cyber Security Defence Engineer

Cyber Security Defence Analyst

Please note that we will consider candidates residing in other provinces, i.e Gauteng

This new role is designed to assist the Defence team with Responses to incidents, researching trending malware and defensive actions needed to defend against them and to Analyse current threats detected and find trends to assist the defence team in hardening the tech to protect against these threats.

The candidate will be working with the Cyber Defence team to respond to, investigate malicious activity, triage incidents and assist customers with responding to security incidents.

Any cyber security experience would be an advantage, but the likely candidate will have the following background and experience (in the absence of security experience).
• Systems Engineer with some networking experience
• Strong Analytical Mindset
• Innovative, out of the box thinker
• This role requires communication with clients so will require great written (email) communication skills, often some experience in desktop support aids this.

Requirements / Experience:
 2 – 3+ Years'' troubleshooting experience
 Have the ability to communicate clearly and effectively, particularly via email
 Basic to advanced scripting experience
 Linux experience beneficial
 Passion for Cyber Security

Responsibilities:
• Investigate incidents to determine if they are false positives or if they require in depth investigation.
• Investigate cases to closure. Where required escalate or liaise with team members to assist in determining outcome. Communication to clients is key to ensure that cases can be closed with success.
• Work with defence team to devise new methods of detecting malicious activity.
• Develop, analyse and report on alerts and their effectiveness. Work with defence teams to fine tune policies to make them less likely to create false positives.
• Work with defence and infrastructure teams to optimise response workflow through automation, orchestration or using other innovative methods.

The successful candidate will meet most of these criteria:
• Have troubleshooting skills and experience, both on network and application levels
• Be attentive to details
• Willingness to work in a team environment to improve efficiencies and solve problems as a team
• Have a broad understanding of IT systems in general. Any specialisations will be beneficial, but a shallow but broad understanding is imperative
• Scripting Skills (Python\Powershell)
• Drive to improve on certification status and constant learning
• Self-motivated individual that can drive this new role.

In terms of qualifications, any general IT qualifications will be of benefit. Any security certification or vendor specific certifications, particularly for cyber security products will also be beneficial.

To apply, please send your CV to 

While we would really like to respond to every application, should you not be contacted for this position within 15 working days please consider your application unsuccessful this time around.