25 Soc Analyst jobs in South Africa

Senior Network Analyst The Senior Network Analyst will be responsible for the management and maintenance of the IT network. S/he will work in conjunction with other system administrators, database administrators, and support technicians at the Client site. Duties & Responsibilities Working with current IT System engineers in designing and delivering the installation, upgrade, operation, control, maintenance, and effective use of local and wide area networks for the communication of data, voice, text, or images within the client site. Meeting the required levels of service performance such as throughput, availability, and response time, and the timely and effective handling of enquiries and requests for guidance or action on problems. Monitoring and reviewing the performance and quality of service provided by the network and its constituent hardware and software. Taking responsibility for the investigation, diagnosis, troubleshooting, and resolution of problems, including negotiation with users, specialists, other staff, and suppliers as appropriate. Taking account of the needs for quality, security, availability, and safety, utilizing, as necessary, specialized techniques, tools, methods, and standards. Using established methods, hardware, and software tools and procedures for planning, installing, configuring, commissioning, monitoring, and investigating the network. Providing ongoing operational client support when scheduled to do so and carrying out both simple and complex incident resolutions and changes; scheduled maintenance routines and network checks. Reviewing network statistics, identifying trends in traffic flow and levels of service. Proposing capacity changes and contingency arrangements as required. Contributing to the development of complex communication systems, including the areas of investigation, analysis, specification, design, construction, testing, maintenance, upgrade, and migration. Assisting in the collation of service reporting metrics and identifying/suggesting where metrics are missing or are surplus to requirements and other duties as assigned. Desired Experience & Qualifications 6 Years of: Up-to-date knowledge of industry offerings in the networking arena and their potential uses within the business. 6 Years of: Good all-round technical knowledge of LAN/WAN network equipment (CISCO & HP Procurve / ARUBA), technologies, protocols, and communication standards (e.g., Ethernet, 1000 Base T, TCP/IP suite, RIP, OSPF, EIGRP, BGP, MPLS). 6 Years of: Knowledge of Radius, Active Directory, and Location Based Services like Cisco OS, Aruba Net Edit, HPE IMC, Aruba AOS-CX; Open Source tools (e.g., Nagios, Cacti, Zenoss). 6 Years of: Networking skills, configuration of switches, IP ranges, and VLANs (VPN, Cisco routers, Satellite networks, Switches, VLANs, VOIP). Network security skills and knowledge 4 Years of: (Symantec antivirus End Point Protection edition). 6 Years of: Good Microsoft networking and Operating System skills. 4 Years of: Troubleshooting and problem-solving technical issues. 2 Years of: Good knowledge of hardware support and installation. 4 Years of: Good communication and interpersonal skills and ability to function in a team. 3 Years of: Knowledge of design, implementation, and knowledge of Symantec Endpoint Protection edition. Package & Remuneration Market related/Negotiable #J-18808-Ljbffr

