TDR Lead
Cape Town, Western Cape, South Africa
A ZAR 745K-1000K (estimate) Senior-level Full Time
Tasks
- Automate alert filtering and notifications
- Build and maintain threat detection runbooks
- Contain complex attack chains
- Develop new threat detection rules
- Generate and present managed service reports
- Ingest and enrich telemetry for threat detection
- Integrate new log sources
- Investigate and respond to security alerts
- Monitor CloudWatch metrics and adjust AWS configurations
- Monitor OpenSearch metrics and modify index configurations
- Onboard new clients to TDR and ASM platforms
- Tune threat detection rules to reduce false positives
- Use MITRE ATT&CK techniques to detect IOCs and TTPs
- Validate security exposures with penetration testing
Perks/Benefits
- Career growth
- Collaborative fast paced team
- Mentorship
- Security conference attendance
- Training programs
Skills/Tech-stack
AWS CloudWatch | AWS IAM | AWS Lambda | Account takeover | Adversary in the Middle | Amazon EC2 | Amazon Security | Amazon Security Lake | Amazon Web Services | Application Security | Attack surface | Attack surface management | Bash | Business email compromise | Credential Stuffing | DNS | DSL | DevOps | DevSecOps | ES | Endpoint Security | HTTP | Incident Response | Info Stealing Malware | KQL | Linux | MITRE ATT&CK | OpenSearch | Python | QL | Ransomware | SIEM | SQL | Security Lake | Security groups | Server Side | Server Side Request Forgery | TCP/IP | TLS | Threat detection | Web Application | Web Services | Web application security | XSS
Education
N/A
Related jobs
-
Cloud Security & Compliance Engineer ZAR 420K-540KAWS | AWS Security | AWS Security Hub | Azure | Azure SecurityCareer development | Employee discounts | Extra mile awards | Hybrid working | Inclusive teamMid-level Full TimeCape Town, Western Cape, South Africa R5d ago
-
Security Operations Centre Analyst ZAR 420K-444KArtifact analysis | Attack Framework | Chain of Custody | DNS | Defender for EndpointSenior-level Full Time288 Pretoria Avenue, Randburg, 2194, South …5d ago
-
Senior Network Security Engineer ZAR 420K-444KDHCP | DNS | Firewalls | Incident Response | Intrusion PreventionSenior-level Full TimeAbsa 270 Republic Road, South Africa5d ago
-
Platform Security Engineer ZAR 700K-900KAWS | Access Control | Admission Controller | Application Security Testing | Artifact integrityEmployee wellness programs | Flexible paid time off | Hybrid work model | Paid parental leave | Paid volunteer timeSenior-level Full TimeJohannesburg, South Africa7d ago
-
Linux Administrator ZAR 216K-264KAnsible | Artificial Intelligence | Automation frameworks | Azure DevOps | BashHybrid workEntry-level Full TimeCape Town, Draper on Main, South …9d ago
-
Cybersecurity Engineer (Network) ZAR 480K-540KAccess Management | Authentication | Cloud Security | DHCP | DMZMid-level Full TimeDurban, Kwazulu Natal, South Africa9d ago
-
API Security | Access Management | Agile | CIS Benchmarks | Cloud SecuritySenior-level Full TimeJohannesburg, South Africa10d ago
-
Security Engineer ZAR 480K-600KAV EDR Policy Tuning | AV/EDR | Amazon Web Services | Cloud platform | Correlation rulesCoursera subscription | Flexible PTO | Gym reimbursement | Internet allowance | Parental leaveMid-level Full TimeCape Town10d ago
-
Associate Security Engineer ZAR 384K-516KAI Security | AI security tools | AWS | EDR | Email SecurityCoursera subscription | Flexible PTO | Gym reimbursement | Internet allowance | Mental health and wellness benefitsMid-level Full TimeCape Town10d ago
-
Endpoint Systems Engineer ZAR 360K-372KAntivirus | CVSS | ConnectWise Manage | CrowdStrike | DATTO RMMMid-level Full TimeCape Town, Western Cape, South Africa … R15d ago
-
Active Directory | Authentication | Azure | Azure Functions | DNSSenior-level ContractPretoria, South Africa18d ago
-
Senior-level Full TimeCape Town, South Africa18d ago
-
AWS | Apache Spark | Data Governance | Data Lake | Data PrivacyContract employment | Remote workMid-level Full TimeCape Town, WC, South Africa19d ago
-
Network Security Engineer ZAR 660K-920K802.1x | AWS | Access Management | Active Directory | AnsibleFlexible hours | On-call support | Technical mentorshipSenior-level Full TimeJohannesburg, South Africa21d ago
-
Mid-level Full TimeCape Town, Western Cape, South Africa21d ago
-
Amazon Elastic Container Service | Amazon Web Services | Containers | Elastic Container Service | JavaPermanent roleMid-level Full TimeCape Town, Western Cape, South Africa21d ago
-
Active Directory | Backup Management | DHCP | DNS | GrafanaThird level support | TrainingMid-level Full TimeCape Town, WC, South Africa21d ago
-
Active Directory | Apple macOS | BI reporting | Confluence | Deep Freeze24x7 global support roster shift rotation | Mentor opportunitiesMid-level Full TimeCape Town, WC, South Africa21d ago
-
Mid-level Full TimeStellenbosch, WC, South Africa21d ago
-
Mid-level Full TimeStellenbosch, WC, South Africa21d ago
-
Senior-level Full TimeSandton, GP, South Africa21d ago
-
Access Governance | Application Security | Cloud Security | Ethical Hacking | Information securityMid-level Full TimeCape Town, WC, South Africa21d ago
-
Agile | Angular | Build Automation | C# | CI/CDMid-level Full TimeCape Town, WC, South Africa21d ago
-
AWS | Agile | Arista | Cause analysis | Cisco DataContract positionSenior-level Full TimeSandton, GP, South Africa21d ago
-
Mid-level Full TimeSandton, GP, South Africa21d ago