Cyber Security Analyst
Cyberlogic is a trusted Managed Solutions Provider with offices in South Africa, Mauritius, and the UK. Serving a diverse range of clients, spanning numerous industries, including the international maritime sector, Cyberlogic specialises in IT leadership, cyber security, cloud solutions, and business intelligence. For almost three decades, Cyberlogic has been committed to enabling digital transformation through delivering unquestionable value.
Our delivery focus has enabled us to build up a national and international footprint of loyal clients that rely on us to provide transparent, open guidance to improve their processes, grow their businesses, and secure their data.
Cyberlogic is part of the Hyperclear Technology group, which boasts a diverse technology offering including robotic process automation (RPA), business process management (BPM) data analytics, and decisioning technology.
Through our non-profit, R4C (Ride for a Child), we partner with Bright Start Education Foundation, an organisation empowering deserving learners from underprivileged communities, providing holistic support and guidance throughout their educational careers.
OUR VALUES :
- We challenge ourselves to be more AWESOME
- We are driven to KEEP learning and EVOLVING
- We look beyond symptoms to identify and RESOLVE ROOT CAUSES
- We hold each other accountable through CANDID and constructive FEEDBACK
- We respect and care for each other and know we will only SUCCEED if we work AS A TEAM
- We CARE deeply ABOUT the success of CYBERLOGIC
- We FINISH WHAT WE START
- We always GIVE OUR BEST even if it means putting in the hard yards
- We KEEP THINGS SIMPLE
PURPOSE OF POSITION :
As a Cyber Security Analyst within Cyber Forensics, you will play a pivotal role in advancing the security objectives of both our clients and our organisation. Your expertise will be instrumental in developing, implementing, and maintaining technical security solutions, processes, and controls to safeguard against unauthorised access, use, disclosure, modification, damage, or loss of client systems and data. As a key technical member of our Security team, you will lead efforts to strengthen our clients' defences against cyber threats by developing and maintaining cutting-edge Cyber Security Technology Solutions and Cyber Security Control Frameworks, ensuring their environments are robustly protected.
KEY RESPONSIBILITIES :
Problem Solving and Implementing Security Measures :
- Assess and address complex security issues.
- Lead the implementation of security protocols and tools following established procedures.
- Identify and resolve security gaps through technical analysis of systems and procedures.
- Conduct security audits and evaluate current security measures for improvement.
- Provide support to team leads in developing and maintaining security documentation, procedures, and standards, including CoCs and SOPs.
Escalations and Incident Response :
- Oversee the monitoring of security alerts and events.
- Action escalated tickets from technicians within SLA timeframes and provide support and guidance where needed to facilitate learning opportunities.
- Collaborate with technicians to monitor incidents, offering assistance, training, and guidance to junior team members.
- Identify recurring patterns or trends in security events and conduct investigations to identify the root cause of security incidents.
- Lead incident response procedures to contain, mitigate, and resolve security incidents as required according to SLA timeframes.
- Participate in incident response exercises and simulations to test response effectiveness and improve readiness.
- Communicate escalation and incident outcomes appropriately to stakeholders.
Security Tool Management and Maintenance :
- Implement strategies to minimise unnecessary alerts and noise within security queues.
- Modify security tools to reduce false positives.
- Drive SOC strategy by collaborating on Proof of Concepts for new technologies.
- Present SOC strategies and recommendations to senior leadership.
Security Awareness and Training :
- Support junior team members in planning and executing phishing campaigns quarterly.
- Analyze campaign outcomes and report insights to clients.
- Assist in developing and delivering security awareness programs.
- Train junior team members to improve customer interaction and feedback skills.
Client Communication and Support :
- Respond to Tier 2 client inquiries and incidents within SLA, providing updates and resolutions.
- Manage escalations and communicate with clients via telephonic and email channels.
Security Investigations :
- Oversee investigations into past incidents for insights and improvements.
- Research external trends for internal application.
- Guide juniors in implementing remediation measures.
Auditing and Reporting :
- Manage audits of client environments, guiding data collection and vulnerability identification.
- Prepare incident reports and findings for clients.
- Assist juniors in resolving audit discrepancies.
- Collaborate on improving audit presentation and reporting value.
Documentation :
- Review guides prepared by interns and technicians, sharing feedback with team leaders.
- Guide juniors to improve documentation quality.
- Stay current with industry trends and best practices.
- Engage in hands-on learning and weekly CyberLearning sessions.
Standby :
- Participate in weekly standby rotations.
- Serve as secondary contact for client inquiries and escalations.
Onboarding :
- Set up accounts for client applications and solutions.
Coaching and Mentoring :
- Support and mentor junior team members in investigations and tool use.
- Delegate tasks to analysts and interns.
- Foster professional development of junior staff.
- Support project initiatives and drive project success.
Vulnerability Remediation :
- Lead software upgrade initiatives ensuring efficiency and compliance.
- Oversee security configuration changes aligning with best practices.
- Advise clients on advanced security measures for devices.
Automation Script Creation :
- Lead development of scripts for PowerShell, Bash, or Terminal for device automation.
- Test scripts thoroughly and guide team members on deployment safety.
Vulnerability Research :
- Conduct research on vulnerabilities, assess impact, and develop mitigation strategies.
KEY REQUIREMENTS :
- 2-3 years of experience
- National Certificate or equivalent
- Relevant certifications such as CySa+, CASP+, AZ-500, etc.
- Experience with tools like Qualys, Darktrace, Threat Visualizer, etc.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
