Security Operations Centre (SOC) Analyst Level 3
T-Systems
Midrand
8d ago

Main Purpose

  • Monitor and improve any new threats for T-systems clients through its toolsets, operational monitoring, preventative actions and crisis management
  • Job Objectives

  • Threat modelling including both system and business threat modelling
  • Counter intelligence driven security analysis
  • Continuous improvement of security monitoring technologies to cater for new threats
  • Use of Open Source Intelligence toolsets etc. to enhance threat modelling / counter intelligence
  • Lead technical analysis for security incidents
  • Propose new technical configuration policies on relevant technologies
  • Present technical findings to clients, where required
  • Customer presentations on SIEM solution
  • Technical documentation of processes and procedures
  • Detailed reporting for all clients on SIEM solution
  • Special investigations for SIEM findings and reports
  • Sign-off for all Customer reports
  • Full POC deployments, with reports, findings, use-cases and configuration documentation
  • Continuously updating team with new threats, viruses and vulnerabilities using social media, news groups, and any other form of information gathering
  • Ability to work with other teams to assist with investigations and findings
  • Ability to support ACD team after hours with any emergency situations or findings
  • Job requirements

    Experience and Skill Requirements :

  • Grade 12 (essential)
  • Relevant tertiary education with business subjects (e.g computer related field) (desirable)
  • Certification in at least 3 to 5 of the following : Windows and Active Directory, Unix and Linux, Network, Malware, Relational Databases, Open Source Intelligence, Identity and Access Management
  • CISSP
  • IBM QRadar SIEM Solution
  • CCNA Routing & Switching (CCNP Desired)
  • CCSA / CCSE (Check Point certifications)
  • OSCP (Offensive Security Certified Professional)
  • CHFI Computer Hacking Forensic Investigator
  • Knowledge, Skills and Competencie :

  • Threat modelling techniques
  • General security knowledge in at least 5 of the following disciplines : IBM QRadar, Windows and Active Directory, Unix and Linux, Network, Malware, Relational Databases, Open Source Intelligence, Identity and Access Management
  • Detailed technical knowledge in at least 2 of the following disciplines : IBM QRadar, Windows and Active Directory, Unix and Linux, Network, Malware, Relational Databases, Open Source Intelligence, Identity and Access Management
  • Detailed technical knowledge of technology protocols (TCP / IP, SMB, SSH etc) and IBM QRadar SIEM solutions
  • Good knowledge of scripting languages
  • Experience in malware investigation advantageous
  • Experience in SIEM solutions, IBM QRadar specifically (3-5 years’ experience)
  • Experience in server / network / database administration
  • Experience in a Security Operations Centre environment advantageous (3-5 years’ experience)
  • Counter intelligence experience advantageous
  • Advanced communication skills (verbal and written - report writing, email and presentation)
  • Advanced Problem-solving skills
  • Advanced Customer orientation and Presentation skills
  • Advanced Planning and organising skills
  • Advanced analysing skills
  • Ability to work unsupervised and take ownership of projects, tasks, investigations, etc.
  • T-Systems SA (Pty) Ltd

    T-Systems company profile

    With a footprint in more than 20 countries, 46,000 employees, and external revenue of 8.2 billion euros (2015), T-Systems is one of the world’s leading providers of information and communications technology (ICT).

    T-Systems offers a range of integrated solutions for business customers, including the secure operation of legacy systems and classic ICT services, the transformation to cloud-

    based services (including tailored infrastructure, platforms and software) as well as new business models and innovation projects for the business fields of the future, such as data analytics, the Internet of Things, machine-

    to-machine (M2M) communication and Industrial Internet.T-Systems can provide all this thanks to its global reach in fixed-

    network and mobile communications, its highly secure data centers, a comprehensive cloud ecosystem built around standardized platforms and global partnerships, and the ability to offer top levels of security. Your opportunity

    Please note : Preference will be given to Candidates who meet the organisation's BBBEE requirements.

    Apply
    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form