312 Incident Response jobs in South Africa

Specialist, Incident Response

Johannesburg, Gauteng Standard Bank of South Africa Limited

Posted 23 days ago

Job Viewed

Tap Again To Close

Job Description

Overview

Location: ZA, GP, Johannesburg, Simmonds Street

As a Specialist Incident Response Analyst, you will play a central role in detecting, investigating, and responding to cyber incidents in a non-tiered SOC environment. You will own incidents end-to-end from triage through containment and recovery while applying an adversarial mindset to anticipate attacker behaviour. Alongside technical response, you will contribute to policy improvement, coaching, and industry engagement, ensuring the bank’s response capability matures continuously. This role includes after-hours standby as part of an on-call rotation.

Qualifications
  • A degree Information Technology is required.
  • IT Risk/security certification such as CISM, CISSP or CISA, GCIA, GCIH, OSCP is required.
  • AWS/Azure Cloud Certifications.

Experience Required:

  • 5-7 years experience in IT Security, preferably in a Financial Institution, with noted experience in developing threat models, threat analysis, cyber and incident management, offensive security, high level static and dynamic malware analysis.
  • 5-7 years experience in strong IT understanding, gaining insight into digital and platform operating models and cyber security trends and solutions.
  • Strong experience in incident management, threat modelling, malware analysis, and offensive security techniques.
  • Broad IT systems knowledge and awareness of digital platform operating models.
Key Responsibilities
  • Detect & Investigate: Analyse alerts from SIEM, EDR, and threat intelligence sources; distinguish true vs false positives.
  • Contain & Remediate: Lead active incidents through containment, eradication, and recovery actions.
  • Threat Hunting: Proactively search for adversary activity using attacker TTPs and threat intel.
  • Malware & Phishing Triage: Perform static/dynamic malware analysis and investigate phishing campaigns.
  • Offensive Security Awareness: Apply penetration testing/red team knowledge to strengthen detection and response.
  • Forensic Support: Collect and analyse logs, endpoint, and network artifacts for root cause analysis.
  • On-Call Duties: Provide after-hours escalation support on a rotational basis.
  • Documentation & Reporting: Produce incident reports, lessons learned, and contribute to playbook improvements.

#J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.

Specialist, Incident Response

R900000 - R1200000 Y Standard Bank

Posted today

Job Viewed

Tap Again To Close

Job Description

Job Overview

Business Segment: Group Functions

Location: ZA, GP, Johannesburg, Simmonds Street

Job Type: Full-time

Job Ref ID: A-0003

Date Posted: 8/22/2025

Job Description

As a Specialist Incident Response Analyst, you will play a central role in detecting, investigating, and responding to cyber incidents in a non-tiered SOC environment. You will own incidents end-to-end from triage through containment and recovery while applying an adversarial mindset to anticipate attacker behaviour. Alongside technical response, you will contribute to policy improvement, coaching, and industry engagement, ensuring the bank's response capability matures continuously. This role includes after-hours standby as part of an on-call rotation.

Qualifications

A degree Information Technology is required.

IT Risk/security certification such as CISM, CISSP or CISA, GCIA, GCIH, OSCP is required.

AWS/Azure Cloud Certifications.

Experience Required:

5-7 years experience in IT Security, preferably in a Financial Institution, with noted experience in developing threat models, threat analysis, cyber and incident management, offensive security, high level static and dynamic malware analysis.

5-7 years experience in strong IT understanding, gaining insight into digital and platform operating models and cyber security trends and solutions.

Strong experience in incident management, threat modelling, malware analysis, and offensive security techniques.

Broad IT systems knowledge and awareness of digital platform operating

models.

Additional Information

Key Responsibilities:

Detect & Investigate: Analyse alerts from SIEM, EDR, and threat intelligence sources; distinguish true vs false positives.

Contain & Remediate: Lead active incidents through containment, eradication, and recovery actions.

Threat Hunting: Proactively search for adversary activity using attacker TTPs and threat intel.

Malware & Phishing Triage: Perform static/dynamic malware analysis and investigate phishing campaigns.

Offensive Security Awareness: Apply penetration testing/red team knowledge to strengthen detection and response.

Forensic Support: Collect and analyse logs, endpoint, and network artifacts for root cause analysis.

