Standard Bank Group is a leading Africa-focused financial services group, and an innovative player on the global stage, that offers a variety of career-enhancing opportunities – plus the chance to work alongside some of the sector’s most talented, motivated professionals. Our clients range from individuals, to businesses of all sizes, high net worth families and large multinational corporates and institutions. We’re passionate about creating growth in Africa. Bringing true, meaningful value to our clients and the communities we serve and creating a real sense of purpose for you.
Job DescriptionDevelop, lead and mature the implementation of a threat hunting programme within the Cyber Security Operations Centre (CSOC) in line with the InfoSec strategy and roadmap. Guide, support and direct threat hypothesis, information assimilation and the designing, scoping and executing of threat hunts, reviewing and guiding the remediation processes. This hands-on role requires deep technical knowledge of security monitoring, security operations, network and systems analysis, threat modelling and threat detection. Responsible for leading and managing a team of technical security Threat Hunters and Cyber Engineers, contributing to the mentoring, coaching and growth of the team.
QualificationsA degree Information Technology is required.Experience:
Collaborating with Threat Intelligence and Offensive analysts to identify priority cyber threats, designing strategies for complex cyber hunts and the execution thereof. Cyber Hunts should be designed and executed based on prioritized complex hypothesis-based threat hunting, including the design and documentation thereof.Experience in a CSOC environment, including monitoring, detecting, and responding to security incidents, familiarity with SIEM tools such as Microsoft Sentinel would be is advantageous.Experience or exposure to penetration testing and red teaming, with a focus on identifying and exploiting system vulnerabilities, is advantageous.Experience with cloud platforms like Azure and AWS, including cloud security best practices and managing cloud resources, would be beneficial.Seeking an individual with a solid engineering background, with a particular focus on proficiency in the Linux operating system, including system management, security, and troubleshooting.Experience or exposure to incident response, including identifying, analyzing, and mitigating security incidents, would be beneficial.Exposure to automation or scripting with languages like Bash, Python, or PowerShell, to streamline security tasks or integrate tools, is a plus.Additional Skills:
Offensive Skills (Pen Testing, Red Teaming)Cloud Skills (Azure / AWS)Cyber EngineeringIntegration / Automation / Scripting (Bash, Python, PowerShell)Incident Response ExperienceAdditional Information
Behavioural Competencies:
Articulating InformationChallenging IdeasDeveloping StrategiesDirecting PeopleEmpowering IndividualsInterpreting DataMaking DecisionsProviding InsightsShowing ComposureTaking ActionTeam WorkingUnderstanding PeopleTechnical Competencies:
Information SecurityInformation Technology ArchitectureIT KnowledgeIT Risk ManagementIT Strategy & PlanningService Management ProcessesTechnical AnalysisVendor Evaluation and Management