Cyber Security Analyst

JOB TITLE : Senior Cyber Security Analyst

LOCATION : Remote (Johannesburg / Cape Town)

Cyberlogic is a trusted Managed Solutions Provider with offices in South Africa, Mauritius, and the UK.

Serving a diverse range of clients, spanning numerous industries including the international maritime sector, Cyberlogic specialises in IT leadership, cyber security, cloud solutions, and business intelligence.

For almost three decades, Cyberlogic has been committed to enabling digital transformation through delivering unquestionable value. Our delivery focus has enabled us to build a national and international footprint of loyal clients that rely on us to provide transparent, open guidance to improve their processes, grow their businesses, and secure their data.

Cyberlogic is part of the Hyperclear Technology group, which boasts a diverse technology offering including robotic process automation (RPA), business process management (BPM), data analytics, and decisioning technology. Through our non-profit, R4C (Ride for a Child), we partner with Bright Start Education Foundation, empowering learners from underprivileged communities with holistic support and guidance.

• We challenge ourselves to be more AWESOME
• We are driven to KEEP learning and EVOLVING
• We look beyond symptoms to identify and RESOLVE ROOT CAUSES
• We hold each other accountable through CANDID and constructive FEEDBACK
• We respect and care for each other and know we will only SUCCEED if we work AS A TEAM
• We CARE deeply ABOUT the success of CYBERLOGIC
• We FINISH WHAT WE START
• We always GIVE OUR BEST even if it means putting in the hard yards
• We KEEP THINGS SIMPLE

As a Cyber Security Analyst within Cyber Forensics, you will play a pivotal role in advancing the security objectives of both our clients and our organisation. Your expertise will be instrumental in developing, implementing, and maintaining technical security solutions, processes, and controls to safeguard against unauthorised access, use, disclosure, modification, damage, or loss of client systems and data.

As a key technical member of our Security team, you will lead efforts to strengthen our clients' defenses against cyber threats by developing and maintaining cutting-edge Cyber Security Technology Solutions and Cyber Security Control Frameworks, ensuring environments are robustly protected.

1. Problem Solving and Implementing Security Measures : Assess and address complex security issues. Lead the implementation of security protocols and tools following established procedures. Identify and resolve security gaps through technical analysis. Conduct security audits and evaluate current measures for improvement. Support development and maintenance of security documentation, procedures, and standards.
2. Escalations and Incident Response : Oversee monitoring of security alerts, manage escalated tickets within SLA, collaborate with technicians, lead incident response procedures, and participate in exercises to test response effectiveness. Communicate outcomes appropriately.
3. Security Tool Management and Maintenance : Minimize false alerts, modify tools to reduce noise, and enhance detection accuracy.
4. SOC Strategy : Drive SOC strategy development, collaborate on Proof of Concepts, and present recommendations to senior leadership.
5. Security Awareness and Training : Support phishing campaigns, analyze outcomes, develop awareness programs, and train junior team members.
6. Client Communication and Support : Respond to client inquiries, manage escalations, and ensure timely communication.
7. Security Investigations : Conduct investigations into incidents, research external trends, and guide remediation efforts.
8. Auditing and Reporting : Manage client environment audits, create reports, and improve reporting processes.
9. Documentation : Review and improve documentation quality, guide interns and technicians.
10. Continuous Learning : Stay updated with industry trends, engage in hands-on learning, and attend training sessions.
11. Standby : Participate in weekly standby rotations, serve as secondary contact for client inquiries.
12. Onboarding : Set up client accounts for applications and solutions.
13. Coaching and Mentoring : Support junior team members, delegate tasks, and foster professional growth.
14. Project Participation : Contribute to projects, guide juniors, and support project success.
15. Vulnerability Remediation : Lead software upgrades, security configuration changes, and advise on security measures.
16. Script Creation for Automation : Develop automation scripts, test in sandboxes, and ensure safety for deployment.
17. Vulnerability Research : Conduct research, assess impact, and develop mitigation strategies.

• 2-3 years of experience
• National Certificate or equivalent
• Darktrace Threat Visualizer (Part 1 & 2), Cyber Analyst (Part 1 & 2), Darktrace Email (Part 1 & 2)
• Qualys Vulnerability Management, Patch Management, Web Application Scanning, Cloud Agent, API, Query Language

• CompTIA S+, Malware Analysis, Forensic Certification
• Network Certifications: Network+ and/or CCNA

• Basic Office Platform, advanced network and email security, computer hardware knowledge
• Proficiency in documentation, Microsoft Word and Excel, vulnerability tools, ticketing, RMM tools, patch management, Python (beneficial), SOAR, command and control understanding, SOC tooling

Should you work from home, ensure an uninterrupted internet connection and a 'work-like' environment to maintain performance and productivity.