Specialist, Incident Response, Johannesburg
Specialist, Incident Response, Johannesburg
-
Johannesburg, South Africa -
Posted: less than a week ago
-
Save -
Share
Description
Overview
Location: ZA, GP, Johannesburg, Simmonds Street As a Specialist Incident Response Analyst, you will play a central role in detecting, investigating, and responding to cyber incidents in a non-tiered SOC environment. You will own incidents end-to-end from triage through containment and recovery while applying an adversarial mindset to anticipate attacker behaviour. Alongside technical response, you will contribute to policy improvement, coaching, and industry engagement, ensuring the bank’s response capability matures continuously. This role includes after-hours standby as part of an on-call rotation.Qualifications
A degree Information Technology is required. IT Risk/security certification such as CISM, CISSP or CISA, GCIA, GCIH, OSCP is required. AWS/Azure Cloud Certifications. Experience Required: 5-7 years experience in IT Security, preferably in a Financial Institution, with noted experience in developing threat models, threat analysis, cyber and incident management, offensive security, high level static and dynamic malware analysis.5-7 years experience in strong IT understanding, gaining insight into digital and platform operating models and cyber security trends and solutions. Strong experience in incident management, threat modelling, malware analysis, and offensive security techniques. Broad IT systems knowledge and awareness of digital platform operating models.Key Responsibilities
Detect&Investigate: Analyse alerts from SIEM, EDR, and threat intelligence sources; distinguish true vs false positives. Contain&Remediate: Lead active incidents through containment, eradication, and recovery actions. Threat Hunting: Proactively search for adversary activity using attacker TTPs and threat intel. Malware&Phishing Triage: Perform static/dynamic malware analysis and investigate phishing campaigns. Offensive Security Awareness: Apply penetration testing/red team knowledge to strengthen detection and response. Forensic Support: Collect and analyse logs, endpoint, and network artifacts for root cause analysis.On-Call Duties: Provide after-hours escalation support on a rotational basis. Documentation&Reporting: Produce incident reports, lessons learned, and contribute to playbook improvements.
#J-18808-Ljbffr
Location: ZA, GP, Johannesburg, Simmonds Street As a Specialist Incident Response Analyst, you will play a central role in detecting, investigating, and responding to cyber incidents in a non-tiered SOC environment. You will own incidents end-to-end from triage through containment and recovery while applying an adversarial mindset to anticipate attacker behaviour. Alongside technical response, you will contribute to policy improvement, coaching, and industry engagement, ensuring the bank’s response capability matures continuously. This role includes after-hours standby as part of an on-call rotation.Qualifications
A degree Information Technology is required. IT Risk/security certification such as CISM, CISSP or CISA, GCIA, GCIH, OSCP is required. AWS/Azure Cloud Certifications. Experience Required: 5-7 years experience in IT Security, preferably in a Financial Institution, with noted experience in developing threat models, threat analysis, cyber and incident management, offensive security, high level static and dynamic malware analysis.5-7 years experience in strong IT understanding, gaining insight into digital and platform operating models and cyber security trends and solutions. Strong experience in incident management, threat modelling, malware analysis, and offensive security techniques. Broad IT systems knowledge and awareness of digital platform operating models.Key Responsibilities
Detect&Investigate: Analyse alerts from SIEM, EDR, and threat intelligence sources; distinguish true vs false positives. Contain&Remediate: Lead active incidents through containment, eradication, and recovery actions. Threat Hunting: Proactively search for adversary activity using attacker TTPs and threat intel. Malware&Phishing Triage: Perform static/dynamic malware analysis and investigate phishing campaigns. Offensive Security Awareness: Apply penetration testing/red team knowledge to strengthen detection and response. Forensic Support: Collect and analyse logs, endpoint, and network artifacts for root cause analysis.On-Call Duties: Provide after-hours escalation support on a rotational basis. Documentation&Reporting: Produce incident reports, lessons learned, and contribute to playbook improvements.
#J-18808-Ljbffr
Highlights
-
Company nameStandard Bank of South Africa Limited -
Job positionSpecialist, Incident Response
-
Flag -
Block ad
Safety Tips
Be careful with commission-based ’work-from-home’ positions that offer an unrealistically high income.
Related searches
More info about this ad
Specialist, Incident Response has been posted in the Johannesburg Other Jobs category on Locanto.
If you’re looking for something similar, check out Senior Credit Manager, Johannesburg, Head of New Business | Johannesburg | Executive Permanent Role, Johannesburg or Technician in Johannesburg, also posted in Other Jobs. In total, we have 704 ads in Other Jobs in Johannesburg on Locanto classifieds.
Interested in more? Widen your search to view ads in nearby areas of Johannesburg. This includes Other Jobs in Germiston, Edenvale and Sandton. There are more ads within a 15 km radius for this category. If you want to view those ads, click here.
