Tier 2 SOC Analyst
Netsurit
Level 2 SOC Analyst
Location: Woodmead, Sandton
Job Type: Full-Time
Overview
We are hiring a proven, technically strong Level 2 SOC Analyst who can operate independently under pressure, take ownership of incidents, and drive them to resolution without constant supervision.
You will be expected to lead investigations, make defensible decisions, and close security gaps proactively. If you require step-by-step guidance or lack real-world incident handling experience, this role will not be a fit.
Key Responsibilities
- Own incident response end-to-end: triage, investigate, contain, eradicate, and document without escalation unless absolutely necessary.
- Perform deep-dive forensic analysis across endpoints, identities, cloud, and network layers.
- Correlate data across SIEM, EDR, IAM, and network tools to identify advanced threats and attacker behaviour.
- Eliminate false positives through tuning and optimization — not just escalating alerts.
- Conduct root cause analysis and produce clear, technically sound reports with actionable remediation steps.
- Actively hunt for threats using hypothesis-driven and intelligence-led approaches.
- Develop, maintain, and enforce high-quality playbooks — not generic documentation.
- Drive measurable improvements in detection capability and SOC efficiency.
- Mentor junior analysts, but without compromising your own output or performance.
- Challenge weak controls and poor practices — passively following process is not acceptable.
- Continuously tune and optimize SIEM rules and detection logic in collaboration with engineering teams.
- Operate effectively during high-pressure incidents, including after-hours escalation when required.
Required Skills and Qualifications
- Minimum 5+ years of hands-on SOC / incident response experience (not general IT support).
- Demonstrated experience handling real-world security incidents independently.
Strong working knowledge of:
- SIEM (e.g., Sentinel, Splunk)
- EDR/XDR (e.g., Microsoft Defender)
- IDS/IPS
- Threat intelligence platforms
Deep understanding of:
- Windows and Linux internals
- Networking fundamentals (TCP/IP, DNS, etc.)
- Identity-based attacks and lateral movement techniques
Proven ability to analyse:
- Logs, memory artifacts, process execution, and authentication events
Experience with:
- Microsoft 365 Defender, Intune, Azure AD / Entra ID
- Working knowledge of MITRE ATT&CK framework and ability to map detections accordingly.
- Scripting/automation capability (PowerShell, Python, or KQL is expected — not optional).
Performance Expectations (Non-Negotiable)
- You must be able to handle multiple incidents simultaneously without loss of quality.
- You must produce clear, concise, and technically accurate reports — poor documentation will not be accepted.
- You are expected to reduce noise, not contribute to it.
- You must demonstrate initiative, ownership, and accountability at all times.
Preferred Qualifications (Strong Advantage)
Certifications such as:
- CySA+, CEH or equivalent
Microsoft Certifications:
- AZ-104
- SC-200
Experience with:
- Azure security and cloud-native threats
- Detection engineering and SIEM rule creation
- DevOps environments
Familiarity with frameworks:
- NIST, CIS, ISO 27001
What Will Disqualify You
- Only theoretical knowledge without hands-on incident response experience
- Inability to explain past incidents you have handled in detail
- Reliance on escalation instead of investigation
- Weak understanding of logs, attack techniques, or detection logic
Application Requirements
Submit your CV along with clear examples of incidents you have handled, including:
- Tools used
- Investigation approach
- Outcome and remediation
Artificial Intelligence Innovation:
Join Netsurit at the forefront of AI transformation—where technology meets ambition. Help us design, implement, and scale intelligent solutions that empower our clients to automate processes, uncover insights, and accelerate growth. Leverage tools like Microsoft Copilot, Azure AI, and custom machine learning models to turn data into meaningful business outcomes. Be part of a team thats shaping the future of AI-powered innovation.
Note to Agencies: Principals only. No recruiters, no agencies, no unsolicited services.
Vacancy posted 23 days ago
Similar jobs that could be interesting for youBased on the Tier 2 SOC Analyst in Johannesburg, Gauteng vacancy
- ...Junior Security Analyst (SOC) Location: Woodmead, Sandton Job Type: Full-Time Are you passionate about cybersecurity, threat detection... ...administration, or technical support roles. Minimum 1–2 years' hands-on experience in a SOC or security operations environment...
- ...JUNIOR SOC ANALYST Location: South Africa / Global Delivery Environment Industry: Cybersecurity / Managed Services / Enterprise Operations A leading workforce solutions and enterprise delivery organisation is seeking a motivated Junior SOC Analyst to...
- ? VETERINARIAN | SANDRINGHAM A leading scientific and public health organisation is seeking an experienced Veterinarian to provide veterinary oversight across animal production, laboratory, and research programmes. ? Minimum Requirements: ? BVSc/MVMCH Degree (NQF...
- ...Purview Understanding of SIEM/SOAR, MITRE ATT&CK, IAM, and cloud security principles ~ Experience: ~4+ years in a Security Analyst / SOC / Cybersecurity role ~ Experience securing Microsoft 365 and Azure environments ~ Proven incident response and threat...
- ...Priority Location : South Africa and Latin America Working Hours : 9AM - 5PM (Mon - Fri) UK time Salary Range : $1,500 - $2,000 USD ($) per month (The final offer is at the client’s discretion and depends on the candidate’s interview result, skills, and experience...
- ...strategic decision-making. Working closely with the Financial Analyst, you'll help turn financial data into meaningful business insights... ...and analysis as required What We're Looking For: Minimum 2 years' experience in a Financial Analyst or Financial Accountant...
