Loading...

@

  • Senior Specialist: Cybersecurity Threat Analyst Johannesburg
  • Nexio in Johannesburg, , South Africa
  • jobs
  • 1 week ago

jobs description

Senior Specialist:
Cybersecurity Threat Analyst

As part of the Customer-facing Nexio SOC team, the Cybersecurity Threat Analyst will be responsible for monitoring enterprise networks and systems, deterring, identifying, investigating, and mitigating, any and all threats that are directed against those systems regardless of their classification level or type. The Cybersecurity Threat Analyst is expected to collaborate with leadership to develop metrics based on situational awareness and provide support for incident response, surveillance, vulnerability identification, secure network design, and threat monitoring at an enterprise level that will be reported based on the approved plan and supporting checklists.

The Cybersecurity Threat Analyst must be able to conduct research on emerging threats, maintains proficiency in exploitation tools, and develops threat profiles to rapidly address security incidents alerted primarily by industry-recognized Security tools and technology.
The... incumbent should ideally have advanced security incident handling analysis experience in an established SOC environment and contribute to risk management, lead Red Team/Blue Team exercises, mentor junior analysts, and develop playbooks for incident scenarios.

The Cybersecurity Threat Analyst monitors network traffic, investigates incidents, and collaborates with the SOC team to enhance the organization's security posture.

ROLE PURPOSE

As part of the Customer-facing Nexio SOC team, the Cybersecurity Threat Analyst will be responsible for monitoring enterprise networks and systems, deterring, identifying, investigating, and mitigating, any and all threats that are directed against those systems regardless of their classification level or type. The Cybersecurity Threat Analyst is expected to collaborate with leadership to develop metrics based on situational awareness and provide support for incident response, surveillance, vulnerability identification, secure network design, and threat monitoring at an enterprise level that will be reported based on the approved plan and supporting checklists.

The Cybersecurity Threat Analyst must be able to conduct research on emerging threats, maintains proficiency in exploitation tools, and develops threat profiles to rapidly address security incidents alerted primarily by industry-recognized Security tools and technology.
The incumbent should ideally have advanced security incident handling analysis experience in an established SOC environment and contribute to risk management, lead Red Team/Blue Team exercises, mentor junior analysts, and develop playbooks for incident scenarios.

The Cybersecurity Threat Analyst monitors network traffic, investigates incidents, and collaborates with the SOC team to enhance the organization's security posture.

ROLE REQUIREMENT
• Is familiar with the tactical and long-term vision across the Cyber Security function.
• Adheres to the standard operating procedure and playbooks in the SOC.
• Direct impact on the SOC performance.
• Impacts on team’s runbooks and operational processes in the SOC Service.
• Provides security incident handling and technical guidance to SOC Teams.
• Gives regular, comprehensive, and constructive feedback, and coaching and mentoring to the team.
• Mentor junior analysts to enhance their effectiveness in their roles.
• Proactively hunt for advanced threats and conduct in-depth research and analysis.
• Monitor network traffic, analyze data, and identify suspicious activity.
• Investigate incidents, determine root causes, and provide incident response support.
• Develop secure network designs, protection strategies, and audits for information security infrastructure.
• Research and maintain proficiency in computer exploitation tools, attack techniques, and emerging threat sources.
• Contribute to a comprehensive risk management program, identifying critical processes, threats, and vulnerabilities.
• Lead Red Team/Blue Team exercises and identify gaps in monitoring tools and processes.
• Develop playbooks for various incident scenarios and possess knowledge of automation processes.
• Apply security settings and commercial best practices, including SIEM analysis operations.
• Analyze incidents from various sources, combined with threat intelligence feeds into the SIEM.
• Offer subject matter expertise in developing a common operational picture and maintaining a common intelligence picture.
• Assist in coordinating, validating, and managing all-source collection requirements and intelligence activities.
• Conduct nodal analysis, evaluate threat decision-making processes, and identify intelligence gaps.
• Monitor and report changes in threat activities, tactics, capabilities, and objectives.
• Produce timely and fused cyber operations intelligence products, threat assessments, and briefings.
• Support planning, developmental forums, and working groups with subject matter expertise.
• Provide intelligence analysis and support for exercises, planning activities, and time-sensitive operations.
• Report significant network events,…
Johannesburg South Africa

salary-criteria

Apply - Senior Specialist: Cybersecurity Threat Analyst Johannesburg