Job description

We have an exciting new vacancy for a senior Security analyst who will support the IT Operations team in providing cyber-security related expertise in preventing security breaches, identifying and mitigating potential risks and reporting on data collected by existing security tools within the organisation.

Requirements

Key Performance Areas:

Monitoring

• Design and implementation of monitoring strategy, including:
• • Infrastructure monitoring
  • Service monitoring
  • System monitoring
  • Application monitoring
  • Security monitoring
• Monitor system performance and implement performance tuning;
• Monitor current reports of computer viruses and advise System Administrators of imminent threats.
• Monitor use of data files and regulate access to safeguard information in computer files.
• Monitor computer networks for security issues. 

Documentation

• Document network security problems and resolutions as Standard Operating Procedures (SOP) for future reference;
• Document computer security and emergency measures, policies, procedures, and tests.
• Document security breaches and assess the damage they cause. 

Design

• Design, Architect and Deploy network security solutions as required.
• Conduct presentations to internal customers and peers
• Conduct POCs and implementations as required
• Develop company-wide best practices for IT security.
• Provide design and planning input for DCP and DR plans
• Develop plans to safeguard computer files against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs.

Operations

• Firewall coordination
• Driving day to day management with vendors (requests, changes, incidents, problems)
• Process improvement
• Driving implementation of policies and standards in firewall space
• Firewall projects and POC’s
• Assisting in driving and coordinating Security Operations involvement
• Reporting on Services that you are responsible for
• Provide input for group IT Security Audits
• Perform penetration testing
• Coordinate and facilitate periodic Group IT Penetration testing
• Investigate security breaches and other cybersecurity incidents
• Meetings and stand-in for resources in team
• Review violations of computer security procedures and discuss procedures with violators to ensure violations are not repeated
• Fix detected vulnerabilities to maintain a high-security standard
• Be prepared to work overtime from time to time, as required
• Delivery within specified Service Level Agreements (SLA) and Operational Level Agreements (OLA)
• Security Consulting to Business Units outside of IT Operations
• Troubleshooting of all security related issues
• Train users and promote security awareness to ensure system security and to improve server and network efficiency.
• Perform risk assessments and execute tests of data processing system to ensure functioning of data processing activities and security measures.
• Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs.
• Work with infrastructure team to perform tests and uncover network vulnerabilities.
• Help colleagues install security software and understand information security management.
• Research security enhancements and make recommendations to management.

Qualification:

• Grade 12 + Tertiary qualification
• CEH, CISM, CISSP or similar required
• Bachelor’s degree in computer science or related field advantageous
• N+, S+, CCNA, CCNP or similar
• CCSA/CCSE/NSE/CCSP or similar advantageous 

Experience:

• Minimum of five years Networking and/or Security experience
• Minimum of three years Monitoring experience in information security or related field
• Experience with computer network penetration testing and techniques
• Understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts
• Ability to identify and mitigate network vulnerabilities and explain how to avoid them
• Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact

Functional competencies:

• Security knowledge
• Troubleshooting skills
• Information Systems Security Certified
• Knowledge and skills required to install, configure, and troubleshoot networks
• Proven experience with training users to promote security awareness 

Behavioural competencies

• Presenting and communicating information
• Excellent problem-solving skills
• Applying expertise and technology
• Organising and executing
• Adapting and coping with pressure
• Planning and organising
• Applying expertise and technology
• Attention to detail
• Leading and supervising
• Adhering to principles and values

The closing date for applications is 4 June 2019.

Posted on 22 May 16:06