Senior Cyber Incident Response Analyst(South Africa)

About Us

Integrity360 is the largest independent cyber security provider in Europe, with a growing international presence spanning the UK, Ireland, mainland Europe, Africa and the Caribbean. With over 700 employees, across 12 locations, and six Security Operations Centres (SOCs)—including locations in Dublin, Sofia, Stockholm, Madrid, Naples and Cape Town—we support more than 2,500 clients across a wide range of industries.

Over 80% of our team are technical experts, focused on helping clients proactively identify, protect, detect and respond to threats in an ever-evolving cyber landscape. Our security-first approach positions cyber resilience as a business enabler, empowering organisations to operate with confidence.

At Integrity360, people come first. We invest heavily in learning, development and progression, fostering a dynamic culture where innovation, collaboration and continuous growth are at the heart of what we do. If you're ready to take your cyber security career to the next level, we’d love to hear from you.

Job Role 

The Senior Cyber Incident Response Analyst will work within established methodologies to perform a variety of Incident Response related activities for new and existing customers, to include responding to cyber incidents, proactively hunting for adversaries in customer networks, conducting detailed Intrusion analysis – host and network, malware reverse engineering, Digital forensics and Cyber Threat Intelligence services.

Proactive client services, such as compromise assessments and evaluating and recommending tools and technology for incident response are also in scope. Demonstration of a strong comprehension of malware, emerging threats and adversary TTPs will be critical to success.

Responsibilities

• Customer focus - have the ability to work directly with customers and demonstrate services delivered to customers in a face-to-face setting when required.
• You will have the capacity to multitask on several technical and operational issues simultaneously.
• Have a very good understanding of customer issues and you are able to empathize with customers as to their current situation.
• Ability to think through difficult issues and provide advice or when necessary.
• A clear understanding of the ITIL processes.
• Ability to work on assignments requiring sound judgement in resolving issues or in making recommendations.
• Initiative to drive all incidents to resolution, ensuring timely participation by all stakeholders.
• Without hesitation when required, escalate issues to upper management, to include C-Level managers, in accordance with prescribed procedures.
• Incident Management and Incident communication experience.
• Experienced in meeting deadlines while following processes and procedures.
• Capable of working with other teams that challenge your processes and procedures.
• Understanding of ITIL, SANS, PCI DSS, ISO 27001 and ISO20000.
• Logical thought mindset and experience developing reusable processes / data architectures.

Requirements

• Host Intrusion Analysis:
  • Windows (Endpoint and Server)
  • Unix

• Network Intrusion Analysis.
• Familiarity with categories of Malware and Malware Reverse Engineering techniques.
• Experience working with security tools for the purposes of detection, diagnosis, containment and remediation.
• Extensive knowledge of Windows server systems.
• Experienced in creating and maintaining a security incident response plan (IRP).

Certifications/Qualifications

• SANS: Qualifications in Security Essentials (GSEC), Hacker Techniques & Incident Handling (GCIH), Host (GCFE/GCFA) & Network (GNFA) Forensics, Malware Analysis (GREM) and any Digital Forensics specializations.
• EC Council Certifications.
• A strong team player with a flexible approach.
• Can demonstrate consistency in work attitude.