Senior Security Analyst [SOC]

 

Recruiter:

IOCO

Job Ref:

iOCO01133

Date posted:

Friday, August 26, 2022

Location:

Johannesburg, South Africa

Salary:

Negotiable


JOB SUMMARY:
The Role:

Essential function:

  • Monitor, Manage and configure of Security Tools
  • Monitor User, Network, Threat and other events from security tools to identify abnormal activity indicating security incidents
  • Review and correlate incident information es...

    JOB DESCRIPTION:

    The Role:

    Essential function:

    • Monitor, Manage and configure of Security Tools
    • Monitor User, Network, Threat and other events from security tools to identify abnormal activity indicating security incidents
    • Review and correlate incident information escalated from Tier 1 Analysts to determine and assess their urgency and impact 
    • Evaluate the incident, identify the cause, and implement required actions to mitigate, prevent and/or recover from the incident
    • Proactively research and monitor security trends and information to identify potential threats and implement capabilities to proactively detect and respond 
    • Creating, maintaining and optimizing of SIEM Rules to reduce false positive, improve accuracy and improve detection capabilities
    • Establish a detailed understanding of clientâ??s infrastructure
    • Establish a detailed understanding of clients incidence response processes 
    • Research and understand and stay abreast with the Mitre Attck Framework 
    • Create and update Security incidents in ITSM platform with detailed information of logs relevant to the incident
    • Update and track incidents and requests based on analysis results and incident response updates
    • Escalate validated and confirmed Incidents to TIER 2 and designated incident response teams
    • Work Closely with other security teams and designated incident response teams
    • Establish and document root cause and remediation responses 
    • Create client request for information elements and reports
    • Identify and address gaps and/or omissions in security detection and posture. 
    • Perform Purple team exercises and develop rules around said exercises. 
    • Develop Run-book and Playbooks 
    • Automate Run-books and Playbooks for response and remediation processes. 
    • Support and assist senior analysts
    Skills and Experience:

    Essential Qualification:

    • Grade 12
    • Industry recognised (vendor neutral) security certification (e.g. CISSP, CEH, Security+, GIAC, etc.)

    Preferred Qualification:

    • Hold an industry recognised (vendor neutral) security certification (e.g. CISSP, CEH, Security+, etc.)
    • Degree (or equivalent) in Information Technology/Security, Engineering or related field of study preferred (alternatively an equivalent combination of education and experience).
    • Min 5 years in a hands-on security role, with a strong background in security tools including but not limited to firewalls, IDS/IPS, proxy servers and endpoint protection 
    • Holds a recognised SIEM Tool Certification

    Experience required:

    • 5+ Years of experience with Information Security with experience in a SOC environment, with demonstrable expertise in SIEM (LogPoint, QRadar, Splunk McAfee or ArcSight)
    • 5+ Years of experience in an operations focused information security role, with a strong background in security controls and risk management frameworks 
    • Mitre Attack Framework (or equivalent) understanding as well as security and data compliance requirements,
    • Demonstrable understanding of operating systems, applications and information technology systems along with their purpose and logging capabilities
    Other:

    Work environment:

    • Security Operations Centre

    Physical demands:

    • Office Based in the Security Operations Centre Ad-Hoc Remote support

    Travel:

    • Potential travel after hours/weekends for breach incidents

     

    NB! This job is now closed. You can apply for other jobs by uploading your CV.


     

 

 

Similar jobs you might be interested in:

Operations Engineer – Feature Owner Security Tools (Senior)
Location: Midrand
Salary:
Join our team as an Operations Engineer – Feature Owner security Tools (senior), where you will play a pivotal role in optimizing our security tools within our operational environment. Leveraging your expertise in security tool configuration and development, you will collaborate with cross-functional teams to deliver comprehensive IT solutions that enhance operational efficiency and support ...
23 days ago


Systems and Security Analyst
Location: Newlands
Salary: Market related
You must have network security experience, IT security methodology and remediation understanding.
14 days ago


Senior Automation Test Analyst
Location: Cape Town
Salary: Market related
Our client is looking for a senior Automation Test analyst to join their team. Responsible for testi
28 days ago


Store Manager
Location: Midrand
Salary: R10 000
Our client, an upmarket, fast-paced growing Brand of clothing is looking for a Store and Assistant Manager.
Today


Assistant Manager
Location: Bloemfontein
Salary: R10 000
Our client, an upmarket, fast-paced growing Brand of clothing is looking for an Assistant Manager.
Today


Assistant Manager
Location: Rustenburg
Salary: R 10 000
Our client, an upmarket, fast-paced growing Brand of clothing is looking for an Assistant Manager.
Today


Chief Technology Officer (CTO)
Location: Pretoria
Salary: R1 902 477 Annually
Exciting career opportunity for a candidate with a relevant B Degree and a minimum of 6 (six) years' experience in a senior technology management role (gambling industry experience essential). PURPOSEThe position will be responsible for overseeing all aspects of technology within the Organisation. This includes developing and implementing technology strategies, managing the IT infrastructure,...
1 day ago


3rd Technical Support Engineer (Hybrid)
Location: Cape Town
Salary: Monthly
Our SA team is looking for a 3rd line Support Engineer with at least 3-4 years’ experience, to support our clients remotely as well as onsite when required. Our team is very technical, and you will have the many opportunities to get involved in not just technical support, but also project work, maintenance, upgrades, and other aspects of the business.
1 day ago


Chief Executive Officer (CEO)
Location: Pretoria
Salary:
We are looking for a CEO for a well known company within the Transportation industry in Pretoria on a 5 year fixed term contract.
1 day ago


Cloud Data Engineer
Location: Johannesburg
Salary:
Cloud Data Engineer (Azure, Contract)We have a requirement, at our financial services client, for a senior Data Engineer with extensive technical delivery and experience in the Azure Cloud platform.  The purpose of this role includes - Owning and accountability for a large application platform or a collection of application platforms that deliver a capability/ service. Deliver deep speci...
1 day ago


Create a free job alert for Senior Security Analyst [SOC] in Johannesburg

Enter your email address below and we will email you similar jobs when they become available:

You can cancel at any time. We will not spam you.
By giving us your email address your agree to our Terms and Conditions

 

Jobseekers

Register your CV
Search jobs
Job alerts
CV writing
Blog

Recruiter

Advertise jobs
Search the CV database
How to Write a Job Description

General

Company a-z
Partners
About us
Disclaimer
Terms and conditions
Privacy policy
Cookie policy
POPIA manual
Unsubscribe
Site Map

© Copyright 2024 Executive Placements. All Rights Reserved.