Cyber Threat Hunt Analyst
1 month ago
Surgo (PTY) Ltd. has partnered with a global analytics and digital solutions company serving industries including insurance, healthcare, banking and financial services, media, retail, and others. They aim to bridge the gap between digital expectations and real outcomes for international companies with Digital Intelligence.
Our client is recruiting for a Cyber Threat Hunt Analyst to join their team based in Cape Town.
**Job purpose**:
The role will support and advise on product assessments, policy adjustments, and architectural transformation that will impact regional and global locations. The position requires someone with technical expertise and will provide influence on the design of detective, preventive, and proactive controls.
**Responsibilities**:
Identify and track threat actor groups and their TTPs while maintaining current knowledge of tools and best practices of APT groups
Perform cyber threat hunting activity using threat intelligence, analysis of anomalous log data, and related tools
Collect, enrich, and disseminate IOCs - Indicators of Compromise
Use the MITRE ATT&CK framework to analyze malicious campaigns and evaluate the effectiveness of security technologies and controls
Determine true threats, false positives, and network system misconfigurations and provide recommendations and solutions to issues detected
Monitor the organization’s attack surface against the current threat landscape
Support the Cyber Threat Intelligence team to provide threat informed defenses that will improve prioritization of preventative controls and mitigations to improve defense posture
Engage and collaborate with Red Team to analyze and evaluate the effectiveness of existing security controls
Support Cyber Threat DFIR for internal incidents by performing cyber threat hunting activities during investigations and building a common understanding of threat activities
**Qualification & Experience**:
Direct experience performing threat hunting in an active corporate environment
2+ years of experience in a technical role in the areas of Security Operation, Incident Response, Detection Engineering, Offensive Security/Red Team, or Cyber Threat Intelligence
Security certification or working towards certification (e.g., SANS, SEC+, CompTIA, Security+, OSCP, or CEH), equivalent experience will be considered
Direct experience working with large datasets, log review and bulk analysis tools
Experience consuming and analyzing Cyber Threat Intelligence for actionable takeaways
Familiarity with offensive security strategies and assessment methodologies
Knowledge of threat actors, including malware families, intrusion techniques, and associated criminal entities
Experience explaining threat hunt objectives and ability to communicate associated risks
Ability to understand requirements and needs from across the organization in order to build consensus and drive results
Ability to navigate and work effectively across a complex, geographically dispersed organization
Able to perform proactive threat hunting using multiple toolsets, suggesting, and testing hypotheses, pivoting and reporting on investigation results
Ability to work on-side
**Beneficial**:
Experience with more than one more enterprise scale EDR and SIEM tool
Experience using Internet and network scanning tools for malicious host discovery
Basic understanding of building threat hunting queries using KQL, SIGMA, or Yara
Previous experience using a Threat Intelligence platform or CTI vendor
Demonstrated ability to self-direct, with mínimal supervision to achieve assigned goals
Knowledge of basic Data Science concepts and processes
Experience with offensive security tools and technical and the methods used to compromise large networks
Previous experience performing digital forensics or incident response on major security incidents
**Salary**: Market Related
**Working Hours**: Monday to Friday - 08:00am to 17:00pm
-
Security Analyst
4 weeks ago
Cape Town, South Africa Capital Edge Recruitment Full timeJoin a team of Security Analyst (SOC Tier 2) at an international IT MSP, where you’ll play a pivotal role in enhancing their Security Operations Center (SOC) and Security Orchestration, Automation, and Response (SOAR) operations. Collaborate with talented teams to build services and solutions that align with security best practices and client assurance...
-
Senior Cyber Security Specialist: Blue Team, Its
4 weeks ago
Cape Town, South Africa Woolworths Full timeAdvert reference: woolw_000639 Advert status: Online - **Position Summary** **Industry**:IT & Internet **Job category**:Others: IT and Telecommunication **Location**:Cape Town **Contract**:Permanent **Remuneration**:Market-related **Introduction** We are searching for an energetic, output-driven Senior Blue Team Ninja to support the execution of the...
-
Cape Town, South Africa Woolworths Full timeAdvert reference: woolw_000638 Advert status: Online - **Position Summary** **Industry**:IT & Internet **Job category**:Others: IT and Telecommunication **Location**:Cape Town **Contract**:Permanent **Remuneration**:Market-related **Introduction** We are searching for an energetic, output-driven Blue Team Ninja to support the execution of the cyber...
-
Cape Town, South Africa Woolworths Full timeAdvert reference: woolw_000593 Advert status: Online - **Position Summary** **Industry**:IT & Internet **Job category**:Others: IT and Telecommunication **Location**:Cape Town **Contract**:Permanent **Remuneration**:Market-related **Introduction** We are searching for an energetic, output-driven Blue Team Ninja to support the execution of the cyber...
-
Cyber Security Lead
4 days ago
Cape Town, South Africa Clicks Group Limited Full time**Listing reference**: 016940**Listing status**: Online- **Position summary** **Industry**:IT & Internet - **Job category**:IT and Telecommunications**Location**:Cape Town - **Contract**:Permanent**EE position**:No**Introduction**Job description** **JOB OBJECTIVES**- - Lead, mentor, and manage a team of cyber security specialists in performing security...
-
Cyber Security Regional Lead
1 month ago
Cape Town, South Africa First Point Group Ltd Full time27578 Posted: 29/01/2024 - Negotiable- South Africa, Cape Town, South Africa Cape Town- Permanent- Role: Cyber Security Regional Lead - Location: Cape Town - Lead the Charge in Cyber Security as our Regional Maestro! - Are you ready to take the helm of Cyber Security efforts in Africa? As the Cyber Security L3 Regional Lead, you'll be orchestrating all...
