Security Analyst - Digital Forensics at The Shoprite Group of Companies

Purpose of the Job    

• The purpose of the Security Analyst (Digital Forensics) is to maintain the security and integrity of the Shoprite Group by investigating, analyzing, and responding to cyber security incidents.  This role works closely with the Cybersecurity team to identify and investigate incidents and provide forensic analysis of digital evidence in security-related incidents. 

Job Objectives    
Investigation and Response

• Investigate cybercrime and fraud incidents within the Shoprite Group. 
• Utilize applicable tools and techniques to triage, investigate and respond to security events as and when required. 
• Investigate and analyze cyber security incidents, identify trends or patterns, and respond appropriately. 
• Collaborate with stakeholders across the organization to ensure timely analysis, response, and resolution of cybercrime incidents. 
• Ensure that cybercrime incidents are tracked, documented, and reported to the appropriate stakeholders. 
• Collaborate with various teams (i.e., Loss Prevention & Fraud) to identify suspicious activities and investigate possible fraud cases related to digital crime. 

Digital Evidence and Reporting

• Review and analyze digital evidence such as log files, system alerts, network traffic, etc., to identify and track digital criminal activity. 
• Collect, document, and preserve digital evidence in accordance with chain of custody procedures. 
• Prepare forensic analysis reports to support further legal proceedings as and when required. 
• Collaborate with various teams (I.e., Legal, Loss Prevention & Fraud, etc.) to ensure that forensic evidence is presented appropriately. 

Best Practices

• Consult with various internal IT teams on effective cyber security measures to minimize risk. 
• Advice and provide guidance on industry best practices and compliance within cyber security best practices, framework and regulations (I.e., NIST, ISO 27000, Mitre Att&ck, etc.) and forensic processes. 
• Keep up to date with latest industry trends and emerging technologies in the cyber security and forensics domain. 

External Relationships

• Manage vendor relationship relating to digital forensic investigation tools and services. 

Qualifications    

• Degree/Diploma in IT, Computer Science, Digital Forensics, Psychology/ Criminology, Cyber Security – (essential) 
• Industry-relevant certification related cyber fraud and forensics - (essential) 

Experience    

• +3 years’ experience in digital forensic investigations and digital evidence collection with solid knowledge of cyber security/digital forensics principles and technologies for data collection, analysis, and preservation – (essential). 
• Experienced in the use of security analysis tools and forensic software – (essential). 
• Experience with analyzing data and identifying patterns and trends for cyber security best practices – (beneficial) 

Knowledge and Skills    

• Knowledge of industry regulations and compliance standards such as GDPR, PCI-DSS, and POPIA (essential) 
• Familiarity with cyber security frameworks such as NIST, ISO 27000 – (essential) 
• Understanding of the OWASP framework and principles - (beneficial) 
• Knowledge of cyber threat intelligence, incident management, vulnerability management, security information and event management (SIEM) systems, and intrusion detection/prevention systems (IDS/IPS) – (beneficial)