On-Call Duties: Provide after-hours escalation support on a rotational basis.

Documentation & Reporting: Produce incident reports, lessons learned, and contribute to playbook improvements.

Behavioural Competencies:

Articulating Information

Checking Things

Directing People

Documenting Facts

Embracing Change

Examining Information

Interpreting Data

Making Decisions

Producing Output

Providing Insights

Taking Action

Team Working

Technical Competencies:

Data Analysis

Diagramming and Modelling

Documenting

Information Security

IT Knowledge

IT Systems

Research & Information Gathering

Please note: All our recruitment processes comply with the applicable local laws and regulations. We will never ask for money or any from of payment as part of our recruitment process. If you experience this, please contact our Fraud line on or

This advertiser has chosen not to accept applicants from your region.

Specialist, incident response

Johannesburg, Gauteng Standard Bank Of South Africa Limited

Posted today

Job Viewed

Tap Again To Close

Job Description

permanent
Overview Location: ZA, GP, Johannesburg, Simmonds Street As a Specialist Incident Response Analyst, you will play a central role in detecting, investigating, and responding to cyber incidents in a non-tiered SOC environment. You will own incidents end-to-end from triage through containment and recovery while applying an adversarial mindset to anticipate attacker behaviour. Alongside technical response, you will contribute to policy improvement, coaching, and industry engagement, ensuring the
This advertiser has chosen not to accept applicants from your region.

Senior Information Security Incident Response Analyst

Johannesburg, Gauteng NTT

Posted 8 days ago

Job Viewed

Tap Again To Close

Job Description

Overview

Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Your day at NTT DATA

The Senior Information Security Incident Response Analyst is an advanced subject matter expert, responsible for detecting and monitoring escalated threats and suspicious activity affecting the organization's technology domain (servers, networks, appliances and all infrastructure supporting production applications for the enterprise, as well as development environments).

This role acts as the technical second responder for the team and supports the work of technical staff from various business areas, as well as third-party technical experts.

The Senior Information Security Incident Response uses their technical competencies of systems and automated mechanisms to detect unauthorized activity on company information assets.

Key responsibilities
  • Manages the prevention and resolution of security breaches and ensure incident and problem management processes are initiated.
  • Performs access management activities according to the policy.
  • Implements and discusses security service audit schedules, review access authorization and perform the required access controls and testing to identify security weaknesses.
  • Interacts with a global team of Cyber Security Analysts and specialists.
  • Manages 2nd level triaging of security alerts, events, and notifications.
  • Manages notifications of internal and/or external teams according to agreed alert priority levels, and escalation trees.
  • Communicates status of response, resolution and final root cause analysis to the appropriate stakeholders.
  • Follows and updates established and/or ad-hoc processes and work instructions and create procedures where deficiencies are identified.
  • Logs, manages and coordinates service requests through to resolution including the identification, isolation, resolution and escalation of IT infrastructure faults.
  • Maintains an understanding of current and emerging threats, vulnerabilities, and trends.
To thrive in this role, you need to have
  • Advanced understanding of End Point Protection Software.
  • Advanced understanding of Enterprise Detection and Response software.
  • Advanced knowledge of technological advances within the information security arena.
  • Advanced understanding of inter-relationships in an overall system or process.
  • Advanced knowledge of information security management and policies.
  • Advanced understanding risk management principles and frameworks is crucial for prioritizing and addressing security incidents
  • Advanced understanding of the organization's business operations, goals, and objectives enables the analyst to align incident response efforts with the broader business strategy.
  • Ability to effectively communicate technical information to both technical and non-technical stakeholders, and end-users, as well as working with cross-functional teams during incident response.
  • Ability to think critically, analyze information, and solve medium to complex problems.
Academic qualifications and certifications
  • Bachelor’s degree or equivalent in Information Technology, Computer Science or related preferred.
  • SANS GIAC Security Essentials (GSEC) or equivalent preferred.
  • SANS GIAC Certified Intrusion Analyst (GCIA) or equivalent preferred.
  • SANS GIAC Certified Incident Handler (GCIH) or equivalent preferred
Required experience
  • Advanced experience in a Technology Information Security Industry.
  • Advanced experience or knowledge of SIEM and IPS technologies.
  • Advanced experience with Wireshark or tcpdump to identify normal and abnormal/malicious traffic patterns and behaviors.

