Principle Security Analyst-Microsoft Security

  • Full Time
  • Sandton
  • Jun 30, 2022

The Security Principle Analyst works within the Security business unit and deals with the most complex security and cyber threats. The primary responsibility of this position is to research and identify potential threats and vulnerabilities in order to minimise the window of attach and limit the amount of time an adversary must gain access to the network before they are discovered

The Security Principle Analyst works within the Security business unit and defines the strategy and operating model for dealing with complex cyber security threats. The primary responsibility of this position is to define the approach to dealing with Cyber Security risks both for our clients and internally for the company

The Security Principle Analyst will facilitate the access to tools and research through our partners to design and develop platforms, systems, and services that will assist in proactive identification of potential threats and threat actors in order to minimise the window of attack and limit the amount of time an adversary has to gain access to a networks before they are discovered.

Job Description

Contribute to threat intelligence strategy

The Security Principle Analyst will play an important role in conceiving strategies for clients, planning the implementation of the strategy and delivering it. They use their creativity and intellectual rigour to assist with the development of the threat intelligence strategy that will drive the business to become proactive, focussed and preventative. These individuals will embed the use of intelligence into core business by aligning the development of intelligence, threat feeds to formal decision making. This employee will measure the effectiveness of cyber hunting capabilities to ensure appropriate plans are in place to address lower performance and ineffective practices.

These will include but are not limited to:

  • Producing cyber threat intelligence
  • Defining cyber security strategy for development
  • Performing competitive analysis and comparison of threat intelligence, breach detection, and incident response solutions
  • Providing input and expertise to product development lifecycle Thought leadership and innovation for future trends in cyber security
  • Acting as the company representative at company Security Working Group for cyber security and threat intelligence
  • Sharing with company both strategically and operationally
  • Formulating the strategy and resultant roadmap for next generation RTM (Realtime Threat Management) including automation; vulnerability analysis and incident Response
  • Develop relevant platforms, systems, and services

The Security Principle Analyst will facilitate the design and development of platforms and systems that allow Security Analysts to produce intelligence outputs to provide an accurate depiction of the current threat landscape and associated risk through the use of client, community and open source reporting

The Security Principle Analyst will also assist the Security Product development team as a subject matter expert defining the requirements for managed security services where cyber intelligence is required.

Ensure threat intelligence management

The Security Principle Analyst puts in place programs that enable Security Analysts to collect, organise, analyse, interpret and summarise threat and vulnerability reports and data to provide actionable intelligence and situational awareness to decision makers. Together with our partners, the Security Principle Analyst will build a threat intelligence repository to understand threat actor tactics, techniques and procedures (TTP).

They create partnerships and relationships with 3rd parties for intelligence sharing, evaluating threat intelligence providers, platforms, and data feeds to drive greater business value. They provide subject matter expertise, technical deliverables oversight of strategic cyber projects and initiatives to enhance and improve cyber threat intelligence, breach detection, and incident response capabilities and maturities

Behavioural skills

The Security Principle Analyst demonstrates strategic thinking ability and a good business understanding. They are thought leaders who are able to establish and advise on pre-emptive and practical plans to counter potential threats. They display critical thinking and contextual analysis ability and are proactive in their approach. These individuals demonstrate excellent verbal and written communication skills and the required interpersonal skills to engage with a variety of internal and external stakeholders.

Competencies:

In this position you will be required to:

  1. Develop a threat intelligence strategy to support the business to become proactive, focussed and preventative and develop and implement appropriate plans to address lower performance and ineffective cyber hunting practices
  2. Produce intelligence outputs, threat and vulnerability reports, data and actionable intelligence and situational awareness to facilitate decision making
  3. Research and identify potential threats and vulnerabilities and develop action plans to counter emerging cyber intelligence threats
  4. Produce threat warnings, real-time situational and predictive analysis and the synthesis of all-source information and data
  5. Participate in meetings and produce technical reports on intelligence threats and mechanisms depicting the value of the cyber intelligence function
  6. Effectively manage a team of Security Cyber Analysts, their resources and overall performance

Required Skill Set:

Microsoft Security, Vulnerability Management, End Point Protection, Security Operations Centre, Security Incident and Event Management, Data Loss Prevention and Information Protection, Managed EDR/XDR Services (Various vendors)

Required certifications:

  • CSSP – ISC2
  • CYSA, CASP – Comptia
  • Vulnerability Management and EDR/XDR Certi cations – Vendor Related
  • Microsoft: AZ-500/800/801, SC 100/200/300/400/900. MS100 / 101 / 500

Work experience required

  • 10 years work experience
  • 5+ years’ experience required in SOC and or Cyber roles and IT Security and/ or related function in a medium to large ICT organisation, preferably IT service provider. Excellent client service orientation
  • Excellent at solving problems and can use your initiative to drive innovation
  • Excellent process management and leadership experience
  • Excellent Cyber Risk management experience
Upload your CV/resume or any other relevant file. Max. file size: 2 MB.


You can apply to this job and others using your online resume. Click the link below to submit your online resume and email your application to this employer.