Senior Network Analyst The Senior Network Analyst will be responsible for the management and maintenance of the IT network. S/he will work in conjunction with other system administrators, database administrators, and support technicians at the Client site. Duties & Responsibilities Working with current IT System engineers in designing and delivering the installation, upgrade, operation, control, maintenance, and effective use of local and wide area networks for the communication of data, voice, text, or images within the client site. Meeting the required levels of service performance such as throughput, availability, and response time, and the timely and effective handling of enquiries and requests for guidance or action on problems. Monitoring and reviewing the performance and quality of service provided by the network and its constituent hardware and software. Taking responsibility for the investigation, diagnosis, troubleshooting, and resolution of problems, including negotiation with users, specialists, other staff, and suppliers as appropriate. Taking account of the needs for quality, security, availability, and safety, utilizing, as necessary, specialized techniques, tools, methods, and standards. Using established methods, hardware, and software tools and procedures for planning, installing, configuring, commissioning, monitoring, and investigating the network. Providing ongoing operational client support when scheduled to do so and carrying out both simple and complex incident resolutions and changes; scheduled maintenance routines and network checks. Reviewing network statistics, identifying trends in traffic flow and levels of service. Proposing capacity changes and contingency arrangements as required. Contributing to the development of complex communication systems, including the areas of investigation, analysis, specification, design, construction, testing, maintenance, upgrade, and migration. Assisting in the collation of service reporting metrics and identifying/suggesting where metrics are missing or are surplus to requirements and other duties as assigned. Desired Experience & Qualifications 6 Years of: Up-to-date knowledge of industry offerings in the networking arena and their potential uses within the business. 6 Years of: Good all-round technical knowledge of LAN/WAN network equipment (CISCO & HP Procurve / ARUBA), technologies, protocols, and communication standards (e.g., Ethernet, 1000 Base T, TCP/IP suite, RIP, OSPF, EIGRP, BGP, MPLS). 6 Years of: Knowledge of Radius, Active Directory, and Location Based Services like Cisco OS, Aruba Net Edit, HPE IMC, Aruba AOS-CX; Open Source tools (e.g., Nagios, Cacti, Zenoss). 6 Years of: Networking skills, configuration of switches, IP ranges, and VLANs (VPN, Cisco routers, Satellite networks, Switches, VLANs, VOIP). Network security skills and knowledge 4 Years of: (Symantec antivirus End Point Protection edition). 6 Years of: Good Microsoft networking and Operating System skills. 4 Years of: Troubleshooting and problem-solving technical issues. 2 Years of: Good knowledge of hardware support and installation. 4 Years of: Good communication and interpersonal skills and ability to function in a team. 3 Years of: Knowledge of design, implementation, and knowledge of Symantec Endpoint Protection edition. Package & Remuneration Market related/Negotiable #J-18808-Ljbffr

The Apex Group was established in Bermuda in 2003 and is now one of the world’s largest fund administration and middle office solutions providers.

Our business is unique in its ability to reach globally, service locally and provide cross-jurisdictional services. With our clients at the heart of everything we do, our hard-working team has successfully delivered on an unprecedented growth and transformation journey, and we are now represented by over circa 13,000 employees across 112 offices worldwide.Your career with us should reflect your energy and passion.

That’s why, at Apex Group, we will do more than simply ‘empower’ you. We will work to supercharge your unique skills and experience.

Take the lead and we’ll give you the support you need to be at the top of your game. And we offer you the freedom to be a positive disrupter and turn big ideas into bold, industry-changing realities.

For our business, for clients, and for you

Role Purpose
The L2 SOC Analyst plays a critical role in Apex Group’s global cyber defense capabilities. This role is responsible for monitoring, triaging, and analyzing security alerts, assisting with containment actions, and ensuring credible threats are escalated promptly and accurately. All investigative work must be documented within ServiceNow in alignment with incident handling procedures. The L2 Analyst supports continuous monitoring across Apex’s cloud, endpoint, identity, and network environments using approved enterprise security tools.

Key Responsibilities

• Monitor and triage alerts from SIEM, EDR, and email/cloud security platforms.
• Investigate security events by correlating telemetry from multiple data sources.
• Escalate validated security incidents with appropriate context and investigative findings.
• Assist in executing containment actions such as account disablement or host isolation as instructed by senior analysts.
• Document all activities, analysis steps, and decisions in ServiceNow with completeness and audit readiness.
• Collaborate with engineering and detection teams to refine detection logic and reduce false positives.
• Contribute to SOC runbooks, standard operating procedures, and daily handover
• documentation.
• Participate in regular shift handovers and cross-regional coordination within the GSOC model.

Technology Environment

• SIEM: Exabeam Advanced Analytics
• Endpoint Detection and Response: Microsoft Defender for Endpoint, Identity, and Email
• Email Security: Mimecast, Tessian
• Threat Intelligence: Microsoft Defender Threat Intelligence (MDTI) and integrated sources
• within Exabeam and Microsoft 365 Security
• Case Management: ServiceNow
• Collaboration and Documentation: Microsoft Teams, Confluence.

Required Skills and Experience

• Minimum 2–3 years of experience in a Security Operations Centre (SOC) or equivalent cyber monitoring role.
• Strong understanding of cybersecurity concepts, attack techniques, and threat frameworks such as MITRE ATT&CK.
• Experience working with SIEM and EDR tools in enterprise environments.
• Familiarity with common log formats (Windows, Linux, cloud services) and basic network

Security principles.

• Ability to assess the severity and impact of security events and respond appropriately.
• Strong written and verbal communication skills with a focus on clear and structured escalation reporting.
• Willingness to participate in rotational or hybrid shift models based on operational requirements.

