WHO WE ARE 

S-RM is a global intelligence and cyber security consultancy.  Since 2005, we’ve helped some of the most demanding clients in the world solve some of their toughest information security challenges.   

We’ve been able to do this because of our outstanding people.  We’re committed to developing sharp, curious, driven individuals who want to think critically, solve complex problems, and achieve success.   

But we also know that work isn’t everything. It’s about the lives and careers it helps us build.  We’re immensely proud of this culture and we invest in our people’s wellbeing, learning, and ideas every day. 

We’re excited you’re thinking about joining us. 

WORKING IN CYBER AT S-RM 

Our Cyber Security division is the fastest-growing part of S-RM. The cyber sector is always evolving, and our Managed Services,  Advisory, and Incident Response practices are in more demand than ever.  

We’re building a team to meet this challenge.  We’re quick to respond, innovate, and improve.  We don’t get too hung up on hierarchy or bureaucracy.  If your ideas are good enough, we’ll empower you to implement them.  If you’re the best person to talk to a customer, you’ll get that opportunity, regardless of the title in your email signature. And when you need a hand, your team will always have your back. 

We also don’t believe there’s a typical cyber security professional.  We’ve built a team of intelligence analysts, technical specialists, software developers, investigators, risk managers, and more.  You’ll always find a range of perspectives and expertise to help you learn and grow.  

If that sounds like your kind of team, we’d like to hear from you. 

THE ROLE 

Our Security Operations Centre is a critical part of our Cybersecurity division’s success.  

As a Cybersecurity Analyst (SOC), you will deploy your cybersecurity expertise in a vital delivery role across our managed detection and response services.   

In this role, you will use infrastructure and tools that power our Security Operations Center (SOC) to deliver desired security outcomes for our managed services clients. The ideal candidate will have familiarity with security tools such as SIEM, SOAR, EDR, and other advanced technology.   You will have a proven ability to respond effectively to security incidents. This hybrid role involves both remote work and some in-office presence for collaboration, teamwork and development.  

Delivery 

• Monitor Security Events: Continuously monitor and analyse security alerts from EDR, SIEM and other security tools to detect suspicious activities or potential threats. 

• Incident Response: Conduct investigations and respond to security incidents, executing containment, mitigation, and remediation steps as necessary. 

• Threat Hunting: Proactively search for indicators of compromise (IoCs) and advanced threats within the environment, utilising both automated tools and manual analysis. 

• Threat Detection: Use expertise to tune detection rules, automate workflows, and improve incident detection accuracy. 

• Log Analysis: Perform in-depth log analysis from firewalls, endpoint protection platforms, and other solutions to investigate complex incidents. 

• Threat Intelligence: Stay informed of emerging threats and collaborate with the threat intelligence team to enhance detection capabilities. 

• Incident Reporting and Documentation: Ensure detailed documentation of incidents, responses, and resolutions to maintain a clear incident management process. 

• Shift Work: Participate in a 24/7 shift rotation to ensure continuous security monitoring, including evening, night, and weekend shifts. 

Growth of the service 

• Continuous Improvement: Work closely with other IT teams, security engineers, and senior SOC members to refine detection processes and improve overall security posture. 

• Collaboration: Collaborate with SOC analysts, security engineers, and IT teams to ensure seamless operation of security tools and alignment with broader cybersecurity practices. 

• Security Enhancements: Identify areas for improvement in security monitoring and response capabilities, proposing and assist with implementing new solutions where appropriate. 

• Collaborating with Global Teams: Work closely with other cyber security teams to ensure seamless integration of SOC operations with our broader cybersecurity initiatives and business units especially Incident Response. 

• Contributing to Internal Technical Development Initiatives: When the schedule allows, you will have opportunities to participate in and contribute to internal technical development initiatives, enhancing our tools, processes, and overall incident response capabilities. 

WHAT WE’RE LOOKING FOR 

Candidates with the following qualifications and experience are likely to succeed in our Managed Services practice at S-RM.   

That said, if you don’t think you meet all of the criteria below but still are interested in the job, please apply. Nobody checks every box—we’re looking for candidates that are particularly strong in a few areas and have some interest and capabilities in others. 

We nurture a culture of equality, diversity and inclusion and we are dedicated to developing a workforce that displays a variety of talents, experiences and perspectives. 

