Junior Security Operations Center Analyst (JHB) at BETSoftware

You Bring:

• Matric or equivalent certification required.
• Minimum of one (1) year in a Security (SOC) role and three (3) years preferred in Support.
• Experience and Knowledge with SIEM, IDS/IPS, Firewalls, Web Application Firewalls, Data Loss Prevention (DLP), and Security Event Correlation.
• Excellent analytical and problem-solving skills.
• Experience with technical writing.
• Possess an understanding of security standards and risk management.
• Have excellent written and verbal communication skills.
• Possess the ability to adjust and adapt to changing priorities in a dynamic environment.
• Be able to multi-task and be pro-active in addressing issues and requests.
• Possess technical acumen and the ability to understand and interpret technical specifications.
• Security + beneficial but not required.

What You’ll Do:

• This position is shift work based with a rotational schedule. This is 365 days, 7 days per week, and 24 hours a day in the department.
• Monitoring and analysis of cyber security events.
• Monitor network traffic to detect potential threats and then escalate where necessary.
• Analysing security breaches to identify the root cause and escalate to the Intermediate Security Analyst for resolutions.
• Services monitored will include, but are not limited to SIEM, IDS/IPS, Firewall, Web Application Firewalls, Data Loss Prevention (DLP), and Databases.
• Security Event Correlation and Reporting to appropriate Intermediate Security Analyst or Incident Response staff or relevant sources to determine increased risk to the business.
• Research and stay aware of current IT security trends and news.
• Recognise potential; successful; and unsuccessful intrusion attempts and compromises through reviews and analyses of relevant event detail and summary information Help colleagues install security software and understand information security management.
• Monitoring that all Security tools are working properly.
• Research security enhancements and make recommendations to management.
• Update inaccurate and add missing knowledge base documents where required.
• Handles escalations effectively, ensuring a minimal number of duplicate escalations are created.
• When acknowledging alerts, ensures alerts are closed at the end of every shift.
• Monitors alerts and incidents diligently by actioning them in a timely manner.
• Investigate alerts using the systems provided and add investigation details to escalated incident descriptions.
• Report back on identified trends that may be forming and/or proactive action taken to reduce spam.    
• Use advanced analytic tools to determine emerging threat patterns and vulnerabilities.