L1 Incident Analyst

1 day ago

Midrand, South Africa Liquid Tech (Pty) Ltd. Full time

**Role Purpose**

To deliver day-to-day managed security services (MSS), related to SOC deliverables. Critical in this regard is to execute according to Standard Operating Procedure (SOP) expectations and meeting all related service level agreements (SLAs). It is further expected that these services will be enhanced and matured so that customer value can be delivered and communicated.

**Role Description**

Provides support for basic computer network exploitation and defence techniques to include deterring, identifying and investigating computer and network intrusions. Provide incident response and remediation support. Performing comprehensive computer surveillance/monitoring and identifying vulnerabilities. Provides technical support for continuous monitoring, computer exploitation and reconnaissance, target mapping and profiling and network decoy and deception operations in support of computer intrusion defence operations. Researches and maintains proficiency in open and closed source computer exploitation tools, attack techniques, procedures and trends. Performs research into emerging threat sources and develops threat profiles. Provides technical support for a comprehensive risk management program.
identifying mission critical processes and systems, current and projected threats and system vulnerabilities. Develop playbooks for various incident scenarios and have a knowledge of automation processes and products. Escalate higher risk incidents to L2 Incident Analyst.

**Role Requirements**

Matric.

One or more of these industry Cybersecurity Certifications: CISM, CISA, CISSP ISSEP, CISSP-ISSAP, Certified Computer Security Incident Handler (CSIH), CEH, OSCP, CompTIA Security Plus.

Strong analytical and organizational skills.

Concise writing skills, excellent MS Word skills as well as other MS Office Applications.

Experience with securing various environments preferred.

Experience in working across security technologies.

Managed security services experience across complex architectures.

In depth understanding of the role of incident analysis tools.

In depth understanding of various types of log analysis.

Prior experience to advise, plan, deploy, configure, manage and monitor large scale and complex cyber defence and IT risk management and information or cybersecurity solutions.

  • L3 Security Incident Handling Analyst

    3 days ago

    Midrand, South Africa Nexio Full time

    **ROLE PURPOSE** As part of the Customer-facing Nexio SOC team, the L3 Security Incident Handling Analyst will be responsible for monitoring enterprise networks and systems, detecting events and reporting on any and all threats that are directed against those systems regardless of their classification level or type. The L3 Security Incident Handling Analyst...

  • Incident Manager

    7 days ago

    Midrand, South Africa Nexio Full time

    **ROLE PURPOSE** The Incident Manager is responsible for managing the process to restore normal service operation as quickly as possible to minimize the impact on business operations. This role involves leading the incident management team, ensuring that all IT service disruptions are resolved efficiently and effectively, and maintaining high levels of...

  • Specialist: Cybersecurity Incident Manager

    2 weeks ago

    Midrand, South Africa Nexio Full time

    **ROLE PURPOSE** As part of the Customer-facing Nexio SOC team, the Cybersecurity Incident Manager is a crucial role within an organization's cybersecurity team. The primary responsibility of the Cybersecurity Incident Manager is to detect, respond to, investigate, and mitigate cyber threats and incidents that occur within the organization's network and...

  • Cybersecurity Incident Management Specialist

    2 weeks ago

    Midrand, South Africa Nexio Full time

    **ROLE PURPOSE** As part of the Customer-facing Nexio SOC team, the Cybersecurity Incident Management Specialist is a crucial role within an organization's cybersecurity team. The primary responsibility of the Cybersecurity Incident Management Specialist is to detect, respond to, investigate, and mitigate cyber threats and incidents that occur within the...

  • Specialist: Cybersecurity Incident Management

    1 day ago

    Midrand, South Africa Nexio Full time

    **ROLE PURPOSE** As part of the Customer-facing Nexio SOC team, the Cybersecurity Incident Manager is a crucial role within an organization's cybersecurity team. The primary responsibility of the Cybersecurity Incident Manager is to detect, respond to, investigate, and mitigate cyber threats and incidents that occur within the organization's network and...

  • L2 Security Incident Manager

    3 days ago

    Midrand, South Africa Nexio Full time

    **ROLE PURPOSE** As part of the Customer-facing Nexio SOC team, the L2 Security Incident Manager will identify, analyse and react to security incidents, events and threats using a reliable set of operating processes and SIEM technologies such as Azure Sentinel, or QRadar, or ArcSight. The L2 Security Incident Manager will be responsible for monitoring...

  • Specialist: Cybersecurity Analyst

    2 weeks ago

    Midrand, South Africa Nexio Full time

    **ROLE PURPOSE** As part of the Customer-facing Nexio SOC team, the Specialist: Cybersecurity Analyst plays a critical role in monitoring, detecting, and responding to cybersecurity incidents within a Security Operations Center. The Cybersecurity Analyst utilizes incident handling methodologies to validate security events, assess severity levels, and provide...

  • Senior Specialist: Cybersecurity Analyst

    2 weeks ago

    Midrand, South Africa Nexio Full time

    **ROLE PURPOSE** As part of the Customer-facing Nexio SOC team, the Senior Specialist: Cybersecurity Analyst plays a critical role in monitoring, detecting, and responding to cybersecurity incidents within a Security Operations Center. The Cybersecurity Analyst utilizes incident handling methodologies to validate security events, assess severity levels, and...

  • Level 3 Software Support Technician

    5 days ago

    Midrand, South Africa RJPersonnel Full time

    3years - Responsible for driving Level 3 software support in accordance with agreed standards among teams Engaging internal and external teams to identify solutions to service impacting incidents and problems - Engaging and coordinating L1 and L2 support on Incident Resolution Engaging Customers to clarify Incidents and gather feedback - Managing client and...

  • Junior Technical Solutions Analyst

    1 day ago

    Midrand, South Africa Network Contracting Full time

    **Outputs**: **Consultancy services** - Document solutions - Liaise with Development teams on proposed solutions. **Technical Analyst** - Understanding the business requirements, and through a structured process documenting, validating, and translating it into functional specifications that are used by developers to craft a technical solution. - Create...