Preferred Certifications

• CompTIA Security+ or CySA+
• Microsoft Certified: Security Operations Analyst Associate (SC-200)
• SANS GIAC certifications such as GCIH or GCIA (preferred but not mandatory

Performance Metrics

• Mean Time to Triage (MTTT)
• Escalation accuracy and incident quality.

Disclaimer : Unsolicited CVs sent to Apex (Talent Acquisition Team or Hiring Managers) by recruitment agencies will not be accepted for this position. Apex operates a direct sourcing model and where agency assistance is required, the Talent Acquisition team will engage directly with our exclusive recruitment partners.

#J-18808-Ljbffr

L2 Security Operations Centre (SOC) Analyst

Join to apply for the L2 Security Operations Centre (SOC) Analyst role at Apex Group Ltd

L2 Security Operations Centre (SOC) Analyst

Join to apply for the L2 Security Operations Centre (SOC) Analyst role at Apex Group Ltd

Get AI-powered advice on this job and more exclusive features.

The Apex Group was established in Bermuda in 2003 and is now one of the world’s largest fund administration and middle office solutions providers.

Our business is unique in its ability to reach globally, service locally and provide cross-jurisdictional services. With our clients at the heart of everything we do, our hard-working team has successfully delivered on an unprecedented growth and transformation journey, and we are now represented by over circa 13,000 employees across 112 offices worldwide.Your career with us should reflect your energy and passion.

That’s why, at Apex Group, we will do more than simply ‘empower’ you. We will work to supercharge your unique skills and experience.

Take the lead and we’ll give you the support you need to be at the top of your game. And we offer you the freedom to be a positive disrupter and turn big ideas into bold, industry-changing realities.

For our business, for clients, and for you

Role Purpose

The L2 SOC Analyst plays a critical role in Apex Group’s global cyber defense capabilities. This role is responsible for monitoring, triaging, and analyzing security alerts, assisting with containment actions, and ensuring credible threats are escalated promptly and accurately. All investigative work must be documented within ServiceNow in alignment with incident handling procedures. The L2 Analyst supports continuous monitoring across Apex’s cloud, endpoint, identity, and network environments using approved enterprise security tools.

Key Responsibilities

• Monitor and triage alerts from SIEM, EDR, and email/cloud security platforms.
• Investigate security events by correlating telemetry from multiple data sources.
• Escalate validated security incidents with appropriate context and investigative findings.
• Assist in executing containment actions such as account disablement or host isolation as instructed by senior analysts.
• Document all activities, analysis steps, and decisions in ServiceNow with completeness and audit readiness.
• Collaborate with engineering and detection teams to refine detection logic and reduce false positives.
• Contribute to SOC runbooks, standard operating procedures, and daily handover
• documentation.
• Participate in regular shift handovers and cross-regional coordination within the GSOC model.
  
  

Technology Environment

• SIEM: Exabeam Advanced Analytics
• Endpoint Detection and Response: Microsoft Defender for Endpoint, Identity, and Email
• Email Security: Mimecast, Tessian
• Threat Intelligence: Microsoft Defender Threat Intelligence (MDTI) and integrated sources
• within Exabeam and Microsoft 365 Security
• Case Management: ServiceNow
• Collaboration and Documentation: Microsoft Teams, Confluence.
  
  

Required Skills And Experience

• Minimum 2–3 years of experience in a Security Operations Centre (SOC) or equivalent cyber monitoring role.
• Strong understanding of cybersecurity concepts, attack techniques, and threat frameworks such as MITRE ATT&CK.
• Experience working with SIEM and EDR tools in enterprise environments.
• Familiarity with common log formats (Windows, Linux, cloud services) and basic network
  
  

Security principles.

• Ability to assess the severity and impact of security events and respond appropriately.
• Strong written and verbal communication skills with a focus on clear and structured escalation reporting.
• Willingness to participate in rotational or hybrid shift models based on operational requirements.
  
  

Preferred Certifications

• CompTIA Security+ or CySA+
• Microsoft Certified: Security Operations Analyst Associate (SC-200)
• SANS GIAC certifications such as GCIH or GCIA (preferred but not mandatory
  
  

Performance Metrics

• Mean Time to Triage (MTTT)
• Escalation accuracy and incident quality.
  
