Jobs at Content+Cloud

Description

The VMS Specialist role is part of the Cyber Security Operations Centre (CSOC) and sits within the Cyber Services Department of Content + Cloud.

You will be an active player within the Cyber Security Operations Centre (CSOC) using a variety of VMS, SIEM and security toolsets to meet the requirements of the business and its customers.

This is a hands-on role and requires a both a broad technical knowledge of Cyber Security, as well as specific focused knowledge of VMS tools and processes – particularly Qualys.

Although the focus is on VMS, knowledge and/or experience of modern IT systems and infrastructure is advantageous to assist with the development and continuous improvement of the security platforms within Content + Cloud and its customer’s environments.

Requirements

General responsibilities as CSOC Specialist

• Respond to client requests and liaise with them directly on security issues.

• Lead process improvement opportunities, provide solutions and lead in implementation of changes.

• Finalise draft reports submitted by SOC Analysts using Power BI, including analysis and conclusions, and deliver to clients on a monthly basis.

Specific VMS Responsibilities

• Create and manage VMS internal processes and standards.

• Product Management of Qualys, to involve scheduling and creating scans, liaising with clients to propose and implement mitigations for identified vulnerabilities, and be main POC to the Qualys TAM.

• Design and maintain VMS Key Performance Indicators. Create and deliver dashboards and regular reports to monitor metrics to assess performance against KPIs.

• Maintain the short and long term strategy for effective vulnerability management.

• Give direct support to different projects within the SOC, attending planning meetings and integrating VMS into the wider service.

• Support major incident vulnerability activities as required.

• Work with clients to resolve public facing vulnerabilities in our applications and associated infrastructure.

• Monitor open-source media for new vulnerabilities.

• Future: Technical escalation point, mentoring and training for VMS analysts.

Essential

• Demonstrable passion for cyber security.

• Ability to work independently – identify own tasks in line with the wider SOC strategy and see them through to a successful conclusion.

• Excellent soft skills in the form of team working, problem solving and communication.

• In time, the ability to lead and manage a small team of VMS Analysts (upon further development of the capability).

• Demonstrable technical knowledge, skills and/or experience in VMS tools such as Qualys.

• Working knowledge of core security and infrastructure technologies (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS)

Desired

• One or more of the following industry certifications: CEH, GCIA, GCIH, GSEC, Security+, GCTI

• Experience in secured cloud architectures (Azure, AWS) and engineering solutions

• An understanding of multiple operating systems and their programming interfaces such as UNIX Shell and PowerShell.

• An awareness of cyber security related standards and regulations, for example, NIST, CIS, ISO 27001 and PCI DSS

Benefits

• Permanent position

• Role based out of our Manchester offices with flexibility to work from home

• Working Monday - Friday, 37.5 hours per week

• 25 days’ annual leave, Pension contributions (4%), Life Insurance, Income Protection, Birthday Leave, Wedding Leave, Ride to Work scheme and Private Medical & Dental also available

• Multiple HIIT, general fitness, yoga and meditation classes run virtually each week! (In addition to other wellness events and other social activities...)

go to method of application »

Description

Although this role has been advertised as Content + Cloud, please note that you would be employed by Mirus, one of the group’s companies.

Working on the Mirus Internal Systems and infrastructure to allow the business to work effectively and enabling it to meet customer requirements.

The rest of our business rely on us to provide a platform that they can use efficiently to strive to resolve customer user issues

This role will involve triage, prioritization, and resolution or escalation of all manner of issues and requests, also regular proactive or security review/ audits.

Communication with internal staff to manage expectations will be a key part of this role

Requirements

Ensuring the smooth running of our internal network infrastructure and remote systems ensuring we get maximum benefits from them. Activities may include:

• Managing client expectations through clear and regular communications, and escalating any concerns

• Reactive support for hardware (desktops, Laptops, Servers, Storage, Network)

• Reactive support for Software/Applications (Office, Azure, Office365, Hypervisors, SharePoint, Skype/Teams)

• Management of Line Of Business Applications such as Connectwise Manage, ITGlue

• Taking end to end ownership of problem resolution;

• To action Installs, Moves, Additions, and Changes (IMAC’s)

o Building/imaging new/replacement machines
o Creation/removal of user account
o Deploy software to client machines.
o Manual Patching of Servers & switches

• Assisting with audits and development of existing and new solutions

• Help to develop and maintain documentation internally

• Asset Management

• Take responsibility for own continual professional development, ensuring up to date industry and technical knowledge.

• Support the Other departments within the business.

Benefits

• Job Type: Permanent

• Base salary bracket: R21 000 - R26 000

• Role based out of our Century City offices (currently working remotely)

• 40 - 45 hours per week (Based on UK time zone)

• Retirement Fund & Medical Aid

• Death, Funeral and Disability cover

• 20 days’ annual leave + Birthday Leave & Wedding leave (5 additional days towards your honeymoon)

• Multiple HIIT, general fitness, yoga and meditation classes run virtually each week! (In addition to other wellness events and other social activities)

• Continual professional development plans

Good luck and please bear in mind we receive a very high number of applications; we will endeavour to get back to all applicants, however, we thank you for understanding this is not always possible for unsuccessful applicants.

Content + Cloud is proud to be an equal opportunity workplace that is committed to attracting and retaining the best talent regardless of race, sex, age, national origin, religion, sexual orientation, gender identity, disability or criminal history. Further to this, in accordance with Content + Cloud SA’s Employment Equity plan, preference will be given but not limited to candidates from designated groups. As part of our compliance requirements, we do undertake background checks which, dependent on levels of security required for the role or client assignment, may include a criminal record check. Please do let us know if you would like more details on the level of checks for the specific role you are applying to.

We are happy to provide any reasonable adjustments you may need to ensure you feel you have the best experience across our selection process and future employment.