-
Cyber Security Regional Lead
4 weeks ago
Cape Town, South Africa ABC Worldwide (Pty) Ltd Full time**Cyber Security Regional Lead** **Key Responsibilities**: - Act as the main point-of-contact for all SecOps activities within the region, - Lead and line manage the internal L1 SOC analyst team, which will include responsibility for: hiring, training and ensuring that adequate coverage is provided 24/7, - Develop and continually refine detection and...
-
Cyber Security Manager
4 days ago
Cape Town, South Africa Clicks Group Limited Full time**Listing reference**: 016939**Listing status**: Online- **Position summary** **Industry**:IT & Internet - **Job category**:IT and Telecommunications**Location**:Cape Town - **Contract**:Permanent**EE position**:No**Introduction** - We are seeking a proficient and experienced Cyber Security Manager to shape, design and manage the implementation of the...
-
Senior Cyber Security Specialist
4 weeks ago
Cape Town, South Africa iLaunch Full timeDevelop and implement security hardening strategies Building and refining SIEM / SOC use cases and conduct thorough investigationsand resolutions for escalated threat intelligence, security breaches, and unauthorized access. Assist in cyber security incident response Manage and co-ordinate security architecture reviews, vulnerability assessments...
-
Cyber Security Specialist
1 month ago
Cape Town, South Africa Adept Advisory (Pty) Ltd Full timeSecurity Specialist on a renewable, 6 month contract, based in Cape Town, on a hybrid model. **INDUSTRY** Financial Services **ABOUT THE TEAM** **ABOUT THE ROLE** Your mission will be not just to strengthen our security processes but to also document all processes for knowledge dissemination. This ensures that our team continues to operate with...
-
Penetration Tester
1 month ago
Cape Town, South Africa Parvana Strategic Sourcing Full time**Client Details**: Our client is a reputable provider offering cyber security consulting, technology integration, and managed security services. As a member of their inclusive and diverse team, you will have the freedom to work with innovation and flexibility. The collaborative environment allows you to learn from experienced colleagues and continuously...
-
Cloud Security Analyst
1 month ago
Cape Town, South Africa Pro Tem Full timeThe purpose of this role is to work as a Junior Cloud Security Analyst in Nedscaper’s Security Operations Center (SOC) based in Cape Town (as agreed to start the role initially in Johannesburg) and actively monitor the cloud traffic of the clients and investigate suspicious user behaviour, anomalies and potential threats (incidents). You will further...
-
Cyber security consultant
3 weeks ago
Cape Town, South Africa Adzuna ZA B C2 Full timeProfessional Qualification and Certifications:Bachelors Degree in Computer Science, Information Systems or other related field, or equivalent work experience.Certification in risk, information systems and/or security desired (CISM, CISSP, CRISC, Cyber Security courses. Ethical Hacking)Work Experience: Minimum 3- 5 years of experience in IT security, Identity...
-
Cyber security consultant
3 weeks ago
Cape Town, South Africa Gijima Holdings Full timeProfessional Qualification and Certifications: Bachelors Degree in Computer Science, Information Systems or other related field, or equivalent work experience. Certification in risk, information systems and/or security desired (CISM, CISSP, CRISC, Cyber Security courses. Ethical Hacking) Work Experience: Minimum 3- 5 years of experience in IT security,...
-
Cyber security consultant
3 weeks ago
Cape Town, South Africa Gijima Holdings Full timeProfessional Qualification and Certifications:Bachelors Degree in Computer Science, Information Systems or other related field, or equivalent work experience.Certification in risk, information systems and/or security desired (CISM, CISSP, CRISC, Cyber Security courses. Ethical Hacking)Work Experience: Minimum 3- 5 years of experience in IT security, Identity...
-
Information Security Analyst
2 months ago
Cape Town, South Africa eSoft Development and Technologies Full timeOne of our clients wants to grow their team and we are looking for an information security analyst. The Information Security Analyst will be responsible for the planning, implementation and execution of daily/weekly/monthly security tasks that ensures that the clients are compliant with the required standards by providing analysis, administration, and...
-
Information Security Analyst
1 month ago
Cape Town, South Africa Dimension Data Full timeThe Information Security Analyst will be responsible for the planning, implementation and execution of daily/weekly/monthly security tasks that ensures that the clients are compliant with the required standards by providing analysis, administration, and advisory input. The focus will be on the maintenance of compliance, security, and risk functions in...
-
AWS Cyber Security Specialist
5 days ago
Cape Town, South Africa Parvana Full timeJob DescriptionAbout our client:Our client is a leading payments company dedicated to transforming the payment landscape by providing a risk-free and empowering payment solution. Their payment solution aims to alleviate debt burdens, enabling shoppers to pay as they earn, free from the threat of accumulating charges. You will be working on the latest tech...
-
Head Information Security
3 days ago
Cape Town, South Africa ADEC Innovations Full timeIs responsible for managing all Adec Innovations global information security and cyber security controls and systems, including Adec Innovations subsidiaries. Set up the Cyber Security Centre of Excellence (CoE) or practice that will be packaged and monetized across all Adec Innovations markets globally. This role will lead and shape the organization's...
-
Account Manager: Cyber Security
1 month ago
Cape Town, South Africa IOCO Full timeYearning for More in Your Career? iOCO Infrastructure Services Invites You to Explore Possibilities. We are seeking a dynamic and results-driven Account Manager with expertise in Cyber Security to join our team. The successful candidate will play a pivotal role in managing client relationships, driving sales, and promoting our Cyber Security solutions....
