Level 1 Cyber Security Analyst

Numata Business IT is actively hiring a Level 1 Cyber Security Analyst to work as part of our 24/7 SOC team. You will be based part time at our HO offices in Johannesburg and part time remotely from 8 to 5 Monday through Friday. Candidates need to be able to demonstrate intuitive problem solving and investigation skills. Security Analysts work collaboratively to monitor/investigate security alerts and events, follow procedures for investigation/escalation, and interact with our clients as needed. Security Analysts should have familiarity with the principals of network and endpoint security, current threats, vulnerabilities, and attack trends. Additionally, analysts should have working knowledge of security principals and frameworks such as Cyber Kill Chain, MITRE ATT&CK, etc.

Responsibilities

The key responsibilities of the role will include, but not be limited to, those outlined below.

• Actively monitor and investigate security alerts to detect malicious activity at our clients.
• Perform Cyber Kill Chain and MITRE ATT&CK analysis on incoming security alerts.
• Follow documented procedures to respond to, and triage, identified malicious activity, through remediation actions or applicable escalation. Provide our clients with clear/concise written feedback within the Numata Business IT service management system.
• Communicate and collaborate with Numata Business IT’s departments and clients through the lifecycle of all escalated security investigations.
• Contribute to general security operations across all clients in the Numata Business IT portfolio, whether through escalations, regular meetings, etc.
• Participate in internal meetings and events, such as team meetings and team building events, to collaborate with your fellow team members and perform knowledge transfer.
• Perform regular training to remain aware of the latest technologies, methodologies, etc.
• Stay up-to-date on the latest vulnerabilities, threats, and attacks around the world.

Skills & Experience

Qualifications and experience

• Matric
• 3-year diploma in IT or equivalent working experience (12 months +)

Technical Skills

• Strong work ethic
• Ability to categorise and prioritise
• Proficient in spoken and written English
• Team player
• Logical thinking and problem solving
• Certifications: Minimum requirement N+, S+ (Pent+, CEH, CySA+ equivalent certification is a plus and would be advantageous)
• Strong network knowledge and understanding of the 7 OSI layers. Experience with Windows OS (not including servers)
• Solid understanding of network and computer security, security testing, software security.
• Able to work with Microsoft Office applications like Word, Excel and Outlook.

Plus:

• Scripting skillset in languages such as Python, Bash, and PowerShell
• Experience with Linux and Unix OS.
• Previous experience on SIEM solutions i.e. AlienVault, Splunk, Rocket Cyber, etc.