15 Oct
Gijima Holdings
Pretoria
Reference: JHB000435-CU-1
Gijima Staffing Solutions is responding to a tender: We are seeking a Incident Response & Forensic Officer who will be responsible for identifying, managing, and investigating security incidents within the institution's IT environment. This role is essential in ensuring the effective response to cybersecurity threats and the preservation of evidence for forensic analysis. The officer will work closely with the Incident Response and Forensic team to enhance the institution's security posture and protect sensitive information.Duties & ResponsibilitiesKey Responsibilities
- Incident Detection & Response
- Monitor security alerts and incidents using SIEM tools and other monitoring systems.
- Respond promptly to security incidents, including malware infections, unauthorized access, and data breaches.
- Perform initial triage and containment of incidents to minimize impact on university operations.
Digital Forensics
- Conduct forensic investigations on compromised systems to identify the scope of incidents and gather evidence.
- Utilize forensic tools to analyze data and recover lost information from affected systems.
- Document findings, maintain a chain of custody, and prepare reports for internal use and potential legal action.
Threat Analysis
- Analyze security incidents to identify patterns, root causes, and vulnerabilities that may have been exploited.
- Stay updated on the latest cybersecurity threats, vulnerabilities, and trends to inform incident response strategies.
- Collaborate with other IT teams to implement preventive measures and improve security controls based on incident findings.
Policy Compliance & Documentation
- Ensure adherence to incident response policies and procedures as established by the Information Security & Cyber Security Department.
- Maintain accurate records of all incidents, investigations, and responses in compliance with university policies and legal requirements.
- Assist in the development and updating of incident response documentation and playbooks.
Collaboration & Reporting
- Work closely with the Incident Response and Forensic Manager to provide updates on ongoing investigations and incidents.
- Collaborate with IT staff to ensure effective remediation of vulnerabilities and threats identified during investigations.
- Participate in meetings with stakeholders to discuss incident trends, threats, and recommendations for improvement.
Training & Awareness
- Assist in training university personnel on recognizing security incidents and following proper reporting protocols.
- Contribute to awareness programs aimed at promoting a security-conscious culture within the university.
- Participate in tabletop exercises and simulations to test incident response capabilities.
Qualifications and Experience
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
- 2-4 years of experience in incident response, digital forensics, or a related cybersecurity field.
- Familiarity with security monitoring tools (e.g., SIEM, IDS/IPS) and forensic analysis software.
- Understanding of cybersecurity frameworks and best practices.
Skills and Competencies
- Strong analytical skills with the ability to investigate and analyze complex security incidents.
- Proficient in using digital forensic tools (e.g.,
EnCase, FTK, Autopsy) for incident investigations.
- Excellent communication skills, both written and verbal, to convey technical information clearly.
- Ability to work under pressure and handle multiple incidents simultaneously.
- Detail-oriented with a strong sense of accountability and integrity in handling sensitive information.
Additional Requirements
- Industry-recognized certifications such as Certified Incident Handler (GCIH), Certified Forensic Computer Examiner (CFCE), or similar are highly preferred.
- Familiarity with regulatory compliance regarding data breaches and cybersecurity is advantageous.
- Willingness to work outside normal business hours in response to critical incidents when necessary.
Contract Details
- 1-year fixed-term contract, with the possibility of extension based on performance and project needs.
Package & RemunerationHourly
▶️ Incident Response & Forensic Officer
🖊️ Gijima Holdings
📍 Pretoria