending sector. Seeking someone with a deep understanding of cyber security practices and trends, along with strong leadership skills to manage a team of professionals in effectively implementing and...
-
Cyber Security
4 weeks ago
Johannesburg, South Africa Tower Group Full timeCyber Security Specialist required on a Fixed Term Contract in Midrand to oversee and manage initiatives within the financial services, insurance, and lending sector. A Deep understanding of cyber security practices and trends as well as leadership skills necessary to guide a team of professionals in implementing and maintaining an effective and...
-
Cyber Security
4 weeks ago
Johannesburg, South Africa Tower Group Full timeCyber Security Specialist required on a Fixed Term Contract in Midrand to oversee and manage initiatives within the financial services, insurance, and lending sector. A Deep understanding of cyber security practices and trends as well as leadership skills necessary to guide a team of professionals in implementing and maintaining an effective and...
-
Cyber Security
4 weeks ago
Johannesburg, South Africa Tower Group Full timeCyber Security Specialist required on a Fixed Term Contract in Midrand to oversee and manage initiatives within the financial services, insurance, and lending sector. A Deep understanding of cyber security practices and trends as well as leadership skills necessary to guide a team of professionals in implementing and maintaining an effective and...
-
Cyber Security
1 month ago
Johannesburg, South Africa Adzuna ZA B C2 Full timeCyber Security Specialist required on a Fixed Term Contract in Midrand to oversee and manage initiatives within the financial services, insurance, and lending sector. A Deep understanding of cyber security practices and trends as well as leadership skills necessary to guide a team of professionals in implementing and maintaining an effective and...
-
Cyber Security Officer
3 weeks ago
Johannesburg, South Africa Specd Full time**The Job Requirements**: - Develop and implement comprehensive cyber security strategies, policies, and procedures that align with business objectives and comply with regulatory requirements. - Monitor network traffic and system logs to identify and respond to security incidents and breaches in a timely and effective manner. - Develop and maintain incident...
-
Cyber Security Manager
3 weeks ago
Johannesburg, South Africa Specd Full time**The Job Requirements**: - Lead and manage the Cyber Security team. - Provide technical expertise and support to the team as needed. - Develop and implement security policies and procedures. - Manage incident response and investigate potential security breaches. - Monitor and develop robust security controls and protocols. - Collaborate with internal and...
-
Cyber Security Manager
2 months ago
Johannesburg, South Africa SNG GrantThornton Full time**Responsibilities**: - Manage and lead a team of cyber security professionals; - Undertake project planning, execution and management of cyber security assignments; - Manage and or perform cybersecurity managed services assignments; - Form partnerships with cybersecurity third parties and OEMs - Manage Third Parties and OEMs and partnerships; - Manage and...
-
Cyber Security Analyst
2 weeks ago
Johannesburg, Gauteng, South Africa Hollard Recruitment Full timeJob Advert Summary:Your role.Your businessEstablished in Australia in 1999 and still privately owned, we offer a variety of specialised products such as competitive General, Pet and Bicycle Insurance through our Agencies and Partners. At Hollard we are agile, continuously growing and gaining market share.Your TeamReporting into the Cyber Security Manager...
-
Cyber Security Manager
2 weeks ago
Johannesburg, Gauteng, South Africa SNG GrantThornton Full timeResponsibilities: Manage and lead a team of cyber security professionals; Undertake project planning, execution and management of cyber security assignments; Manage and or perform cybersecurity managed services assignments; Form partnerships with cybersecurity third parties and OEMs Manage Third Parties and OEMs and partnerships; Manage and provide...
-
Cyber Security Analyst
3 weeks ago
Johannesburg, South Africa BASHR Consulting Full time**Job Details**: **Department** **other** **Minimum experience** **Mid-Senior** **Company primary industry** **Information Technology and Services** **Job functional area** **Information Technology** **Salary** **R400 000 - R600 000 per annum** Job Specification: Cyber Security Analyst Position Overview: **Responsibilities**: 3. Develop and...
-
Cyber Security
1 week ago
Johannesburg, South Africa Recruitment Matters Africa Full timeOur client is looking for a Cyber Security To play a pivotal role in ensuring the delivery of a high quality, accurate and timely professional service to the company by ensuring successful completion of assigned Cyber Security related audit engagements from start to finish, inclusive of preplanning and wrap up activities. **Responsibilities**: - Manage the...
-
Cyber Security Support Specialist
2 months ago
Johannesburg, South Africa Exclusively Remote Full timeExperienced IT Support Specialists skilled Cyber Security We are seeking skilled Cyber Security Support Specialists to join our clients dynamic team. As a Cyber Security Support Specialist, you will be responsible for providing technical support and assistance to ensure then integrity, confidentiality, and availability of our organization's information...
-
Cyber Security Analyst
5 days ago
Johannesburg, South Africa Hollard Recruitment Full time**Job Advert Summary**: **Your role.** **Your business** Established in Australia in 1999 and still privately owned, we offer a variety of specialised products such as competitive General, Pet and Bicycle Insurance through our Agencies and Partners. At Hollard we are agile, continuously growing and gaining market share. **Your Team** Reporting into the...
-
Cyber Security Consultant
3 weeks ago
Johannesburg, South Africa HR Genie Full timeThe role of the Cybersecurity Consultant includes contribution to technical insights relevant to client engagements and internal projects. Actively establish, maintain and strengthen internal and external relationships. Execution of cybersecurity engagements. The Cybersecurity Senior Consultant will be responsible for the following key activities to achieve...
-
Cyber Security Expert
3 weeks ago
Johannesburg, South Africa eSoft Development and Technologies Full time**Academic qualifications/Professional Certification** Bachelors Degree in Computer science/ engineering or other IT Related disciplines, Certification on cyber security for example 27001, CISM, CISCA, etc **Specific experience** Atleast five (5) years of experience in implementing system security and/or systems audit. **Experience s in the regional **...
-
Cyber Security Specialist
4 weeks ago
Johannesburg, South Africa NTT Full timeNTT is a leading global IT solutions and services organisation that brings together people, data and things to create a better and more sustainable future. In today’s ‘iNTTerconnected’ world, connections matter more now than ever. By bringing together talented people, world-class technology partners and emerging innovators, we help our clients solve...
-
Cyber Security Support Specialist
2 weeks ago
Johannesburg, Gauteng, South Africa Exclusively Remote Full timeExperienced IT Support Specialists skilled Cyber SecurityWe are seeking skilled Cyber Security Support Specialists to join our clients dynamic team. As a Cyber Security Support Specialist, you will be responsible for providing technical support and assistance to ensure then integrity, confidentiality, and availability of our organization's information...
-
Senior IT Auditor- Cyber Security
4 weeks ago
Johannesburg, South Africa Isilumko Staffing Full timeA top company in the Energy and Chemical Industry is seeking a highly skilled and experienced Senior IT Auditor with a strong background in Cyber Security to join their dynamic team. As a Senior IT Auditor - Cyber Security, you will play a key role in evaluating and enhancing the security of our IT systems and processes. Key Responsibilities:Cyber Security...
