Security Specialist

Why choose Logicalis? It’s not just IT solutions, It’s IT global know\-how! Logicalis is an international multi\-skilled solution provider providing digital enablement services to help customers harness digital technology and innovative services to deliver powerful business outcomes. Our customers span industries and geographical regions; and our focus is to engage in the dynamics of our customers’ vertical markets; including financial services, TMT (telecommunications, media and technology), education, healthcare, retail, government, manufacturing and professional services, and apply the skills of our 4,500 employees in modernising key digital pillars; data centre and cloud services, security and network infrastructure, workspace communications and collaboration, data and information strategies, and IT operation modernisation. We are the advocates for our customers for some of the world’s leading technology companies including Cisco, HPE, IBM, CA Technologies, NetApp, Microsoft, Oracle, VMware and ServiceNow Logicalis employees are innovative, smart, entrepreneurial and customer centric, with a shared ambition of making Logicalis the worlds leading IT Solutions provider! We offer speedy decision\-making, opportunities for personal development, and a supportive, inclusive environment that celebrates our diversity. Join us and become a part of something epic! **ROLE** **PURPOSE** The Security Operations Centre will provide defence against security breaches and actively isolate and mitigate security risks. The Security Specialist forms part of the security operations centre SOC team. The SOC Team will identify, analyse, and react to cyber security threats using a reliable set of processes and security technologies. The SOC Team includes the SOC Manager, SIEM Platform Manager, Case Manager, SOC Tier 1,2 and 3 Analysts and Security Specialists. They work with IT operational teams to address security incidents and events quickly. The SOC Team will provide a critical layer of analysis needed to seek out any irregular activity that could suggest a security incident. **ROLE AND DELIVERY** **RESPONSIBILITIES:** The job role includes actively participating in the incident detection process as follows: * Possesses in\-depth knowledge of network, endpoint, threat intelligence, forensics and malware reverse Analysis, as well as the functioning of specific applications or underlying IT infrastructure * Acts as an incident “hunter,” not waiting for escalated incidents * Closely involved in developing, tuning, and implementing threat detection analytics * Acts as the escalation for Tier 1 and 2 SOC Analysts * Responds to and oversees the remediation of a declared security incident * Completes the Root Cause Analysis Report for P1 to P4 * Provides guidance to Tier 1 and 2 SOC Analysts * Uses threat intelligence such as updated rules and Indicators of Compromise (IOCs) to pinpoint affected systems and the extent of the attack * Monitors shift\-related metrics...