Cyber Security Threat and Incident Analyst-1

Let's Write Africa's Story Together!

Old Mutual is a firm believer in the African opportunity and our diverse talent reflects this.

Job Description

Role Overview

We are seeking a highly motivated and skilled Cyber Security Threat and Incident Analyst to join our dynamic cyber defence team within a new and innovative digital banking organization. Reporting to the Cyber Defence Lead, this role focuses on protecting the organization’s digital ecosystem by identifying, assessing, and responding to security threats. The role involves working closely with our Managed Detection and Response (MDR) partner to ensure timely threat detection and effective incident management.

Responsibilities and Key Result Areas

Threat Monitoring and Identification

· Collaborate with the MDR partner to monitor and analyse security alerts from SIEM, EDR, AWS and other security tools.

· Validate and triage security incidents to assess the potential impact on the organization.

· Stay updated on the latest threat intelligence and integrate relevant findings into threat detection processes.

Incident Response

· Lead initial response efforts for identified security incidents, including containment, eradication, and recovery.

· Support incident investigations by gathering evidence and maintaining accurate documentation.

· Develop and maintain incident playbooks to enhance response efficiency.

Collaboration and Reporting

· Act as the primary point of contact between the internal team and the MDR partner for threat and incident-related activities.

· Provide regular updates to the Cyber Defence Lead and other stakeholders on incident status and emerging threats.

· Generate detailed incident reports and metrics to support post-incident reviews and ongoing improvement efforts.

Continuous Improvement

· Participate in threat-hunting exercises to proactively identify vulnerabilities and risks.

· Recommend and implement enhancements to security tools and processes based on incident analysis and lessons learned.

· Support the organization’s compliance and regulatory requirements by ensuring adherence to cybersecurity policies and standards.

Requirements

Educational Qualifications

· Bachelor’s degree in Cybersecurity, Information Technology, or a related field.

· Relevant certifications such as CEH, GCIA, GCIH, or equivalent are highly desirable.

Experience

· 3+ years of experience in a cybersecurity role, with a focus on threat analysis and incident response.

· Experience working within environments supported by an MDR partner is an advantage.

· Strong understanding of digital banking security challenges and cloud-based architectures like AWS and Azure is desirable.

Technical Skills

· Proficiency in using SIEM platforms, EDR tools, and threat intelligence solutions.

· Knowledge of security frameworks such as MITRE ATT&CK, NIST CSF, or ISO 27001.

· Familiarity with cloud security best practices, particularly for AWS and Azure.

Personal Attributes

· Strong analytical and problem-solving skills.

· Excellent communication and collaboration abilities.

· Proactive mindset with a passion for staying ahead of emerging threats.

The appointment will be made from the designated group in line with the Employment Equity Plan of Old Mutual South Africa and the specific business unit.

Designs and builds the organisation's cybersecurity systems and infrastructure. Provides specialist knowledge on maintaining a secure cyber security framework. Analyses and monitors the organisation’s cybersecurity measures and responds to actual penetration attempts by malicious hackers.

Responsibilities

Information Security

Lead in detecting and analyzing security incidents, including attacks, breaches, and identified vulnerabilities, and remediate any security gaps in line with the security incident management procedure.

Company Data Protection

Design and implement disaster recovery and contingency plans to protect company data.

Horizon Scanning

Explore and develop a detailed understanding of external developments or emerging issues and evaluate their potential impact on, or usefulness to, the organization.

Data Exploration

Conduct research and select relevant information to enable analysis of key themes and trends using primary data sources and business intelligence tools.

Policies and Procedures Development

Contribute to the drafting of policies, procedures, and related guidelines within an area of expertise to meet defined key principles and ensure compliance with external requirements.

Business Requirements Identification

Collect business requirements using a variety of methods, such as interviews, document analysis, workshops, and workflow analysis, to express the requirements in terms of target user roles and goals.

Faults Diagnosis and Correction

Provide fault isolation and resolution for complex challenges to limit and address issues promptly.

Technical Developments Recommendation

Discuss and recommend technical developments to improve the quality of the website/portal/applications software and supporting infrastructure to better meet users’ needs.

Operational Compliance

Maintain and renew a deep knowledge and understanding of the organization's policies and procedures and of relevant regulatory codes and codes of conduct, and ensure own work adheres to required standards. Or identify, within the team, patterns of noncompliance with the organization's policies and procedures and with relevant regulatory codes and codes of conduct, taking appropriate action to report and resolve these and escalating issues as appropriate.

Database Specifications

Contribute to the approval process for database specifications to ensure all agreed standards and protocols are followed and data integrity is preserved.

Personal Capability Building

Develop own capabilities by participating in assessment and development planning activities as well as formal and informal training and coaching; gain or maintain external professional accreditation, where relevant, to improve performance and fulfill personal potential. Maintain an in-depth understanding of technology, external regulation, and industry best practices through ongoing education, attending conferences, and reading specialist media.

Skills

Adaptive Thinking, Application Development, Computer Literacy, Confidentiality, Data Compilation, Data Compression, Data Controls, Data Modeling, Data Privacy, Data Recovery, Digital Literacy, Gateway Servers, IT Network Security, Probing Questions, Test Case Management

Competencies

Action Oriented

Communicates Effectively

Cultivates Innovation

Ensures Accountability

Manages Complexity

Nimble Learning

Optimizes Work Processes

Persuades

Education

NQF Level 7 - Degree, Advance Diploma or Postgraduate Certificate or equivalent

Closing Date

28 January 2025 , 23:59

The appointment will be made from the designated group in line with the Employment Equity Plan of Old Mutual South Africa and the specific business unit in question.

Old Mutual Limited is pro-vaccination and encourages its workforce to be fully vaccinated against Covid-19.

All prospective employees are required to disclose their vaccination status as part of the recruitment process.

Please refer to the Old Mutual’s Covid-19 vaccination policy for further detail. Kindly note that Old Mutual reserves the right to reinstate the requirement to vaccinate at any point if it is of the view that it is imperative to do so.

The Old Mutual Story!