  

Disclaimer: Unsolicited CVs sent to Apex (Talent Acquisition Team or Hiring Managers) by recruitment agencies will not be accepted for this position. Apex operates a direct sourcing model and where agency assistance is required, the Talent Acquisition team will engage directly with our exclusive recruitment partners.

Seniority level

• Seniority level Mid-Senior level

Employment type

• Employment type Full-time

Job function

• Job function Information Technology

Referrals increase your chances of interviewing at Apex Group Ltd by 2x

Get notified about new Security Operations Center Analyst jobs in Cape Town, Western Cape, South Africa .

Cape Town, Western Cape, South Africa 2 weeks ago

Cape Town, Western Cape, South Africa 2 weeks ago

Cape Town, Western Cape, South Africa 1 week ago

Cape Town, Western Cape, South Africa 4 months ago

Cape Town, Western Cape, South Africa 1 week ago

City of Cape Town, Western Cape, South Africa 2 weeks ago

Cape Town, Western Cape, South Africa 4 days ago

Cape Town, Western Cape, South Africa 3 months ago

Cape Town, Western Cape, South Africa 3 months ago

City of Cape Town, Western Cape, South Africa 3 days ago

Cape Town, Western Cape, South Africa 3 days ago

MS Sentinel SIEM Security Engineer (South Africa)

Cape Town, Western Cape, South Africa 6 days ago

Cape Town, Western Cape, South Africa 22 hours ago

Cape Town, Western Cape, South Africa 3 months ago

Senior Incident Response Specialist, Bangkok Based (Relocation Provided)

Cape Town, Western Cape, South Africa 5 days ago

Security Operations Engineer – Identify and Access Management (IAM) Specialist

Cape Town, Western Cape, South Africa 5 days ago

Linux Cryptography and Security Engineer

Cape Town, Western Cape, South Africa 1 month ago

Cape Town, Western Cape, South Africa 2 months ago

International Cybersecurity Sales Partner Manager (Darktrace)

City of Cape Town, Western Cape, South Africa 2 weeks ago

Cape Town, Western Cape, South Africa 3 days ago

City of Cape Town, Western Cape, South Africa 3 days ago

Senior/Staff Application Security Engineer (Bangkok based, relocation provided)

Cape Town, Western Cape, South Africa 5 days ago

City of Cape Town, Western Cape, South Africa 2 days ago

Senior Application Security Engineer (Bangkok based, relocation provided)

Cape Town, Western Cape, South Africa 5 days ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

FusionTek is a Managed Security Service Provider (MSSP) with offices in multiple US locations and team members globally. We're a tight-knit team of friendly, intelligent people focused on IT infrastructure management for small- to mid-sized businesses since 2007.

We're also rapidly growing and are looking for top-tier candidates who share our four core values:

• We are team players, collectively working towards a common goal
• We work each day with a growth mindset focused on the success of our coworkers, clients, and the company
• We do the right thing with an honest and transparent approach that always puts our clients first
• We take ownership of our work, always seeing it through to completion
• We execute quickly and precisely, both internally and externally
  
  

If this opportunity excites you, we invite you to continue reading! Join our team as an Incident Response Technical Lead. We're seeking a proactive problem-solver with a client-focused attitude who thrives on tackling technical challenges.

As an Incident Response Tech Lead, you will provide excellence in high-touch technical management for incident response projects. This includes frequent technical and non-technical written, verbal and video call (Zoom / Teams) updates with all stakeholders on a project, both within FusionTek and externally. Throughout the day you'll be translating technology to clients who aren't always technical, so communication skills are paramount in this role. A broad technical foundation is also required, as you will make decisions on the client's recovery strategy and will serve as escalation point and subject matter expert to FusionTek team members and the client.

