Secops Mdr Analyst - Sandton, South Africa - BUI

BUI

Verified Company

Sandton, South Africa

3 weeks ago

Posted by:

Thabo Mthembu

beBee Recruiter

Description

_Join a team of superheroes_

BUI is an award-winning IT consultancy delivering cloud solutions and professional services worldwide, with a specialized focus on the Microsoft Azure platform, and Cisco and Palo Alto Networks technologies.

Founded in 2000 and a part of the First Technology Group since March 2015, BUI has an international presence and highly qualified consultants who embrace three core principles: Innovation, Delivery, and Results.

_We value your personality and passion_
For us, personality and passion are an essential part of our culture.

You'll always be supported and looked after by your BUI family, but you will also have a lot of responsibility for your own work, meaning that problem solving and working independently is something we encourage.

We only employ passionate, best-in-class experts to help us give our customers what they deserve: individual attention, and impeccable service.

We are currently hiring a SecOps MDR Analyst based in Free State, Cape Town or Johannesburg.

_As a SecOps MDR Analyst you will be offered:_
- _The opportunity to work with some of the market's best__
- _Development opportunities_
- _Annual Incentive Scheme_

_Let's tell you about the __SecOps MDR Analyst_
_role at BUI_***BUI is seeking a highly motivated SecOps MDR Analyst with a passion for Security technology and process.

A BUI SecOps MDR Analyst is a cybersecurity professional who is responsible for monitoring, detecting and responding to cyber threats within a group of customers.

In this role you will be tasked to monitor and analyze security logs and events from various devices and systems in an organisation's network, identifying and investigating potential security incidents, and implementing measures to contain and mitigate them.

You will also be tasked with implementing actions to increase security and reduce threats and vulnerabilities in a client environment.

A special emphasis is placed on using
Microsoft Products to achieve these goals.

_Duties and Responsibilities:
_
The function of a BUI Cyber MDR Analyst is to assist customers and consult on a variety of Managed detection and response Criteria, with a special emphasis on the Microsoft Defender Suite of Products

A primary function of the BUI MDR analyst would be to advise customer/s on the steps and improvements to make to improve security posture in the customer's organisations. Also providing detailed reports and recommendations for improving security posture.
Monitoring and analysing security logs and events from various devices and systems in the customers endpoint environment.
The MDR analyst would also carefully monitor data coming from the Defender suite of products. Determining where potential IOA's and IOC's may be lurking and performing threat hunting activities to uncover any untoward activities.
Identifying and investigating potential security incidents, determining their scope and impact, and implementing measures to contain and mitigate them.
Working closely with other members of the BUI SOC security team to ensure timely and effective incident response.
Staying up to date with the latest cyber threats and adapting the customers Cyber MDR strategies accordingly. Also staying up to date with the everchanging Microsoft Defender suite of products.
Contribute to process improvements within the team.
Working with other BUI teams such as SOC, IT, and BUI Major incident response team to understand the scope of an incident and provide them the required information and assistance.
Reviewing and tuning MDR and Defender security tools for improved detection and response/automation capabilities.
Collaborating with external partners and vendors to improve threat intelligence and incident response capabilities.
Prioritizing and escalating incidents based on their potential impact and risk to the Customers Business
Collaborating with Customers teams, advising and assisting to perform root cause analysis on incidents, when required.
Providing input and advice on Developing and implementing incident response procedures and procedures.
Participating in incident response drills and exercises to test and improve incident response capabilities.
Continuously reviewing and improving incident response processes and procedures to ensure they are aligned with industry best practices and standards.
The MDR Analyst would also be required to present the findings and recommendations to the customers and management teams in their respective customer environments.

**_

Requirements:

_**-
Endpoint security:The MDR Analyst should have experience with endpoint security technologies, such as firewalls, intrusion detection and prevention systems, and endpoint protection solutions.

-
Modern EDR capable systems: The MDR Analyst should have experience with the latest generation EDR solutions, such as Microsoft Defender for Endpoint
-
Incident response: The MDR Analyst should ha