Cyber Security Operations Engineer

Location: Cape Town | Work Type: Hybrid | Contract Duration: 6 months | Job ID: J107192 About our client: Our client is a global investment advisory firm focusing on long-term value creation through investment strategies. They work with a diverse group of institutional partners and pride themselves on their collaborative, sustainable, inclusive culture and performance. You are welcome to go into the office daily or to take advantage of their hybrid in-office / remote benefit. This company places significant investment in employee wellness, their benefits which are on top of generous basic salaries, are industry leading in their generosity. Our client is large, offering fantastic career development opportunities but also very dynamic, they track as many metrics as possible in order to continuously improve - they spare no expense on the tools to do so. Automation, AI and R&D are pillars of their business framework which ensures you should never be at risk of falling behind or getting stuck working with old legacy software. Culturally they are very cosmopolitan and diverse, you will be working with the best globally. What you will be doing: Manage daily security operations, including handling support tickets, monitoring security tools (internal and managed SOC), investigating incidents, major incident response, operating runbooks, and monitoring threat feeds. Configure and operate core security tools (EDR, SWG, UEBA, SEG, PAM, SSO), implement technical security standards, provide input on security posture, and manage the vulnerability management process. Offer technical security advice for projects (control design, process review, SSDLC input), contribute to technical security designs and policies, ensure the secure implementation of cloud services, and research emerging threats/vulnerabilities. Support ongoing security awareness programs through staff training, running phishing tests, and communicating new/emerging threats via intranet announcements. What our client is looking for: Minimum 5 years in a Security Operations or similar role, demonstrating strong technical expertise across security monitoring, detection, prevention, and control systems. Hands-on experience with security incident response planning and ensuring its ongoing effectiveness. Expertise in Azure, M365, OWASP Top 10, SANS Top 20, and the MITRE Att&ck framework (Microsoft or SANS certifications are desirable). Knowledge of industry standards (e.g., ISO 27001:2022), data handling best practices, and expertise in global data protection laws (e.g., GDPR), especially for the financial sector. Ability to stay current with evolving threat actor Tactics, Techniques, and Procedures (TTPs) and necessary mitigation mechanisms. A passion for creating secure, scalable, and resilient systems; strong problem-solving skills; a desire to be part of a highly effective, service-orientated cyber security function; and a commitment to ethics, compliance, and urgency. For a more comprehensive list of opportunities that we have on offer, do visit our website - https://www.parvana.co.uk/careers Requirements Security Operations Engineer, Cyber Security, Cape Town, Hybrid, Incident Response, EDR, SWG, UEBA, PAM, Azure, M365, MITRE Att&ck, GDPR, ISO 27001, Financial Sector