We are currently staffing the following shifts:

8:00 AM - 5:00 PM, Sunday to Thursday or Tuesday to Saturday - South Africa Standard Time (SAST)

2:00 PM - Midnight (Friday to Monday) - South Africa Standard Time (SAST)

Here's what you'll be doing:

• You'll primarily be focused on technical management of incident response recovery efforts from start to finish. This can include initial project mobilization, assignment and management of technical workstreams, and frequent client and vendor communication. There are daily (sometimes more frequently) updated calls and associated reporting
• Incident response projects can often begin over a weekend or outside of traditional business hours, and weekends are crucial recovery opportunities to lessen the impact the client feels as their businesses are often completely down
• You'll work through our ticketing system to document, track, and escalate project tasks and tickets, and you'll also work on our documentation platform to keep everything up to date along the way
• You'll serve as an escalation point on technical questions from other engineers and the client
• You'll be working with a team of intelligent people to deliver world-class service to our clients
  
  
  

Requirements

• Excellent comprehension and communication in the English language
• Previous experience leading a technical team
• Knowledge of Office 365 / Azure cloud services
• Knowledge of Active Directory
• Knowledge of complex networking troubleshooting (VLANs/routing/subnetting/packet captures)
• Broad understanding of how operating systems work
• Knowledge of advanced OS troubleshooting (boot issues/corruption of profiles/OS files)
• Comfortable working in different OSs, both in CLI and GUI
• SQL DB knowledge is a plus
• Knowledge of advanced firewall configuration skills (creating and troubleshooting complex firewall policies/routes)
• Experience troubleshooting ingress/egress issues
• Comfortable working in diverse firewall UIs (SonicWall, Meraki, FortiGate, Cisco, WatchGuard, etc.)
• Strong comprehension of system architecture (i.e. - how servers' function, what their roles are, etc.)
• Understanding of the elements of network and system performance
• Time management skills are crucial to your success in this role
• Superb verbal and written communications skills are a must
• Demonstrated skillset through industry certifications or an agreed upon plan to obtain them
• Previous recovery / remediation experience a plus
• Experience working in a ticketing system is preferred, with Autotask experience a plus
  
  
  

Benefits

At FusionTek, we truly believe that our people are our most valuable asset, which is why we're excited to provide:

• Salary range - R800,000 to R950,000
• Quarterly bonus eligibility based on specific KPIs
• Educational reimbursement for certification tests and company supplied training resources

#J-18808-Ljbffr

FusionTek Cape Town, Western Cape, South Africa

Remote Incident Response Tech Lead

FusionTek Cape Town, Western Cape, South Africa

4 weeks ago Be among the first 25 applicants

This range is provided by FusionTek. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

Base pay range

ZAR800,000.00/yr - ZAR950,000.00/yr

FusionTek is a Managed Security Service Provider (MSSP) with offices in multiple US locations and team members globally. We're a tight-knit team of friendly, intelligent people focused on IT infrastructure management for small- to mid-sized businesses since 2007.

We're also rapidly growing and are looking for top-tier candidates who share our four core values:

• We are team players, collectively working towards a common goal
• We work each day with a growth mindset focused on the success of our coworkers, clients, and the company
• We do the right thing with an honest and transparent approach that always puts our clients first
• We take ownership of our work, always seeing it through to completion
• We execute quickly and precisely, both internally and externally
  
  

If this opportunity excites you, we invite you to continue reading! Join our team as an Incident Response Technical Lead. We're seeking a proactive problem-solver with a client-focused attitude who thrives on tackling technical challenges.

As an Incident Response Tech Lead, you will provide excellence in high-touch technical management for incident response projects. This includes frequent technical and non-technical written, verbal and video call (Zoom / Teams) updates with all stakeholders on a project, both within FusionTek and externally. Throughout the day you'll be translating technology to clients who aren't always technical, so communication skills are paramount in this role. A broad technical foundation is also required, as you will make decisions on the client's recovery strategy and will serve as escalation point and subject matter expert to FusionTek team members and the client.

We are currently staffing the following shifts:

8:00 AM - 5:00 PM, Sunday to Thursday or Tuesday to Saturday - South Africa Standard Time (SAST)

2:00 PM - Midnight (Friday to Monday) - South Africa Standard Time (SAST)

Here's what you'll be doing:

• You'll primarily be focused on technical management of incident response recovery efforts from start to finish. This can include initial project mobilization, assignment and management of technical workstreams, and frequent client and vendor communication. There are daily (sometimes more frequently) updated calls and associated reporting
• Incident response projects can often begin over a weekend or outside of traditional business hours, and weekends are crucial recovery opportunities to lessen the impact the client feels as their businesses are often completely down
• You'll work through our ticketing system to document, track, and escalate project tasks and tickets, and you'll also work on our documentation platform to keep everything up to date along the way
• You'll serve as an escalation point on technical questions from other engineers and the client
• You'll be working with a team of intelligent people to deliver world-class service to our clients
  