Workplace type: Hybrid Working

About NTT DATA

NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer

NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Third parties fraudulently posing as NTT DATA recruiters

NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters—whether in writing or by phone—in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an @nttdata.com email address. If you suspect any fraudulent activity, please contact us.

#J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.

Senior Information Security Incident Response Analyst

Western Cape, Western Cape NTT DATA, Inc.

Posted 16 days ago

Job Viewed

Tap Again To Close

Job Description

workfromhome

Senior Information Security Incident Response Analyst

Join to apply for the Senior Information Security Incident Response Analyst role at NTT DATA, Inc.

Make an impact with NTT DATA Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Your day at NTT DATA

The Senior Information Security Incident Response Analyst is an advanced subject matter expert, responsible for detecting and monitoring escalated threats and suspicious activity affecting the organization's technology domain (servers, networks, appliances and all infrastructure supporting production applications for the enterprise, as well as development environments).

This role acts as the technical second responder for the team and supports the work of technical staff from various business areas, as well as third-party technical experts.

The Senior Information Security Incident Response uses their technical competencies of systems and automated mechanisms to detect unauthorized activity on company information assets.

Key responsibilities
  • Manages the prevention and resolution of security breaches and ensure incident and problem management processes are initiated.
  • Performs access management activities according to the policy.
  • Implements and discusses security service audit schedules, review access authorization and perform the required access controls and testing to identify security weaknesses.
  • Interacts with a global team of Cyber Security Analysts and specialists.
  • Manages 2nd level triaging of security alerts, events, and notifications.
  • Manages notifications of internal and/or external teams according to agreed alert priority levels, and escalation trees.
  • Communicates status of response, resolution and final root cause analysis to the appropriate stakeholders.
  • Follows and updates established and/or ad-hoc processes and work instructions and create procedures where deficiencies are identified.
  • Logs, manages and coordinates service requests through to resolution including the identification, isolation, resolution and escalation of IT infrastructure faults.
  • Maintains an understanding of current and emerging threats, vulnerabilities, and trends.
To thrive in this role, you need to have
  • Advanced understanding of End Point Protection Software.
  • Advanced understanding of Enterprise Detection and Response software.
  • Advanced knowledge of technological advances within the information security arena.
  • Advanced understanding of inter-relationships in an overall system or process.
  • Advanced knowledge of information security management and policies.
  • Advanced understanding risk management principles and frameworks is crucial for prioritizing and addressing security incidents
  • Advanced understanding of the organization's business operations, goals, and objectives enables the analyst to align incident response efforts with the broader business strategy.
  • Ability to effectively communicate technical information to both technical and non-technical stakeholders, and end-users, as well as working with cross-functional teams during incident response.
  • Ability to think critically, analyze information, and solve medium to complex problems.
Academic qualifications and certifications
  • Bachelor’s degree or equivalent in Information Technology, Computer Science or related preferred.
  • SANS GIAC Security Essentials (GSEC) or equivalent preferred.
  • SANS GIAC Certified Intrusion Analyst (GCIA) or equivalent preferred.
  • SANS GIAC Certified Incident Handler (GCIH) or equivalent preferred
Required experience
  • Advanced experience in a Technology Information Security Industry.
  • Advanced experience or knowledge of SIEM and IPS technologies.
  • Advanced experience with Wireshark or tcpdump to identify normal and abnormal/malicious traffic patterns and behaviors.
Workplace type
  • Hybrid Working
About NTT DATA

NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer

NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Third parties fraudulently posing as NTT DATA recruiters. NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters—whether in writing or by phone—in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an email address. If you suspect any fraudulent activity, please contact us.

Seniority level
  • Mid-Senior level
Employment type
  • Full-time
Job function
  • Information Technology
  • Industries IT Services and IT Consulting

#J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.

Senior Information Security Incident Response Analyst

Gauteng, Gauteng NTT DATA, Inc.

Posted 19 days ago

Job Viewed

Tap Again To Close

Job Description

workfromhome

Senior Information Security Incident Response Analyst

Get AI-powered advice on this job and more exclusive features.

Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Your day at NTT DATA
The Senior Information Security Incident Response Analyst is an advanced subject matter expert, responsible for detecting and monitoring escalated threats and suspicious activity affecting the organization's technology domain (servers, networks, appliances and all infrastructure supporting production applications for the enterprise, as well as development environments).

