ENVIRONMENT:An independent Asset Management firm offering forward-thinking investment strategies seeks the specialist expertise of a highly analytical Cyber Security Analyst to join its team. Your core role will be to provide input and deliver on the defined Information and Cyber Security Strategy. The ideal candidate requires strong knowledge of Cyber Ops including Incident Response and Threat Hunting, an understanding of the NIST Cybersecurity Framework and ISO 27001, knowledge of system administration, scripting and operating system hardening techniques, Malware Prevention, Vulnerability Scanning, Logging and Monitoring systems including SIEM and able to assess cyber risks and develop effective mitigation plans. Please note this is preferably an Employment Equity position.DUTIES:
- Review security alerts to determine the relevancy and urgency and take appropriate action to mitigate the risk.
- Manage the Vulnerability Management process and ensure that vulnerabilities are remediated within SLA or as agreed based on risk.
- Ensure that vulnerability management tools are deployed appropriately, that the results are accurate and remediation activities appropriately prioritised.
- Manage and configure security toolsets to ensure optimal use and coverage.
- Contribute to the development and maintenance of security policies, procedures, standards and awareness.
- Manage Cyber Security incidents through to resolution, driving learning and control improvement across the firm.
- Analyse threat information from a variety of internal and external sources to provide actionable intelligence to maintain and enhance the company’s defences.
- Keep abreast with the latest security and technology developments, cyber threats and the management thereof.
- Create and update disaster recovery plans in the event of any security incidents to ensure business continuity and minimise the impact.
- Monitor the business cyber landscape for attacks, intrusions, unauthorised or illegal activity and take appropriate action.
- Identify potential security weaknesses and implement the required security controls.
- Identify vulnerabilities by generating various attacks scenarios for target systems under development, mapping attack paths and understanding how the business can be compromised.
- Coordinate and participate in Cyber Security Incident Management, response and recovery.
REQUIREMENTS:Technical Knowledge & Experience –
- Knowledge of Cyber Operations including Incident Response, Threat Hunting.
- Good understanding of the NIST Cybersecurity Framework and ISO 27001.
- Knowledge of system administration, scripting and operating system hardening techniques.
- Strong analytical skills with the ability to assess cyber risks and develop effective mitigation plans.
System Skills –
- The configuration, monitoring, and management of security systems:
- Malware Prevention.
- Logging and Monitoring systems including SIEM.
- Data Leakage Prevention systems, rules, and reports.
- The Privileged Account Management.
- Network Access Control – process and exception handling.
- Vulnerability Scanning, reporting, proposing remediation actions and tracking compliance.
- Security hardening baseline compliance scanning, reporting, and remediation.
- Email Security.
- Network Security.
ATTRIBUTES:
- Able to build and maintain strong technical and operational relationships with external partners and vendors.
While we would really like to respond to every application, should you not be contacted for this position within 10 working days please consider your application unsuccessful.COMMENTS:When applying for jobs, ensure that you have the minimum job requirements. OnlySA Citizens will be considered for this role. If you are not in the mentioned location of any of the jobs, please note your relocation plans in all applications for jobs and correspondence. Please e-mail a word copy of your CV to [Email Address Removed] and mention the reference numbers of the jobs. We have a list of jobs on [URL Removed] Datafin IT Recruitment – Cape Town Jobs.