  

Requirements

• Excellent comprehension and communication in the English language
• Previous experience leading a technical team
• Knowledge of Office 365 / Azure cloud services
• Knowledge of Active Directory
• Knowledge of complex networking troubleshooting (VLANs/routing/subnetting/packet captures)
• Broad understanding of how operating systems work
• Knowledge of advanced OS troubleshooting (boot issues/corruption of profiles/OS files)
• Comfortable working in different OSs, both in CLI and GUI
• SQL DB knowledge is a plus
• Knowledge of advanced firewall configuration skills (creating and troubleshooting complex firewall policies/routes)
• Experience troubleshooting ingress/egress issues
• Comfortable working in diverse firewall UIs (SonicWall, Meraki, FortiGate, Cisco, WatchGuard, etc.)
• Strong comprehension of system architecture (i.e. - how servers' function, what their roles are, etc.)
• Understanding of the elements of network and system performance
• Time management skills are crucial to your success in this role
• Superb verbal and written communications skills are a must
• Demonstrated skillset through industry certifications or an agreed upon plan to obtain them
• Previous recovery / remediation experience a plus
• Experience working in a ticketing system is preferred, with Autotask experience a plus
  
  

Benefits

At FusionTek, we truly believe that our people are our most valuable asset, which is why we're excited to provide:

• Salary range - R800,000 to R950,000
• Quarterly bonus eligibility based on specific KPIs
• Educational reimbursement for certification tests and company supplied training resources

Seniority level

• Seniority level Associate

Employment type

• Employment type Contract

Job function

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at FusionTek by 2x

Sign in to set job alerts for “Security Technician” roles.

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

FusionTek is a Managed Security Service Provider (MSSP) with offices in multiple US locations and team members globally. We’re a tight-knit team of friendly, intelligent people focused on IT infrastructure management for small- to mid-sized businesses since 2007.

We’re also rapidly growing and are looking for top-tier candidates who share our four core values:

• We are team players, collectively working towards a common goal.
• We work each day with a growth mindset focused on the success of our coworkers, clients, and the company.
• We do the right thing with an honest and transparent approach that always puts our clients first.
• We take ownership of our work, always seeing it through to completion.
• We execute quickly and precisely, both internally and externally.

If this opportunity excites you, we invite you to continue reading! Join our team as an Incident Response Technical Lead. We’re seeking a proactive problem-solver with a client-focused attitude who thrives on tackling technical challenges.

As an Incident Response Tech Lead, you will provide excellence in high-touch technical management for incident response projects. This includes frequent technical and non-technical written, verbal, and video call (Zoom / Teams) updates with all stakeholders on a project, both within FusionTek and externally. Throughout the day, you’ll be translating technology to clients who aren’t always technical, so communication skills are paramount in this role. A broad technical foundation is also required, as you will make decisions on the client’s recovery strategy and will serve as an escalation point and subject matter expert to FusionTek team members and the client.

We are currently staffing the following shifts:

8:00 AM – 5:00 PM, Sunday to Thursday or Tuesday to Saturday - South Africa Standard Time (SAST)

2:00 PM – Midnight (Friday to Monday) - South Africa Standard Time (SAST)

Here’s what you’ll be doing:

• You’ll primarily be focused on technical management of incident response recovery efforts from start to finish. This can include initial project mobilization, assignment and management of technical workstreams, and frequent client and vendor communication. There are daily (sometimes more frequently) updated calls and associated reporting.
• Incident response projects can often begin over a weekend or outside of traditional business hours, and weekends are crucial recovery opportunities to lessen the impact the client feels as their businesses are often completely down.
• You’ll work through our ticketing system to document, track, and escalate project tasks and tickets, and you’ll also work on our documentation platform to keep everything up to date along the way.
• You'll serve as an escalation point on technical questions from other engineers and the client.
• You’ll be working with a team of intelligent people to deliver world-class service to our clients