This role acts as the technical second responder for the team and supports the work of technical staff from various business areas, as well as third-party technical experts.

The Senior Information Security Incident Response uses their technical competencies of systems and automated mechanisms to detect unauthorized activity on company information assets.

Key responsibilities
  • Manages the prevention and resolution of security breaches and ensure incident and problem management processes are initiated.
  • Performs access management activities according to the policy.
  • Implements and discusses security service audit schedules, review access authorization and perform the required access controls and testing to identify security weaknesses.
  • Interacts with a global team of Cyber Security Analysts and specialists.
  • Manages 2nd level triaging of security alerts, events, and notifications.
  • Manages notifications of internal and/or external teams according to agreed alert priority levels, and escalation trees.
  • Communicates status of response, resolution and final root cause analysis to the appropriate stakeholders.
  • Follows and updates established and/or ad-hoc processes and work instructions and create procedures where deficiencies are identified.
  • Logs, manages and coordinates service requests through to resolution including the identification, isolation, resolution and escalation of IT infrastructure faults.
  • Maintains an understanding of current and emerging threats, vulnerabilities, and trends.
To thrive in this role, you need to have
  • Advanced understanding of End Point Protection Software.
  • Advanced understanding of Enterprise Detection and Response software.
  • Advanced knowledge of technological advances within the information security arena.
  • Advanced understanding of inter-relationships in an overall system or process.
  • Advanced knowledge of information security management and policies.
  • Advanced understanding risk management principles and frameworks is crucial for prioritizing and addressing security incidents.
  • Advanced understanding of the organization's business operations, goals, and objectives enables the analyst to align incident response efforts with the broader business strategy.
  • Ability to effectively communicate technical information to both technical and non-technical stakeholders, and end-users, as well as working with cross-functional teams during incident response.
  • Ability to think critically, analyze information, and solve medium to complex problems.
Academic qualifications and certifications
  • Bachelor’s degree or equivalent in Information Technology, Computer Science or related preferred.
  • SANS GIAC Security Essentials (GSEC) or equivalent preferred.
  • SANS GIAC Certified Intrusion Analyst (GCIA) or equivalent preferred.
  • SANS GIAC Certified Incident Handler (GCIH) or equivalent preferred.
Required experience
  • Advanced experience in a Technology Information Security Industry.
  • Advanced experience or knowledge of SIEM and IPS technologies.
  • Advanced experience with Wireshark or tcpdump to identify normal and abnormal/malicious traffic patterns and behaviors.
Workplace type

Hybrid Working

About NTT DATA

NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer

NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

All email communications from an NTT DATA recruiter will come from an @nttdata.com email address. If you suspect any fraudulent activity, please contact us.

#J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.

Senior Information Security Incident Response Analyst

Cape Town, Western Cape NTT

Posted 22 days ago

Job Viewed

Tap Again To Close

Job Description

Overview

Make an impact with NTT DATA Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Your day at NTT DATA The Senior Information Security Incident Response Analyst is an advanced subject matter expert, responsible for detecting and monitoring escalated threats and suspicious activity affecting the organization's technology domain (servers, networks, appliances and all infrastructure supporting production applications for the enterprise, as well as development environments).

This role acts as the technical second responder for the team and supports the work of technical staff from various business areas, as well as third-party technical experts.

The Senior Information Security Incident Response uses their technical competencies of systems and automated mechanisms to detect unauthorized activity on company information assets.

Responsibilities
  • Manages the prevention and resolution of security breaches and ensure incident and problem management processes are initiated.
  • Performs access management activities according to the policy.
  • Implements and discusses security service audit schedules, review access authorization and perform the required access controls and testing to identify security weaknesses.
  • Interacts with a global team of Cyber Security Analysts and specialists.
  • Manages 2nd level triaging of security alerts, events, and notifications.
  • Manages notifications of internal and/or external teams according to agreed alert priority levels, and escalation trees.
  • Communicates status of response, resolution and final root cause analysis to the appropriate stakeholders.
  • Follows and updates established and/or ad-hoc processes and work instructions and create procedures where deficiencies are identified.
  • Logs, manages and coordinates service requests through to resolution including the identification, isolation, resolution and escalation of IT infrastructure faults.
  • Maintains an understanding of current and emerging threats, vulnerabilities, and trends.
Qualifications

