Cyber MXDR Consultant
ZAR 550K-675K (estimate) Senior-level Full Time
Tasks
- Benchmark security posture
- Build detection rules aligned to MITRE ATT&CK
- Conduct client security workshops
- Conduct security assessments
- Configure EDR XDR for threat visibility
- Configure SIEM for threat detection
- Contain security incidents
- Coordinate incident escalations
- Create dashboards and automation playbooks
- Deliver security recommendations
- Develop detection use cases
- Investigate security incidents
- Lead client incident briefings
- Lead threat investigations
- Maintain incident documentation
- Map controls to CIS
- Map controls to MITRE ATTACK
- Map controls to NIST
- Mentor security analysts
- Monitor security events
- Participate in on-call escalation rotation
- Perform proactive threat hunting
- Perform quality reviews of incident handling
- Perform root cause analysis
- Reduce false-positives
- Resolve security incidents
- Run posture review sessions
- Support client onboarding
- Triage security alerts
- Tune detection rules
Perks/Benefits
- N/A
Skills/Tech-stack
Active Directory | Amazon Web Services | Automation Playbooks | Azure | Azure Active Directory | Azure Security | Azure Security Center | Bash | CIS | CVSS | Defender XDR | EDR | Endpoint Security | FTP | Firewalls | HTTP | Incident Response | KQL | LAN | LDAP | Linux | MTTC | MTTR | Malware analysis | Microsoft Defender | Microsoft Defender XDR | Microsoft Intune | Microsoft SCCM | Microsoft Sentinel | Mitre Attack | NIST | POP | Python | SIEM | SMTP | Security Center | Security operations | TCP/IP | Threat hunting | Unix | Vulnerability Management | Vulnerability scoring | WAN | Web Services | Windows Workstation | Windows server | XDR
Education
N/A
Related jobs
-
Mid-level Full TimeJohannesburg, South Africa2d ago
-
CSOC Nightshift Team Leader ZAR 400K-420KAntivirus | Bash | Best practices | DHCP | DNSHybrid working | Nightshift allowance | Remote flexibilitySenior-level Full TimeCape Town, South Africa4d ago
-
Technical Lead, Incident Response ZAR 504K-600KCause analysis | Digital forensics | Evidence collection | Forensic analysis | Host SecurityEAP program | Fertility treatment leave | Flexible working hours | Hybrid working | Life insuranceSenior-level Full TimeCape Town5d ago
-
Engagement Lead, Incident Response ZAR 420K-600KCrisis management | Cyber Threat | Cyber Threat Intelligence | Digital forensics | Forensic analysisDisability cover | Employee assistance programme | Fertility treatment leave | Flexible working hours | Headspace accessSenior-level Full TimeCape Town5d ago
-
Developer Security Engineer - Intermediate ZAR 540K-675KAI | AWS Security | AWS Security Hub | Application Security | BashCatered lunch | Flexible hours | Flexible office first environment | Fully stocked kitchen | Generous leaveSenior-level Full TimeCape Town, Western Cape, South Africa5d ago
-
Head, Data Security ZAR 500K-750KAPI Security | Alert triage | Cloud Security | Compliance | Cyber RiskExecutive-level Full TimeJohannesburg, GP, South Africa6d ago
-
Cyber Security | Incident Management | Incident Response | Incident reporting | Risk ManagementFlexible working hours | Health insurance | Paid leave | Professional development opportunities | Retirement benefitsSenior-level Full TimePretoria, South Africa13d ago
-
Mid-level Full TimeSouth Africa - Remote R13d ago
-
Analytical Skills | Cybersecurity | Endpoint protection | Firewall | IDSRecognition programs | Training opportunitiesEntry-level Full TimeSandton, South Africa14d ago
-
System Engineering Technical Specialist Iii ZAR 450K-500KAPI Security | AWS | Authentication | Azure | Cloud SecuritySenior-level Full TimeBellville, Western Cape, ZA20d ago
-
Senior Digital Forensics Incident Response Analyst ZAR 504K-609KCloud Forensics | Cyber Security | Cyber security communications | Digital forensics | Disk analysisHybrid workingSenior-level Full TimeJohannesburg, South Africa21d ago
-
Remote Systems Analyst (L2) ZAR 360K-480KAWS | Autotask PSA | Azure | Datto networking | MacOSCompetitive salary | Comprehensive benefits | Educational reimbursement | Paid time off | Quarterly bonusMid-level Full TimeJohannesburg, Gauteng, South Africa - Remote R21d ago
-
OM Bank - Senior Cyber Threat Analyst ZAR 400K-444KAWS | Azure | Cloud Security | EDR | Forensic InvestigationSenior-level Full TimeJohannesburg, South Africa22d ago