• Excellent comprehension and communication in the English language
• Previous experience leading a technical team
• Knowledge of Office 365 / Azure cloud services
• Knowledge of Active Directory
• Knowledge of complex networking troubleshooting (VLANs/routing/subnetting/packet captures)
• Broad understanding of how operating systems work
• Knowledge of advanced OS troubleshooting (boot issues/corruption of profiles/OS files)
• Comfortable working in different OSs, both in CLI and GUI
• SQL DB knowledge is a plus
• Knowledge of advanced firewall configuration skills (creating and troubleshooting complex firewall policies/routes)
• Experience troubleshooting ingress/egress issues
• Comfortable working in diverse firewall UIs (SonicWall, Meraki, FortiGate, Cisco, WatchGuard, etc.)
• Strong comprehension of system architecture (i.e. - how servers’ function, what their roles are, etc.)
• Understanding of the elements of network and system performance
• Time management skills are crucial to your success in this role
• Superb verbal and written communications skills are a must
• Demonstrated skillset through industry certifications or an agreed upon plan to obtain them
• Previous recovery / remediation experience a plus
• Experience working in a ticketing system is preferred, with Autotask experience a plus

At FusionTek, we truly believe that our people are our most valuable asset, which is why we’re excited to provide:

• Salary range – R800,000 to R950,000
• Quarterly bonus eligibility based on specific KPIs.
• Educational reimbursement for certification tests and company supplied training resources

#J-18808-Ljbffr

FusionTek is a Managed Security Service Provider (MSSP) with offices in multiple US locations and team members globally. We’re a tight-knit team of friendly, intelligent people focused on IT infrastructure management for small- to mid-sized businesses since 2007.

We’re also rapidly growing and are looking for top-tier candidates who share our four core values:

• We are team players, collectively working towards a common goal.
• We work each day with a growth mindset focused on the success of our coworkers, clients, and the company.
• We do the right thing with an honest and transparent approach that always puts our clients first.
• We take ownership of our work, always seeing it through to completion.
• We execute quickly and precisely, both internally and externally.

If this opportunity excites you, we invite you to continue reading! Join our team as an Incident Response Technical Lead. We’re seeking a proactive problem-solver with a client-focused attitude who thrives on tackling technical challenges.

As an Incident Response Tech Lead, you will provide excellence in high-touch technical management for incident response projects. This includes frequent technical and non-technical written, verbal and video call (Zoom / Teams) updates with all stakeholders on a project, both within FusionTek and externally. Throughout the day you’ll be translating technology to clients who aren’t always technical, so communication skills are paramount in this role. A broad technical foundation is also required, as you will make decisions on the client’s recovery strategy and will serve as escalation point and subject matter expert to FusionTek team members and the client.

We are currently staffing the following shifts:

8:00 AM – 5:00 PM, Sunday to Thursday or Tuesday to Saturday - South Africa Standard Time (SAST)

2:00 PM – Midnight (Friday to Monday) - South Africa Standard Time (SAST)

Here’s what you’ll be doing:

• You’ll primarily be focused on technical management of incident response recovery efforts from start to finish. This can include initial project mobilization, assignment and management of technical workstreams, and frequent client and vendor communication. There are daily (sometimes more frequently) updated calls and associated reporting.
• Incident response projects can often begin over a weekend or outside of traditional business hours, and weekends are crucial recovery opportunities to lessen the impact the client feels as their businesses are often completely down.
• You’ll work through our ticketing system to document, track, and escalate project tasks and tickets, and you’ll also work on our documentation platform to keep everything up to date along the way.
• You'll serve as an escalation point on technical questions from other engineers and the client.
• You’ll be working with a team of intelligent people to deliver world-class service to our clients

• Excellent comprehension and communication in the English language
• Previous experience leading a technical team
• Knowledge of Office 365 / Azure cloud services
• Knowledge of Active Directory
• Knowledge of complex networking troubleshooting (VLANs/routing/subnetting/packet captures)
• Broad understanding of how operating systems work
• Knowledge of advanced OS troubleshooting (boot issues/corruption of profiles/OS files)
• Comfortable working in different OSs, both in CLI and GUI
• SQL DB knowledge is a plus
• Knowledge of advanced firewall configuration skills (creating and troubleshooting complex firewall policies/routes)
• Experience troubleshooting ingress/egress issues
• Comfortable working in diverse firewall UIs (SonicWall, Meraki, FortiGate, Cisco, WatchGuard, etc.)
• Strong comprehension of system architecture (i.e. - how servers’ function, what their roles are, etc.)
• Understanding of the elements of network and system performance
• Time management skills are crucial to your success in this role
• Superb verbal and written communications skills are a must
• Demonstrated skillset through industry certifications or an agreed upon plan to obtain them
• Previous recovery / remediation experience a plus
• Experience working in a ticketing system is preferred, with Autotask experience a plus

