Description:
Job DescriptionDevelop, lead and mature the implementation of a threat hunting programme within the Cyber Security Operations Centre (CSOC) in line with the InfoSec strategy and roadmap. Guide, support and direct threat hypothesis, information assimilation and the designing, scoping and executing of threat hunts, reviewing and guiding the remediation processes. This hands-on role requires deep technical knowledge of security monitoring, security operations, network and systems analysis, threat modelling and threat detection. Responsible for leading and managing a team of technical security Threat Hunters and Cyber Engineers, contributing to the mentoring, coaching and growth of the team.
Qualification:
Matric
Degree in Information Technology
Experience:
Collaborating with Threat Intelligence and Offensive analysts to identify priority cyber threats, designing strategies for complex cyber hunts and the execution thereof. Cyber Hunts should be designed and executed based on prioritized complex hypothesis-based threat hunting, including the design and documentation thereof. Experience in a CSOC environment, including monitoring, detecting, and responding to security incidents, familiarity with SIEM tools such as Microsoft Sentinel would be is advantageous. Experience or exposure to penetration testing and red teaming, with a focus on identifying and exploiting system vulnerabilities, is advantageous. Experience with cloud platforms like Azure and AWS, including cloud security best practices and managing cloud resources, would be beneficial. Seeking an individual with a solid engineering background, with a particular focus on proficiency in the Linux operating system, including system management, security, and troubleshooting. Experience or exposure to incident response, including identifying, analyzing, and mitigating security incidents, would be beneficial. Exposure to automation or scripting with languages like Bash, Python, or PowerShell, to streamline security tasks or integrate tools, is a plus.
Additional Skills:
Offensive Skills (Pen Testing, Red Teaming) Cloud Skills (Azure / AWS) Cyber Engineering Integration / Automation / Scripting (Bash, Python, PowerShell) Incident Response Experience
18 Mar 2025;
from:
gumtree.co.za