Specialist, Incident Response
7 days ago
Job Overview
Business Segment: Group Functions
Location: ZA, undefined, Johannesburg, Simmonds Street
Job Type: Full-time
Job Ref ID: A-0003
Date Posted: 11/14/2025
Job Description
As a Specialist Incident Response Analyst, you will play a central role in detecting, investigating, and responding to cyber incidents in a non-tiered SOC environment. You will own incidents end-to-end from triage through containment and recovery while applying an adversarial mindset to anticipate attacker behaviour. Alongside technical response, you will contribute to policy improvement, coaching, and industry engagement, ensuring the bank's response capability matures continuously. This role includes after-hours standby as part of an on-call rotation.
Qualifications
A degree Information Technology is required.
IT Risk/security certification such as CISM, CISSP or CISA, GCIA, GCIH, OSCP is required.
AWS/Azure Cloud Certifications.
Experience Required:
5-7 years experience in IT Security, preferably in a Financial Institution, with noted experience in developing threat models, threat analysis, cyber and incident management, offensive security, high level static and dynamic malware analysis.
5-7 years experience in strong IT understanding, gaining insight into digital and platform operating models and cyber security trends and solutions.
Strong experience in incident management, threat modelling, malware analysis, and offensive security techniques.
Broad IT systems knowledge and awareness of digital platform operating
models.
Additional Information
Key Responsibilities:
Detect & Investigate: Analyse alerts from SIEM, EDR, and threat intelligence sources; distinguish true vs false positives.
Contain & Remediate: Lead active incidents through containment, eradication, and recovery actions.
Threat Hunting: Proactively search for adversary activity using attacker TTPs and threat intel.
Malware & Phishing Triage: Perform static/dynamic malware analysis and investigate phishing campaigns.
Offensive Security Awareness: Apply penetration testing/red team knowledge to strengthen detection and response.
Forensic Support: Collect and analyse logs, endpoint, and network artifacts for root cause analysis.
On-Call Duties: Provide after-hours escalation support on a rotational basis.
Documentation & Reporting: Produce incident reports, lessons learned, and contribute to playbook improvements.
Behavioural Competencies:
Articulating Information
Checking Things
Directing People
Documenting Facts
Embracing Change
Examining Information
Interpreting Data
Making Decisions
Producing Output
Providing Insights
Taking Action
Team Working
Technical Competencies:
Data Analysis
Diagramming and Modelling
Documenting
Information Security
IT Knowledge
IT Systems
Research & Information Gathering
Please note: All our recruitment processes comply with the applicable local laws and regulations. We will never ask for money or any from of payment as part of our recruitment process. If you experience this, please contact our Fraud line on or
-
Global Communications Centre Supervisor
2 weeks ago
Johannesburg, Gauteng, South Africa Medi Response Full time R1 200 000 - R2 400 000 per yearThe Global Communications Centre Supervisor is responsible to ensure the operational efficiency of their allocated division. The allocated division is responsible for global assistance services and related special contracts. You will be required to provide guidance and leadership to the operations teams, while ensuring that customer service standards are...
-
Cybersecurity Specialist
2 weeks ago
Johannesburg, Gauteng, South Africa SavageOne Pty Full time R1 000 000 - R3 000 000 per yearDescription:The Cybersecurity Specialist is responsible for ensuring the security of systems, networks, and data, defending against breaches, vulnerabilities, and cyber-attacks. The role requires an in-depth understanding of security protocols, tools, and best practices to protect the organizations assets from cyber threats. Cybersecurity specialists are...
-
Senior IT Security Specialist
2 weeks ago
Johannesburg, Gauteng, South Africa Outsidecapital Full time R1 200 000 - R2 400 000 per yearJob Description We are partnering with a unique, mission-driven financial services organization that plays a critical role in providing stability and security to the national economy. As a key public sector entity, they offer specialized insurance against large-scale, complex risks, ensuring that businesses and communities can recover and thrive in the face...
-
IT Incident and Problem Specialist
2 weeks ago
Johannesburg, Gauteng, South Africa Boardroom Appointments Full time R250 000 - R750 000 per yearMinimum requirements:Certificate or Diploma in computer science, information systems, or related fields3 - 5 years experience in a system analysis experienceResponsibilities:Build working relationships across teams and functional lines in oyder to enhance work delivery, collaboration and innovationDevelop, encourage and nurture collaborative...
-
Security Specialist
7 days ago
Johannesburg, Gauteng, South Africa All jobs Full time R900 000 - R1 200 000 per yearWhy choose Logicalis?It's not just IT solutions, It's IT global know-how Logicalis is an international multi-skilled solution provider providing digital enablement services to help customers harness digital technology and innovative services to deliver powerful business outcomes.Our customers span industries and geographical regions; and our focus is to...
-
Operations Integration Solutions Specialist
5 days ago
Johannesburg, Gauteng, South Africa FirstRand Full timeJob DescriptionDear Future Operations Integration Solutions Specialist, RMB is a place where exceptional people create their own opportunities by challenging the conventional and driving sustainable impact. United by our proud heritage and strong ethics. Innovative ideas, it's the magic of our people and culture that sets us apart. Now, is the time to...
-
Operations Integration Solutions Specialist
5 days ago
Johannesburg, Gauteng, South Africa RMB - Rand Merchant Bank Full timeJob DescriptionDear Future Operations Integration Solutions Specialist,RMB is a place where exceptional people create their own opportunities by challenging the conventional and driving sustainable impact.United by our proud heritage and strong ethics. Innovative ideas, it's the magic of our people and culture that sets us apart.Now, is the time to imagine...
-
Technical Specialist
2 weeks ago
Johannesburg, Gauteng, South Africa Boardroom Appointments Full time R250 000 - R500 000 per yearTechnical Specialist - JohannesburgKey Responsibilities:Deploy, configure, and support IaaS, BaaS, and DRaaS solutions.Manage and maintain Hitachi storage solutions and Azure-based infrastructure.Provide proactive monitoring, troubleshooting, and resolution of incidents.Implement backup, recovery, and disaster recovery solutions to align with business...
-
Disaster Recovery Specialist
2 weeks ago
Johannesburg, Gauteng, South Africa Boardroom Appointments Full time R1 000 000 - R3 000 000 per yearKey purpose: The Disaster Recovery Specialist a qualified resource with a proven track record in IT DR and Business Continuity is required to render IT DR and BCP Specialists Services to review the current DR strategy, plans and processes. Duties and responsibilities: Review ICS DR Framework and related documents inclusive of the Business Continuity Plan, DR...
-
Microsoft Windows Server Security Specialist
2 weeks ago
Johannesburg, Gauteng, South Africa Boardroom Appointments Full time R120 000 - R180 000 per yearKey purpose:We are seeking an experienced IT Windows Server Security Specialist to join our team. The successful candidate will be responsible for ensuring the security of our Windows server environment, as well as maintaining and improving our security protocols and procedures.Duties and responsibilities:Design, implement, and maintain security policies and...
