Life Healthcare is seeking a Security Analyst, based at Head Office, within the Information Security Office. The Security Analyst performs two core functions for the enterprise.
The first is the day-to-day operations of the in-place security solutions while the second is the identification, investigation, and resolution of security breaches detected by those systems.
Secondary tasks may include involvement in the implementation of new security solutions, participation in the creation and or maintenance of policies, standards, baselines, guidelines, and procedures as well as conducting vulnerability audits and assessments.
The Security Analyst is expected to be fully aware of the enterprise’s security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals.
Critical Outputs
Strategy & Planning
- Participate in the planning and design of enterprise security architecture, under the direction of the Security Architect.
- Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures) under the direction of the IT Security Manager, where appropriate.
- Participate in the planning and design of an enterprise business continuity plan and disaster recovery plan, under the direction of the IT Security Manager, where appropriate.
Acquisition & Deployment
- Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
- Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security.
- Perform the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’s security documents specifically.
Operational Management
- Support efforts to identify email security and engineering problems and provide solutions.
- Maintain operational configurations of all in-place security solutions as per the established baselines.
- Monitor all in-place security solutions for efficient and appropriate operations.
- Review logs and reports of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices). Interpret the implications of that activity and devise plans for appropriate resolution.
- Manage communications with internal/external customers and engage with other internal and external parties to get and share information to improve processes and security posture.
- Provide on-call support for end users for all in-place security solutions.
Requirements
- Diploma or university degree in Computer Science or Information Technology.
- Minimum of 3 years relevant work experience.
- One or more of the following certifications:
- CompTIA Security+
- GIAC Information Security Fundamentals
- Microsoft Certified Systems Administrator: Security
- Email Security, Cloud Gateway Fundamentals
- Email Security, Cloud Gateway Advanced
- Microsoft Azure Certifications (AZ-900; AZ-500; AZ-104)
- Extensive experience with Mimecast and Microsoft and Azure Security.
- Experience in Active Directory, LDAP, Kerberos authentication.
- Experience with log ingestion, building pipelines, log enrichment, log parsing.
- Strong understanding of Email Security, Cloud Gateway, Targeted Threat Protection, DMARC Analyzer and Awareness Training.
- Nice to have experience with Endpoint Security, vulnerability management and Secure Web gateway technologies.
- Respond to customer inquiries and troubleshooting technical issues via phone or email.
- Strong understanding of IP, TCP/IP, and other network administration protocols.
- Strong understanding of Microsoft Enterprise suites.
- Familiarity with Incident Response process.
- Independent and takes ownership of responsible functions.
Competencies
- Planning and organizing
- Deadline driven
- Ability to handle pressure
- Innovative
- Sound Troubleshooting
- Process and Procedures
- Building relationships
- Attention to detail
- Resilience
- Creative
- Report writing
Email: careers@lifehealthcare.co.za
Closing date: Wednesday, November 27, 2024
Internal applicants: Before making an application, you are requested to discuss your application with your line manager. External candidates will also be considered.
Life Healthcare is an Equal Opportunity Employer.
Thank you for your interest in this opportunity. Kindly note that only shortlisted candidates will be contacted. Applicants who have not been contacted within two weeks of the closing date of this advert should consider their application as unsuccessful.