Senior Offensive Security Specialist - Sandton, South Africa - M and M Consultants

Description

As an advanced threat hunter, the Principal Offensive Security Specialist continuously detects, analyzes and combats advanced threats. The job role includes detecting vulnerabilities and mitigating the associated cybersecurity risk before it affects customers.

• Provides threathunting technical and thought leadership to customers executive stakeholders, SOC teams, and blue/red teams.
• Responsible for daytoday threat hunting and cyber intelligence monitoring and threat analysis in the Nexio SOCs.
• Proactively finds vulnerabilities in the customers' estate. He/She has an overview of the endpoints on the system such as all the IoT devices, phones, IP addresses and desktops, and they help IT teams use the right tools to detect and mitigate threats.
• Understands what normal behaviour and patterns look like on the customers' network.
• Formulates and develops logical theories on how threat actors could access a network or exploit a system to gain access to specific critical information.
• Oversees breach and attack simulations.
• Responsible for proactively discovering new attacks, or attacks currently underway, and then working with other expert cyber security resolver teams to contain and remediate the impact as quickly as possible.
• Uses advanced security monitoring techniques and advanced cyber systems/tools.
• Should a breach occur, he/she helps minimize damage, recover compromised data and preserve evidence for legal action.
• Lead Purple Teaming hence performs threat hunting with customers to proactively reduce the attack surface.
• Success will rely on the rapid development and deployment of new 'data hunting' use cases and the use of big data analytics.
• Responsible for proactively discovering new attacks, or attacks currently underway through the use of advanced security monitoring techniques and advanced cyber systems/tools.
• Complex Active Monitoring & Triage observation, triage, correlation analysis/investigation and closure of realtime information complex security events including false positive identification.
• Data Hunting Technology Management advanced configuration and development of highend data hunting technologies.
• Participates in the response, triage and escalation of security events affecting the customers' information assets and activities with the Incident Response team.
• Provides input into finetuning operational runbooks to improve the efficiency of the cyber security team's detection and response capabilities.
• Provide threathunting technical leadership and support during highseverity security incidents and investigations.
• Optimizes the processes to respond to and investigate detected attacks.
• 10 years Penetration Testing and Red Teaming experience in an established Security Assessment Team, and Security Operations across sectors

Job Types:
Full-time, Temporary


Ability to commute/relocate:

• Sandton, Gauteng: Reliably commute or planning to relocate before starting work (required)