Offensive Security Analyst (m/f)

Duties

• This role is responsible for continuously assessing and analyzing threats to the Capricorn Group’s IT landscape
• Assisting the CISO in delivering the Cyber Resiliency Program (CRP) relating to technical security capabilities
• Analyzing the security of new or existing IT systems and their adherence to hardware and software security best practices
• Establishing and maintaining secure configuration standards for all IT systems and measuring and reporting on compliance to such standards
• Conducting assessments of threats and vulnerabilities; determining deviations from acceptable configurations and policies; assessing the level of risk; and developing and/or recommending appropriate mitigation countermeasures
• Technical specialist to the Security Operations Centre
• Investigating, analyzing, and responding to cyber incidents
• Analyzing threat information from a variety of sources to identify, analyze and report events that occur or might occur within the IT landscape to protect the group from cyber threats
• Threat hunting
• Adversary identification and analysis and executing threat modeling against most likely attacks
• Applying sophisticated attack techniques and assessments to test the group’s cyber defenses on a regular basis

Requisites

• 5 years’ experience in designing, implementing, maintaining, and administering IT security infrastructure hardware and software
• 5 years’ experience in vulnerability management and offensive security techniques
• Working knowledge of PCI-DSS & SWIFT CSP
• Working knowledge of Information Security frameworks
• Working knowledge of privacy regulations is an advantage
• B. Com/B.Sc. Information Systems, Computer Science, Engineering or equivalent 3 year degree
• OSCP, OSEP, OCED, OSWP preferred
• CISSP, CISM, and/or CISA an advantage

Notes

• Only shortlisted applicants will be contacted