To thrive in this role, you need to have:

  • Advanced understanding of End Point Protection Software.
  • Advanced understanding of Enterprise Detection and Response software.
  • Advanced knowledge of technological advances within the information security arena.
  • Advanced understanding of inter-relationships in an overall system or process.
  • Advanced knowledge of information security management and policies.
  • Advanced understanding risk management principles and frameworks is crucial for prioritizing and addressing security incidents
  • Advanced understanding of the organization's business operations, goals, and objectives enables the analyst to align incident response efforts with the broader business strategy.
  • Ability to effectively communicate technical information to both technical and non-technical stakeholders, and end-users, as well as working with cross-functional teams during incident response.
  • Ability to think critically, analyze information, and solve medium to complex problems.

Academic qualifications and certifications:

  • Bachelor’s degree or equivalent in Information Technology, Computer Science or related preferred.
  • SANS GIAC Security Essentials (GSEC) or equivalent preferred.
  • SANS GIAC Certified Intrusion Analyst (GCIA) or equivalent preferred.
  • SANS GIAC Certified Incident Handler (GCIH) or equivalent preferred

Required experience:

  • Advanced experience in a Technology Information Security Industry.
  • Advanced experience or knowledge of SIEM and IPS technologies.
  • Advanced experience with Wireshark or tcpdump to identify normal and abnormal/malicious traffic patterns and behaviors.

Workplace type: Hybrid Working

About NTT DATA

NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer

NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Third parties fraudulently posing as NTT DATA recruiters

NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters—whether in writing or by phone—in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an @nttdata.com email address. If you suspect any fraudulent activity, please contact us.

#J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.
Be The First To Know

About the latest Incident response Jobs in South Africa !

Associate Information Security Incident Response Analyst

R180000 - R250000 Y NTT DATA

Posted today

Job Viewed

Tap Again To Close

Job Description

Make an impact with NTT DATA

Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it's a place where you can grow, belong and thrive.

Your day at NTT DATA

The Associate Information Security Incident Response Analyst is an entry level subject matter expert, responsible for assisting with the detection and monitoring of threats and suspicious activity affecting the organization's technology domain.

This role acts as the technical first responder by supporting the work of technical staff from various business areas as well as third-party technical experts.

This role uses their technical competencies of systems and automated mechanisms to detect unauthorized activity on company's information assets.

Key responsibilities:

  • Assists with the prevention and resolution of security breaches and ensures incident and problem management processes are initiated.
  • Supports access management activities according to the policy.
  • Assists with the implementation of and discusses security service audit schedules, review access authorization and performs the required access controls and testing to identify security weaknesses.
  • Interacts with a global team of Cyber Security Analysts and specialists.
  • Notifies internal and/or external teams according to agreed alert priority levels, escalation trees, 1st level triaging of security alerts, events, and notifications.
  • Communicates status of response, resolution and final root cause analysis to the appropriate stakeholders.
  • Ability to follow and update established and/or ad-hoc processes and work instructions and create procedures where deficiencies are identified.
  • Logs, manages and coordinates service requests through to resolution including the identification, isolation, resolution and escalation of IT infrastructure faults.

To thrive in this role, you need to have:

  • Knowledge of technological advances within the information security arena.
  • Understanding of inter-relationships in an overall system or process.
  • Knowledge of information security management and policies.
  • Maintain an understanding of current and emerging threats, vulnerabilities, and trends.

Academic qualifications and certifications:

  • Bachelor's degree or equivalent in Information Technology, Computer Science or related preferred.
  • SANS GIAC Security Essentials (GSEC) or equivalent preferred.
  • SANS GIAC Certified Intrusion Analyst (GCIA) or equivalent preferred.
  • SANS GIAC Certified Incident Handler (GCIH) or equivalent preferred.

Required experience:

  • Entry level experience in a Technology Information Security Industry.
  • Experience using End Point Protection Software.
  • Experience using Enterprise Detection & Response software.
  • Experience or knowledge of SIEM and IPS technologies.
  • Experience with Wireshark or tcpdump to identify normal and abnormal/malicious traffic patterns and behaviors.

