Enable job alerts via email!
Cybersecurity Analyst II at The Foschini Group
The Foschini Group
Cape Town
On-site
ZAR 40,000 - 80,000
Full time
Boost your interview chances
Job summary
An established industry player is seeking a Cybersecurity Analyst II to join their dynamic IT team in Cape Town. This role involves monitoring security alerts, managing logs, and responding to incidents to ensure robust cybersecurity measures. You'll have the opportunity to develop and implement detection rules, automate response tasks, and perform threat hunting using advanced tools. If you're passionate about cybersecurity and eager to make a significant impact in a diverse retail environment, this position offers an exciting challenge with ample growth opportunities.
Qualifications
- 4-6 years of experience in a SOC or cybersecurity role is essential.
- Familiarity with security tools like WAF, Proxy, IDS, and firewalls.
Responsibilities
- Monitor security alerts and manage logs for critical assets.
- Investigate security incidents and respond promptly to threats.
Skills
Education
Tools
Job description
- Permanent Intermediate position
- Cape Town
- Posted 25 Apr 2025 by The Foschini Group
- Continuously monitor security alerts and events from sources like Microsoft Sentinel, Defender for Endpoint, and Defender for Cloud.
- Manage logs: ingestion, use case definition, and alert creation for critical assets.
- Create, implement, and fine-tune detection rules, alerts, and queries in Microsoft Sentinel and Defender; leverage UEBA for anomaly detection.
- Develop and customize automation playbooks to streamline incident response.
- Perform threat hunting using IOCs and threat intelligence.
- Create and maintain risk profiles for users, systems, and applications.
- Identify patterns, trends, and anomalies to detect threats.
- Investigate and analyze security incidents to identify potential threats.
- Respond promptly to incidents, including initial analysis, impact assessment, containment, eradication, and recovery.
- Document incidents thoroughly and follow incident response procedures.
- Manage end-to-end cybersecurity incidents, including stakeholder engagement and reporting.
- Automate repetitive response tasks to improve efficiency and threat intelligence.
- 4-6 years' experience in a SOC or cybersecurity role.
- Preferred experience with Microsoft Defender XDR, EDR, JAMF, Symantec DCS, DNS, network security tools, Mimecast, Symantec DLP, FortiAnalyzer, Sophos, CrowdStrike, Azure Sentinel.
- Experience with Windows, VMware, Cisco, UNIX, Linux.
- Knowledge of security tools like WAF, Proxy, IDS, firewalls, anti-virus, IAM, MFA, DLP.
- Understanding of Cloud Security (SaaS, PaaS, IaaS), Mobile Architecture, Network & Application Security.
- Excellent communication skills in English.
- Strong collaboration and knowledge sharing.
- Effective reporting and presentation skills.
- Ability to work independently under pressure.
- Stress management and continuous learning mindset.
- Action-oriented, courageous, decision-maker, accountable, and tech-savvy.
TFG is a diversified retail portfolio with a focus on inspiring customers and creating remarkable omnichannel experiences. Our IT team is responsible for technological systems and infrastructure, ensuring adaptability, scalability, and risk management. Join us to grow and make an industry impact.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