At FusionTek, we truly believe that our people are our most valuable asset, which is why we’re excited to provide:

• Salary range – R800,000 to R950,000
• Quarterly bonus eligibility based on specific KPIs.
• Educational reimbursement for certification tests and company supplied training resources

#J-18808-Ljbffr

Fusion Tek is a Managed Security Service Provider (MSSP) with offices in multiple US locations and team members globally. We’re a tight-knit team of friendly, intelligent people focused on IT infrastructure management for small- to mid-sized businesses since 2007. We’re also rapidly growing and are looking for top-tier candidates who share our four core values: We are team players, collectively working towards a common goal. We work each day with a growth mindset focused on the success of our coworkers, clients, and the company. We do the right thing with an honest and transparent approach that always puts our clients first. We take ownership of our work, always seeing it through to completion. We execute quickly and precisely, both internally and externally. If this opportunity excites you, we invite you to continue reading! Join our team as an Incident Response Technical Lead. We’re seeking a proactive problem-solver with a client-focused attitude who thrives on tackling technical challenges. As an Incident Response Tech Lead, you will provide excellence in high-touch technical management for incident response projects. This includes frequent technical and non-technical written, verbal, and video call (Zoom / Teams) updates with all stakeholders on a project, both within Fusion Tek and externally. Throughout the day, you’ll be translating technology to clients who aren’t always technical, so communication skills are paramount in this role. A broad technical foundation is also required, as you will make decisions on the client’s recovery strategy and will serve as an escalation point and subject matter expert to Fusion Tek team members and the client. We are currently staffing the following shifts: 8:00 AM – 5:00 PM, Sunday to Thursday or Tuesday to Saturday - South Africa Standard Time (SAST) 2:00 PM – Midnight (Friday to Monday) - South Africa Standard Time (SAST) Here’s what you’ll be doing: You’ll primarily be focused on technical management of incident response recovery efforts from start to finish. This can include initial project mobilization, assignment and management of technical workstreams, and frequent client and vendor communication. There are daily (sometimes more frequently) updated calls and associated reporting. Incident response projects can often begin over a weekend or outside of traditional business hours, and weekends are crucial recovery opportunities to lessen the impact the client feels as their businesses are often completely down. You’ll work through our ticketing system to document, track, and escalate project tasks and tickets, and you’ll also work on our documentation platform to keep everything up to date along the way. You'll serve as an escalation point on technical questions from other engineers and the client. You’ll be working with a team of intelligent people to deliver world-class service to our clients Excellent comprehension and communication in the English language Previous experience leading a technical team Knowledge of Office 365 / Azure cloud services Knowledge of Active Directory Knowledge of complex networking troubleshooting (VLANs/routing/subnetting/packet captures) Broad understanding of how operating systems work Knowledge of advanced OS troubleshooting (boot issues/corruption of profiles/OS files) Comfortable working in different OSs, both in CLI and GUI SQL DB knowledge is a plus Knowledge of advanced firewall configuration skills (creating and troubleshooting complex firewall policies/routes) Experience troubleshooting ingress/egress issues Comfortable working in diverse firewall UIs (Sonic Wall, Meraki, Forti Gate, Cisco, Watch Guard, etc.) Strong comprehension of system architecture (i.e. - how servers’ function, what their roles are, etc.) Understanding of the elements of network and system performance Time management skills are crucial to your success in this role Superb verbal and written communications skills are a must Demonstrated skillset through industry certifications or an agreed upon plan to obtain them Previous recovery / remediation experience a plus Experience working in a ticketing system is preferred, with Autotask experience a plus At Fusion Tek, we truly believe that our people are our most valuable asset, which is why we’re excited to provide: Salary range – R800,000 to R950,000 Quarterly bonus eligibility based on specific KPIs. Educational reimbursement for certification tests and company supplied training resources #J-18808-Ljbffr