Workplace type:

Hybrid Working

About NTT DATA

NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer

NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Third parties fraudulently posing as NTT DATA recruiters

NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters—whether in writing or by phone—in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an email address. If you suspect any fraudulent activity, please contact us .

This advertiser has chosen not to accept applicants from your region.

Associate Information Security Incident Response Analyst

R250000 - R450000 Y NTT DATA, Inc.

Posted today

Job Viewed

Tap Again To Close

Job Description

Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it's a place where you can grow, belong and thrive.

Your day at NTT DATA
The Associate Information Security Incident Response Analyst is an entry level subject matter expert, responsible for assisting with the detection and monitoring of threats and suspicious activity affecting the organization's technology domain.

This role acts as the technical first responder by supporting the work of technical staff from various business areas as well as third-party technical experts.

This role uses their technical competencies of systems and automated mechanisms to detect unauthorized activity on company's information assets.

Key responsibilities:

  • Assists with the prevention and resolution of security breaches and ensures incident and problem management processes are initiated.
  • Supports access management activities according to the policy.
  • Assists with the implementation of and discusses security service audit schedules, review access authorization and performs the required access controls and testing to identify security weaknesses.
  • Interacts with a global team of Cyber Security Analysts and specialists.
  • Notifies internal and/or external teams according to agreed alert priority levels, escalation trees, 1st level triaging of security alerts, events, and notifications.
  • Communicates status of response, resolution and final root cause analysis to the appropriate stakeholders.
  • Ability to follow and update established and/or ad-hoc processes and work instructions and create procedures where deficiencies are identified.
  • Logs, manages and coordinates service requests through to resolution including the identification, isolation, resolution and escalation of IT infrastructure faults.

To thrive in this role, you need to have:

  • Knowledge of technological advances within the information security arena.
  • Understanding of inter-relationships in an overall system or process.
  • Knowledge of information security management and policies.
  • Maintain an understanding of current and emerging threats, vulnerabilities, and trends.

Academic qualifications and certifications:

  • Bachelor's degree or equivalent in Information Technology, Computer Science or related preferred.
  • SANS GIAC Security Essentials (GSEC) or equivalent preferred.
  • SANS GIAC Certified Intrusion Analyst (GCIA) or equivalent preferred.
  • SANS GIAC Certified Incident Handler (GCIH) or equivalent preferred.

Required experience:

  • Entry level experience in a Technology Information Security Industry.
  • Experience using End Point Protection Software.
  • Experience using Enterprise Detection & Response software.
  • Experience or knowledge of SIEM and IPS technologies.
  • Experience with Wireshark or tcpdump to identify normal and abnormal/malicious traffic patterns and behaviors.

Workplace type:
Hybrid Working

About NTT DATA
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Third parties fraudulently posing as NTT DATA recruiters
NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters—whether in writing or by phone—in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an

email address. If you suspect any fraudulent activity, please
contact us
.

This advertiser has chosen not to accept applicants from your region.

Senior Information Security Incident Response Analyst

R1200000 - R2400000 Y NTT DATA, Inc.

Posted today

Job Viewed

Tap Again To Close

Job Description

Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it's a place where you can grow, belong and thrive.

Your day at NTT DATA
The Senior Information Security Incident Response Analyst is an advanced subject matter expert, responsible for detecting and monitoring escalated threats and suspicious activity affecting the organization's technology domain (servers, networks, appliances and all infrastructure supporting production applications for the enterprise, as well as development environments).

This role acts as the technical second responder for the team and supports the work of technical staff from various business areas, as well as third-party technical experts.

The Senior Information Security Incident Response uses their technical competencies of systems and automated mechanisms to detect unauthorized activity on company information assets.

Key responsibilities:

  • Manages the prevention and resolution of security breaches and ensure incident and problem management processes are initiated.
  • Performs access management activities according to the policy.
  • Implements and discusses security service audit schedules, review access authorization and perform the required access controls and testing to identify security weaknesses.
  • Interacts with a global team of Cyber Security Analysts and specialists.
  • Manages 2nd level triaging of security alerts, events, and notifications.
  • Manages notifications of internal and/or external teams according to agreed alert priority levels, and escalation trees.
  • Communicates status of response, resolution and final root cause analysis to the appropriate stakeholders.
  • Follows and updates established and/or ad-hoc processes and work instructions and create procedures where deficiencies are identified.
  • Logs, manages and coordinates service requests through to resolution including the identification, isolation, resolution and escalation of IT infrastructure faults.
  • Maintains an understanding of current and emerging threats, vulnerabilities, and trends.

