TDR Lead
Cape Town, Western Cape, South Africa
A ZAR 745K-1000K (estimate) Senior-level Full Time
Tasks
- Automate alert filtering and notifications
- Build and maintain threat detection runbooks
- Contain complex attack chains
- Develop new threat detection rules
- Generate and present managed service reports
- Ingest and enrich telemetry for threat detection
- Integrate new log sources
- Investigate and respond to security alerts
- Monitor CloudWatch metrics and adjust AWS configurations
- Monitor OpenSearch metrics and modify index configurations
- Onboard new clients to TDR and ASM platforms
- Tune threat detection rules to reduce false positives
- Use MITRE ATT&CK techniques to detect IOCs and TTPs
- Validate security exposures with penetration testing
Perks/Benefits
- Career growth
- Collaborative fast paced team
- Mentorship
- Security conference attendance
- Training programs
Skills/Tech-stack
AWS CloudWatch | AWS IAM | AWS Lambda | Account takeover | Adversary in the Middle | Amazon EC2 | Amazon Security | Amazon Security Lake | Amazon Web Services | Application Security | Attack surface | Attack surface management | Bash | Business email compromise | Credential Stuffing | DNS | DSL | DevOps | DevSecOps | ES | Endpoint Security | HTTP | Incident Response | Info Stealing Malware | KQL | Linux | MITRE ATT&CK | OpenSearch | Python | QL | Ransomware | SIEM | SQL | Security Lake | Security groups | Server Side | Server Side Request Forgery | TCP/IP | TLS | Threat detection | Web Application | Web Services | Web application security | XSS
Education
N/A
Related jobs
-
Senior-level Full TimeWesbank Building, 1 Enterprise Road, Fairland, …16h ago
-
Test Analyst-012-001 ZAR 552K-792KAPI Integration | Agile | Application Integration | Automation Scripting | Azure DevOpsMid-level Full TimePlattekloof, Western Cape, South Africa1d ago
-
Automation Engineer(Cyber security) ZAR 480K-600KAPI Integration | AWS | Automation orchestration | Azure | Cloud platformCareer progression | Collaborative culture | Learning and developmentMid-level Full TimeCape Town, Western Cape, South Africa … R1d ago
-
DevSecOps Engineer ZAR 800K-1000KAWS | ArgoCD | Atlantis | Bash | DNSFlexible hours | Growth opportunities | Remote workSenior-level Full TimeFully Remote, South Africa R2d ago
-
Systems & Automation Engineer ZAR 396K-480KActive Directory | Ansible | Azure | Bash | Configuration ManagementMid-level Full TimeCape Town, South Africa2d ago
-
AI Assisted Security Tools | AI-assisted Security | Amazon Web Services | Cloud Security | Incident ManagementEntry-level Full TimeJohannesburg, GP, South Africa3d ago
-
Senior DevOps Developer (Java & Python) ZAR 800K-1170KAWS | Analytics | AngularJS | Ansible | AzureCareer progression | Continuous improvement culture | Learning and development | Occasional travel | Remote workSenior-level Full TimeCape Town, Western Cape, South Africa … R9d ago
-
Senior Presales, Systems Engineer ZAR 498K-504KAWS | Access Control | Azure | BGP | CASBHealth and wellbeing benefits | Inclusion and flexibility | Professional development programs | Remote workSenior-level Full TimeSandton, Gauteng, South Africa10d ago
-
Senior Presales, Systems Engineer ZAR 498K-504KAWS | Access Control | Azure | BGP | CASBCareer Development Programs | Health and wellbeing benefits | Inclusion and Diversity support | Remote work flexibilitySenior-level Full TimeSandton, Gauteng, South Africa10d ago
-
Senior Presales, Systems Engineer ZAR 498K-504KAWS | Access Control | Azure | BGP | CASBFlexible work-life balance | Health and wellbeing benefits | Professional development programs | Remote workSenior-level Full TimeSandton, Gauteng, South Africa10d ago
-
Security Operations Analyst ZAR 400K-480KApplication Firewall | Application Security | Bash | Cloud Identity | CrowdStrikeDisability insurance | Employee assistance program | Gap Cover | Gym reimbursement | Life insuranceMid-level Full TimeCape Town11d ago
-
Access Management | Audit trails | COBIT | Data Protection | EDRMid-level Full TimeCape Town, Western Cape, South Africa14d ago
-
Software Eningeer III ZAR 745K-900K.NET | .Net Core | Agile | Automation | CI/CDCommunities of Practice | Mentoring | Training workshopsSenior-level Full TimeBrackenfell, Cape Town, ZA14d ago
-
SOC Analyst ZAR 360K-480KContent Filtering | Detection and Response | EDR | Endpoint Detection and Response | Endpoint detectionMid-level Full TimeSouth Africa - Remote R16d ago
-
Senior Full Stack Developer ZAR 745K-1000KAWS | AngularJS | Ansible | Automation | AzureCareer progression | Flexible office attendance | Learning and developmentSenior-level Full TimeRemote - Cape Town, Western Cape, … R17d ago
-
AWS | Automation | Automation Scripting | Bash | Cloud platformGroup Life Cover | Hybrid work | Medical aid allowanceSenior-level Full TimeCape Town; Cape Town CBD17d ago
-
Security Engineer ZAR 900K-1000KAWS | AWS EKS | AWS GuardDuty | AWS Security | AWS Security HubAutonomy and empowerment | Collaborative environment | Encouraging team environment | Flexible work practices | Learning SupportMid-level Full TimeKenya; Portugal; South Africa R17d ago
-
Access Control | Application Firewall | Azure Sentinel | Email Security | Endpoint protectionEligible for National Security ClearanceMid-level Full TimeCape Town, Western Cape, South Africa21d ago
-
Cloud Security & Compliance Engineer ZAR 420K-540KAWS | AWS Security | AWS Security Hub | Azure | Azure SecurityCareer development | Employee discounts | Extra mile awards | Hybrid working | Inclusive teamMid-level Full TimeCape Town, Western Cape, South Africa R25d ago
-
Platform Security Engineer ZAR 700K-900KAWS | Access Control | Admission Controller | Application Security Testing | Artifact integrityEmployee wellness programs | Flexible paid time off | Hybrid work model | Paid parental leave | Paid volunteer timeSenior-level Full TimeJohannesburg, South Africa28d ago
-
Linux Administrator ZAR 216K-264KAnsible | Artificial Intelligence | Automation frameworks | Azure DevOps | BashHybrid workEntry-level Full TimeCape Town, Draper on Main, South …29d ago
-
Cybersecurity Engineer (Network) ZAR 480K-540KAccess Management | Authentication | Cloud Security | DHCP | DMZMid-level Full TimeDurban, Kwazulu Natal, South Africa30d ago
-
API Security | Access Management | Agile | CIS Benchmarks | Cloud SecuritySenior-level Full TimeJohannesburg, South Africa1mo ago
-
Security Engineer ZAR 480K-600KAV EDR Policy Tuning | AV/EDR | Amazon Web Services | Cloud platform | Correlation rulesCoursera subscription | Flexible PTO | Gym reimbursement | Internet allowance | Parental leaveMid-level Full TimeCape Town1mo ago
-
Associate Security Engineer ZAR 384K-516KAI Security | AI security tools | AWS | EDR | Email SecurityCoursera subscription | Flexible PTO | Gym reimbursement | Internet allowance | Mental health and wellness benefitsMid-level Full TimeCape Town1mo ago