- Ensuring that all welding activities are conducted according to approved procedures and industry standards. Performing visual and other inspections as required. Finding and recording any welding defects or non-conformances. Keeping accurate records of inspection...
- ...recruiting in the following: Actuarial: Life, Short-Term, Health, Pensions, and Quantitative Data & Analytics: Data Scientists, Data Analysts (Python, R, SQL, Machine Learning) Risk: Credit Risk, Market Risk, Model Risk, and Operational Risk Analysts Pricing:...
- ...requires a strong analytical mindset and the ability to translate complex healthcare data into clear, actionable insights. The Actuarial Analyst will be exposed to hospital pricing, tariff structures, and risk management, with a specific focus on Alternative Reimbursement...
- Key Responsibilities Analyse hospital pricing and tariffs, contributing to the development of Alternative Reimbursement Methods (ARM) Develop and maintain reports to monitor the effectiveness of ARM initiatives Identify and track key risks related to hospital event...
- ...Role Purpose The Senior Business Analyst (BA) acts as a key liaison between business stakeholders and technology teams on large, high-risk, and complex projects. The role is responsible for understanding organisational challenges, identifying opportunities, and recommending...
- ...experience as a Dialer administrator in a Contact Centre is required ~ Familiarity with reporting to a sales and service Operations. ~2-3 years experience working as a Dialer administrator in a sales Outbound Contact Center. ~ Experience in working with Microsoft BI...
- Our client is a growing mining organisation seeking a commercially focused Financial Analyst to support strategic decision-making across operations. You will work closely with leadership teams to analyse performance, identify opportunities, and provide actionable recommendations...
- ...An established industrial and engineering organisation is seeking a highly analytical and detail-oriented Sales Analyst to join its commercial team in Johannesburg. This role is responsible for the administration, maintenance and analysis of customer contracts, pricing...
- ...We're seeking a Senior Business Analyst to join our team! If you're a mastermind at analysing data, identifying trends, and creating solutions... ...Projects Working knowledge of (OAS) Open API specification 2.0 and 3.0 Able to read and interpret JSON and XML files...
- What You’ll Be Doing Deliver monthly and quarterly valuation processes Support IFRS 17 calculations and reporting requirements Contribute to statutory reporting and embedded value analyses Perform reserving and liability assessments Conduct experience...
- ...JOB DESCRIPTION CREDIT ANALYST / LOANS ANALYST POSITION DETAILS Position Title: Credit Analyst / Loans Analyst Department: Credit / LendingEmployment Type Permanent: GradeC2 C3 / D1 Reporting To: Credit Manager / Lending Manager Location: Johannesburg...
- Applicants must have the following requirements: Must have a Vibration Analysis Category II Certification. Must have at least 5 years of practical vibration analysis experience. Must have strong knowledge of rotating equipment fault diagnosis, including bearings, misalignment...
R 1,000,000 pa
...We are looking for an experienced Feature Analyst / Senior Business Analyst to join a dynamic Agile delivery environment focused on building... .... Working knowledge of: Open API Specification (OAS) 2.0 & 3.0 JSON XML ~ Understanding of: Behaviour driven...- ...Lead Business Analyst Investment Platforms Are you a seasoned Business Analyst with deep investment experience, ready to lead impactful change in a dynamic financial services environment? Join a forward-thinking team where your expertise will shape the future of investment...
- A marketleading organization within the manufacturing and wholesale sector, based in Sandton, is seeking a Senior Business Analyst to join its Head Office team. This role plays a central part in driving business improvement, ERP optimisation, and operational transformation...
- This company is known for its strong focus on innovation, data-driven decision-making, and impactful healthcare solutions. You will be part of a collaborative environment where actuarial insights play a key role in shaping pricing strategies, risk management frameworks,...
- ...Job Description: An exciting opportunity exists for a Senior Quantitative Analyst to lead complex modelling initiatives within an enterprise risk environment. This role focuses on building, owning, and enhancing quantitative models that support critical risk and regulatory...
- If you are a Business Analyst who enjoys turning complexity into clarity and identifying smarter ways of working, this opportunity offers the platform to make a real impact. Join a leading manufacturing and wholesale organisation where operational excellence, system...
- ...specialist interest in Aesthetic Medicine to join their professional team on a permanent part-time basis . The role will begin with 2 days per week , with the possibility of additional days over time. Starting date: ASAP . Advanced training will be provided ;...
- ...The Business Analyst will own requirements definition and product backlog specification across the delivery lifecycle. The successful candidate will act as the connective tissue between clinical stakeholders, solution architects, and the engineering team, translating clinical...
- ...standards. An incredible opportunity is now available for a Pricing Analyst responsible for analyzing, managing, and optimizing pricing... ...Administration Statistics or Data Analytics Minimum 2-5 years' experience in procurement price analytics. Manufacturing...
- ...document; Visiting of clients as financials may need to be reviewed at the client premises; Process should be completed within 1 to 2 days, and then review with the GCM; If the risk is high, AFS and or guarantee is requested once discussed with the GCM; Ensure...
- ...Data Analyst (Client Strategy & Presentations) Employment Type: Full time, independent contractor Work Model: Remote Work Hours... ...completeness and building baseline structural snapshots. Phase 2: Strategy Modeling: Partner with leadership to run advanced stress...
- ...Marketing Analyst About RSPCA Insurance In Australia, the RSPCA needs no introduction. It is the country's most trusted and recognised name in animal welfare. As an independent, community-based charity operating in every state and territory, the RSPCA runs animal...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Tier 2 SOC Analyst. Be the first to apply!