To thrive in this role, you need to have:

  • Advanced understanding of End Point Protection Software.
  • Advanced understanding of Enterprise Detection and Response software.
  • Advanced knowledge of technological advances within the information security arena.
  • Advanced understanding of inter-relationships in an overall system or process.
  • Advanced knowledge of information security management and policies.
  • Advanced understanding risk management principles and frameworks is crucial for prioritizing and addressing security incidents
  • Advanced understanding of the organization's business operations, goals, and objectives enables the analyst to align incident response efforts with the broader business strategy.
  • Ability to effectively communicate technical information to both technical and non-technical stakeholders, and end-users, as well as working with cross-functional teams during incident response.
  • Ability to think critically, analyze information, and solve medium to complex problems.

Academic qualifications and certifications:

  • Bachelor's degree or equivalent in Information Technology, Computer Science or related preferred.
  • SANS GIAC Security Essentials (GSEC) or equivalent preferred.
  • SANS GIAC Certified Intrusion Analyst (GCIA) or equivalent preferred.
  • SANS GIAC Certified Incident Handler (GCIH) or equivalent preferred

Required experience:

  • Advanced experience in a Technology Information Security Industry.
  • Advanced experience or knowledge of SIEM and IPS technologies.
  • Advanced experience with Wireshark or tcpdump to identify normal and abnormal/malicious traffic patterns and behaviors.

Workplace type:
Hybrid Working

About NTT DATA
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Third parties fraudulently posing as NTT DATA recruiters
NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters—whether in writing or by phone—in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an

email address. If you suspect any fraudulent activity, please
contact us
.

This advertiser has chosen not to accept applicants from your region.
 

Nearby Locations

Other Jobs Near Me

Industry

  1. request_quote Accounting
  2. work Administrative
  3. eco Agriculture Forestry
  4. smart_toy AI & Emerging Technologies
  5. school Apprenticeships & Trainee
  6. apartment Architecture
  7. palette Arts & Entertainment
  8. directions_car Automotive
  9. flight_takeoff Aviation
  10. account_balance Banking & Finance
  11. local_florist Beauty & Wellness
  12. restaurant Catering
  13. volunteer_activism Charity & Voluntary
  14. science Chemical Engineering
  15. child_friendly Childcare
  16. foundation Civil Engineering
  17. clean_hands Cleaning & Sanitation
  18. diversity_3 Community & Social Care
  19. construction Construction
  20. brush Creative & Digital
  21. currency_bitcoin Crypto & Blockchain
  22. support_agent Customer Service & Helpdesk
  23. medical_services Dental
  24. medical_services Driving & Transport
  25. medical_services E Commerce & Social Media
  26. school Education & Teaching
  27. electrical_services Electrical Engineering
  28. bolt Energy
  29. local_mall Fmcg
  30. gavel Government & Non Profit
  31. emoji_events Graduate
  32. health_and_safety Healthcare
  33. beach_access Hospitality & Tourism
  34. groups Human Resources
  35. precision_manufacturing Industrial Engineering
  36. security Information Security
  37. handyman Installation & Maintenance
  38. policy Insurance
  39. code IT & Software
  40. gavel Legal
  41. sports_soccer Leisure & Sports
  42. inventory_2 Logistics & Warehousing
  43. supervisor_account Management
  44. supervisor_account Management Consultancy
  45. supervisor_account Manufacturing & Production
  46. campaign Marketing
  47. build Mechanical Engineering
  48. perm_media Media & PR
  49. local_hospital Medical
  50. local_hospital Military & Public Safety
  51. local_hospital Mining
  52. medical_services Nursing
  53. local_gas_station Oil & Gas
  54. biotech Pharmaceutical
  55. checklist_rtl Project Management
  56. shopping_bag Purchasing
  57. home_work Real Estate
  58. person_search Recruitment Consultancy
  59. store Retail
  60. point_of_sale Sales
  61. science Scientific Research & Development
  62. wifi Telecoms
  63. psychology Therapy
  64. pets Veterinary
View All Incident Response Jobs