Information Technology : systems development, business analysis, architecture, project management, data warehousing, infrastructure, maintenance and production
This role will operate within the Build structure in the Security Operations Centre.
The SOC Engineer is responsible for ensuring that all log / data sources are ingested into the SIEM. The SOC Engineer will also be responsible for the development of Use Cases or input into the development of Use Cases, with the ultimate goal of the development of the relevant rulesets related to the Use Cases within the SIEM.
Another key function would be Rule Development as well as Rule Refinement.. The SOC Engineer will also provide thought leadership in the Build function and ensure that continuous improvements are implemented in the SOC, in terms of process consistency and efficiency.
Key Responsibilities / Accountabilities
Tools and associated competencies
Good understanding operating systems and databases Unix , Windows , Oracle , SQL, DB2
Good understanding of at SIEM technology as well as other detection technologies
Good understanding of at SIEM technology in order to provide guidance to the relevant application teams on the different type of on boarding options
Good understanding and experience on Use Case development
Knowledge of scripting language(s) e.g. Python as well as RegEx
Good understanding of Unix commands
Good understanding of building rules within a SIEM
Good understanding of networks and networking technologies
Strong and proven troubleshooting skills
Basic programming skills
Enable collaborative working, using a consistent approach to delivering projects to the business
Good communication skills both verbal and written
Good networking and collaboration skills
Reporting ability to produce both technical and executive reports as and when required
Solid technical (IT) background
Strong planning and co-ordinating skills.
Good conceptual thinking skills.
Strong analytical and problem solving skills.
Ability to work independently as well as part of a bigger team.
General and IT Security Skills
Broad understanding of information security concepts and best practices
Moderate understanding of attack techniques
Anticipate problems in advance, and proactively seek resolutions
Keeping abreast wit IT security news , attack vectors , and technologies
Guide the business and appropriate IT executives on the selection of appropriate IT controls to combat cyber-security threats leading to fraud or cyber incidents
Keep abreast of technology trends and the implications on Cyber-Security e.g. mobile, cloud and social.
Effective stakeholder management
Build effective working relationships with the line of business IT Security functions, IT
Foster professional interactions and relationships with senior IT and Business executives and managers, such as the various CIOs and BIOs.
Have effective working relationships with Enterprise Technology Architecture to ensure that security roadmaps are aligned
Have effective relationships with the vendor community to be able to co-source the best skills on short notice to complement the team
Identify cyber-security threats
Develop threat models for all critical technologies (application and supporting infrastructure).
Support the Head of IT Security with cyber-security input into the IT Security investment plans.
Develop cyber-security business cases to secure the budget for improvements in the cyber-security maturity.
Conduct research to get a clear view of new and emerging threats facing technology and ensure that these are reflected in the threat models and strategy.
Ensure that the learnings from other cyber-security incidents are adopted by Standard Bank Group, in so far as the IT Security control environment is concerned.
Create the awareness of cyber-security threats within the IT community.
Coordinate efforts with IT Security to ensure a unified approach to cyber-security across Standard Bank Group.
Provide insight and intelligence into effective cyber-security threat management.
Stay close to the business strategy and ensure that IT Security capabilities enable and support this strategy.
Preferred Qualification and Experience
Degree in IT and Computer Sciences
5-7 Years experience in Information Technology
Knowledge / Technical Skills / Expertise
General Administration - The ability to effectively and efficiently manage business related data in an accurate manner, through the application of various technologies
Communication Skills - Ability to express ideas by means of clear and effective writing, in order to support professional communication internally within the Bank and externally.
Staff Administration - Knowledge and understanding of the payroll system, benefits and payment terms of employees and the ability to process these items correctly on the payroll system.
Control Evaluation - The ability to analyse process controls for effectiveness from a design and implementation perspective.
Audit Process - Ability to summarise results of audit reviews into findings and recommendations for utilisation by management.
Audit Process - The ability to assess governance and control frameworks against the appropriate risk appetite and enhance the risk management culture in line with the organisational objectives.