• Login Name       Password       Remember me       LOGIN LOGIN    FORGOT PASSWORD


Security Incident Response Manager

Job Ref
Job Type
Employer Type
Date Added 13 Apr 2020
Expiry Date 11 May 2020
* There have been 8 applications to this job.
* This job has been viewed 4237 times.
Cyanre The Computer Forensic Lab

Gauteng (Pta)

Market related


Role details:
Cyanre The Digital Forensic Lab, one of the leading Digital Forensic and IR firms in South Africa, has exciting new opportunities within our Incidentce Response Team for an Incident Response Manager and an Incident Response Technician.

Role Objectives:

The main role objectives will be to actively investigate IT related incidents reported by clients in order to co-ordinate a rapid and effective cross-sectional response to major incidents.

The functionaries will conduct detailed analysies of data gathered via the service management process to identify underlying issues and develop, advice and / or maintain problem error control processes to minimize or prevent future breaks in service.
- - - - - - - - - - - - - -
Key Responsibilities:

- Manage in-depth investigations into IT related problems to co-ordinate a rapid and effective cross-sectional response to reported incidents
- Co-ordinate the rapid and effective handling of major incidents & lead the investigation of problems through root cause analysis or through proactive trend analysis and monitoring.
- Continuous improvement to ensure effective service: Examine potential areas for service improvement and raise proposals with senior management
- Ensure statutory and legislative knowledge is always current in order to resolve customer complaints, to advise the business on corrective solutions to mitigate risks and to improve the customer experience whilst complying with governance requirements
- Service delivery to ensure customer satisfaction: - Maintain service, quality and desired outputs across the business process by ensuring compliance to tactical policies, procedures and standards.
- Ensure cost efficiency through financial and corporate governance: Contribute to the development and implementation of fit for purpose budgets.
- Continuously build and manage the relationship between the Company and clients
- People: Lead, coach, guide & develop team reporting to the function
- Develop internal training material and knowledge sharing practices for continuous improvement and efficacy.
- Develop and perform proactive technical, procedural and governance audits on existing security programs and infrastructure to assist with compliance and security in todayís evolving landscape.
- Manage, monitor and facilitate End-point protection deployment of IR products and solutions.
- Internal policy development and maintenance.

Required Knowledge, Experience and Skills:

- 5 - 8 years' experience in IT Problem Management
- 3 - 5 years' experience in Incident Management

Experience and/ or proven knowledge of the following will be an advantage:

- Experience in project management
- Management and function of SOC/SIEM technologies
- Experience in a forensic environment
- IDS/IPS, penetration and vulnerability testing
- Firewall and intrusion detection/prevention protocols
- Secure coding practices, ethical hacking and threat modelling
- ISO 27001/27002, ITIL and COBIT frameworks
- PCI, HIPAA, NIST, GLBA and SOX compliance assessments
- Windows, UNIX and Linux operating systems
- Application security and encryption technologies
- C, C++, C#, Java, Python, Ruby or PHP programming languages
- Subnetting, DNS, encryption technologies and standards, VPNs, VLANs, VoIP and other network routing methods
- Network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols, etc.)
- Advanced Persistent Threats (APT), phishing and social engineering, network access controllers (NAC), gateway anti-malware and enhanced authentication


Some of the qualifications listed below:

- a bachelorís degree in Computer Science, Cyber Security or a related field.
- Product specific certifications (Including Fire-eye/ RSA/SPLUNK/ArcSight/Elsastic Search,Oxygin,Cybereason, Crowdstrike, AlienVault, Checkpoint,Palo Alto, Sophos, McAfee, Trustwave, Fortigate, Cisco, Juniper, etc.)
- ITIL certification
- CompTIA Security+
- GSEC: GIAC Security Essentials Certification
- SSCP: Systems Security Certified Practitioner
- CISSP: Certified Information Systems Security Professional
- CISA: Certified Information Systems Auditor
- CISM: Certified Information Security Manager
- GCIH: GIAC Certified Incident Handler
- CEH: Certified Ethical Hacker
- OSCP: Offensive Security Certified Professional
- CASP: Comptia Advanced Security Practitioner
- CySA+: CompTIA Cybersecurity Analyst

''Applications for this role will be prioritised in line with our transformation objectives as per our Employment Equity Plan''

Only successful candidates will be contacted.

Cyanre reserves the right not to fill the post