Security Analyst (SOC Tier 2)
Join a team of Security Analyst (SOC Tier 2) at an international IT MSP, where you’ll play a pivotal role in enhancing their Security Operations Center (SOC) and Security Orchestration, Automation, and Response (SOAR) operations. Collaborate with talented teams to build services and solutions that align with security best practices and client assurance requirements. Leverage your expertise in Microsoft Sentinel, Microsoft Defender for Endpoint, and Microsoft Defender for Cloud, along with your KQL skills for threat hunting, to monitor and respond to incidents effectively. Ensure client SLAs are met, maintaining high client satisfaction scores. Mentor and support junior colleagues while engaging in technical workshops and client briefings.
Key Responsibilities:
- Enhance SOC & SOAR operations
- Monitor and respond to incidents with Microsoft Sentinel
- Leverage KQL for threat hunting
- Ensure client SLAs are met
- Mentor and support junior colleagues
Skills & Experience:
- Advanced knowledge and experience with Microsoft Sentinel, Microsoft Defender for Endpoint, and Microsoft Defender for Cloud
- Proficiency in using KQL (Kusto Query Language) for threat hunting and other security-related investigations
- Experience in IT administration, preferably within a Security Operations Center (SOC) environment
- Strong analytical and problem-solving skills
- Excellent communication skills, with the ability to communicate in both technical and non-technical terms
- Self-motivated learner of technologies and methodologies to support best practices
- Ability to analyze complex data and security logs to identify cyber security threats
- Demonstrable ability to troubleshoot and fault find technical issues
- Good working knowledge of multiple SOC tooling including SIEM / SOAR
- Good understanding of network methodologies and OSI Model layers
- Good understanding of network technologies, such as Routers, Switches, Firewalls, ID/IPS, WAF & Proxies
- Knowledge of Backup and Disaster Recovery methodologies
Education & qualifications
- ITIL V3
- CompTIA Security (or equivalent)
- CompTIA Network (or equivalent)
- SC-200, SC-300, SC-400
Deadline for applications is 30/03/2024
For more information, call Nova Buchan on 073 393 9731 or send your CV to Nova@capitaledgerecruitment.co.za
Job Features
Job Category | Information Technology |