Job Description

The Cyber Security (CS) Specialist role monitors enterprise networks and systems, detecting events and reporting on any and all threats that are directed against systems.
The CS specialist is expected to collaborate with leadership to develop metrics based on situational awareness and threat monitoring at an enterprise level that will be reported based on the approved plan and supporting checklists.
The CS specialist must be able to rapidly address vulnerabilities alerted primarily by an industry recognised vulnerability management system.
Responsible for the administration and the execution of a Security Awareness Platform and will be the single point of contact for the co-ordination of audit requirements asked of the Security Operations Team.

Deliver day-to-day managed security services (MSS), related to Microsoft cloud and data security controls. Critical in this regard is to execute according to Standard Operating Procedure (SOP) expectations and meeting all related service level agreements (SLAs).

Service Operations
Ensure that the MSS is delivered according to SOPs and SLAs, that there is compliance to organisational and customer standards and that customer policies and rules are adhered to
Provide feedback and updates to customers and Liquid Intelligent Technology stakeholders

Service Delivery
Engage with cross-functional teams and customers ensuring feedback is given timeously
Manage vendors to ensure roll out of service meets specific requirements
Ensure that customer relationships are upheld and improved

Customer Incident Escalations Management
Acknowledge, understand and participate in customer Operations and Service Delivery issues and SLA breached disputes and ensure that resolution of all queries is addressed as is required
Co-ordinate with the respective internal departments and manage the escalation to resolution speedily
Provide progressive and accurate updates to internal stakeholders about logged incidents to ensure feedback is given to the customer
Support escalations to vendors/3rd party contractors until the resolution of incidents or platform issues
Ensure that all Action Plans that may arise from the customer meetings are completed within the timeframes committed to customer to maintain high levels of customer satisfaction
Review inputs to Incident Reports and RCAs to ensure that accurate information is provided to the customer once incidents are resolved
Assist in resolving Critical Situations / Major Events to ensure speedy resolution of queries
Participate and provide inputs during yearly service and process reviews. Also assist in the development of SOPs
Pro-Actively identify, detect and advise clients of potential security breaches, and provide thought leadership as Subject Matter Expert (SME)

Innovation/Continuous Improvement Program
Participate in developing technology, process and procedure efficiencies for MSS, to improve the overall posture of services and customer satisfaction
Participate in training and development programs to ensure service is always at the highest levels
Identify and assist in rectifying root cause findings on Process or Technology within Security Operations, to help solve problems and improve the maturity of services
Collaborate with all relevant stakeholders to develop reports to drive efficiencies across the various departments internally, to improve the posture of service delivery
Keep up to date on security advisories, to provide related guidance to co-workers and customers

Health checks, day-to-day operational management including dealing with specific corrective actions and configuration requests, as well as administration, monitoring and reporting as per below:

• Take a supportive role in projects, managing less experienced engineers to ensure a successful outcome to the project
• Provide technical support on networking security products for lower tier engineers at customers and in LIT
• Implement, upgrade and maintain products in scope for this position
• Stays abreast with latest cyber security product developments and bring new technology solutions to the table in order to meet customer requirements more effectively
• Implement and run security awareness campaigns including mail phishing and online learning management systems
• Create meaningful reporting to allow management to make informed decisions around risk reduction and future

investment

• Provides support for computer network exploitation and defence techniques to include deterring, identifying and

investigating computer and network intrusions; providing incident response and remediation support

• Identifying vulnerabilities in the company IT assets
• Provides technical support for continuous monitoring, computer exploitation and reconnaissance, target mapping and profiling and network decoy and deception operations in support of computer intrusion defence operations
• Researches and maintains proficiency in open and closed source computer exploitation tools, attack techniques, procedures and trends. Performs research into emerging threat sources and develops threat profiles
• Provides technical support for a comprehensive risk management program identifying mission critical processes and systems; current and projected threats; and system vulnerabilities
• Run customized reports from the Vulnerability Management tool and ensure that scheduled reporting is running effectively
• Respond to and resolve tickets logged to Vulnerability Management service desk

Qualifications
Degree or diploma advantageous
One or more industry Cybersecurity Certifications: CISM, CISA, CISSP-ISSEP, CISSP-ISSAP, GIAC Certified Incident Handler (GCIH), Certified Computer Security Incident Handler (CSIH), CEH, OSCP, CompTiA Security Plus
Vulnerability management certification

Experience
Proven track record of effectively delivering MSS for the stated security solutions at customers
Priority will be given to candidates with Qualys and Tenable Nessus experience. Actual experience and specific client references regarding the above-mentioned areas of specialisation is mandatory.
2 years' experience in large scale security operations using cyber security products
2 years' experience on at least two firewalls
Evidence of capability to optimise the stated security solution deployments at customers
Experience responding to day-to-day cloud and data requests at customers with a proven record of successful relationship building

Knowledge, Skills
Knowledge of overall ICT solutions, in particular cloud and data security architectures
Skilled at managing and resolving issues related to the technologies and working with operational security teams and with working with both ICT and security teams

Liquid Tech (Pty) Ltd.