Tier 1 or 2 Cyber Security Analyst, City Centre, Cape Town. Company Name: Dataproof Communications.

Job Responsibilities: Job Responsibilities Functional Capabilities. Functional Tasks. Monitor & Detect Events and Alarms. Monitor SIEM dashboards for events and alarms. All events happening on the network will be monitored by the L1 SOC Analyst for any security, operational, or audit-related events. As discussed in client SLAs, the alarms will be attended to with a priority-based method. Triage Events and Alarms. Perform initial event or alarm triage on the Dashboard. L1 SOC Analysts need to decide on the Priority of the Alarm, whether is False Positive/Incident if there is a case already created for it and what actions need to be taken.

SIEM Case Management. Create SIEM case for alarm. Complete the case form, add Logs, add all relevant data, associate cases, etc. SIEM Case Management. Analyse Events and Alarms to qualify. Investigate incidents, playbooks and qualify. SIEM Case Management. Update and closed SIEM cases. Updating and Closing Cases, as described in the Case Management Process Document. Report Incidents. Report incidents to internal or client support. After the cases have been created and it has been decided that the Event is an incident, then the L1 SOC Analyst would need to report it to the respective client as per the procedure document

Escalation of Incidents, Escalation of Incidents to Tier 2 Analyst. When the L1 SOC Analyst is unsure of the Incident, doesn't understand it, or needs further information, they should escalate the matter to the L2 Analysts for further information. They can also ask L2 Analysts for follow-ups on cases reported to clients if need be.

Qualifications: Matric (National Senior Certificate) with Mathematics. Bachelor’s Degree (or higher) preferred. Globally recognized (vendor-neutral) cybersecurity/information security certification. Physical demand. Office Based in the Security Operations Centre. Desired skills. Proficient with Microsoft Office Suite (Word, Excel, PowerPoint). Professional, with the ability to properly handle confidential information. Ability to follow processes and procedures. Ability to review reports and system activity logs to identify critical events, categorize them according to priority, and escalate as appropriate. Innovative, with the ability to research and implement solutions. Hard worker and a strong passion for learning (academically and new skills). English skill: the ability to speak fluently and coherently.

An Important Announcement from (jobscoin.com) for jobs seekers and employers.

Do not pay any type of payment to get the job or hire someone. We are just sharing jobs from multiple sources and we are not responsible for any type of scam.

Send an email to: careers@dataproof.co.za