We’re looking for: 

• Qualifications: A Bachelors degree in a relevant subject, for example cybersecurity, computer science. Relevant industry certifications are advantageous, or evidence of working towards attaining these. 

• Experience: 2+ years of experience in a SOC or cybersecurity operations role. 

• Technical Expertise: Solid understanding of security fundamentals, including threat detection, incident response,  endpoint and network security. 

• Approach: An investigative mindset.  You should be comfortable solving problems with limited information and guidance, and be curious to learn. 

• Reliability:  Our customers depend on us to manage their security and provide cyber-resilience, you must be dependable. 

• Tools:  Expertise in use of EDR is required. Familiarity with other security tools such as SIEM, firewalls, and IDS/IPS is desirable.  

• Incident Response: Experience in responding to and remediating security incidents, including credential theft and malware based attacks. 

• Threat intelligence: Some demonstrable knowledge of current cyber threat actors, their tactics, techniques, and procedures.  

• Threat Detection: Understanding of security monitoring, threat detection techniques, and the ability to exploit detection systems for optimal performance. 

• Communication: Clear and concise verbal communication skills, with the ability to work effectively across teams; preferably you should be able to communicate technical findings to a non-technical audience.  Able to write and format incident reports and summaries. 

The successful candidate must have permission to work in South Africa by the start of their employment. 

Our benefits 

We offer thoughtful, balanced rewards and support to help our people do their best work and live their lives outside it, this includes but is not exhaustive of: 

• Holiday – 23 days per year increasing to 28 days (+1 day for every year you worked at S-RM, up 
  to a maximum of 5 days) in addition to bank holidays

• Gap Cover policy – allowing you to bridge the gap between your medical bills and your medical 
  aid cover.
• Hybrid working and flexible working hours; 

• Private pension – up to 7% contribution matched by the company

• Life Insurance 4X annual salary. 

Parental Support: 

• Fertility treatment leave – 5 days of leave per cycle of treatment per year; 

• Maternity leave – 26 weeks of full pay followed by 13 weeks of half pay; 

• Paternity leave – 6 weeks of full pay. 

Various Health and Medical Benefits including: 

• Medical aid with Discovery Health for employee, partner, and children up to the cost of the Classic
  Saver plan(taxable benefit) for you and your family; 

• EAP programme for you and your immediate family; 

• Free access to the world-famous mindfulness app Headspace. 

To apply for this role, please submit an up-to-date CV through this link: Job Application for Cybersecurity (SOC) Analyst at S-RM

About impact.com

impact.com is the world’s leading commerce partnership marketing platform, transforming the way businesses grow by enabling them to discover, manage, and scale partnerships across the entire customer journey. From affiliates and influencers to content publishers, brand ambassadors, and customer advocates, impact.com empowers brands to drive trusted, performance-based growth through authentic relationships. Its award-winning products—Performance (affiliate), Creator (influencer), and Advocate (customer referral)—unify every type of partner into one integrated platform. As consumers increasingly rely on recommendations from people and communities they trust, impact.com helps brands show up where it matters most. Today, over 5,000 global brands, including Walmart, Uber, Shopify, Lenovo, L’Oréal, and Fanatics, rely on impact.com to power more than 225,000 partnerships that deliver measurable business results.

Your Role at impact.com:

The L1 Associate Security Analyst is the first line of defence in our Security Operations Center (SOC). You will be responsible for the continuous monitoring of our digital environment, identifying potential threats, and performing initial triage. This role is perfect for a disciplined, high-energy individual who is eager to dive into the "Blue Team" side of operations while maintaining a healthy curiosity for "Red Team" tactics.

What You'll Do:

• Monitor & Triage: Actively monitor SIEM alerts and AV/EDR consoles to identify and escalate suspicious activity.
• Email Defense: Analyze reported phishing attempts and manage Email Security gateways to neutralize inbound threats.
• Cloud Support: Assist in monitoring workloads within Google Cloud (GCP) and AWS to ensure compliance with security baselines.
• AI Integration: Utilize AI-driven security tools to summarize alerts and automate repetitive documentation tasks.
• Workstation Management: Perform basic security audits and configuration checks within Google Workspace.

What You Bring:

• Experience: 0–2 years in cybersecurity or IT; a strong personal portfolio or lab environment is a plus.
• Technical Knowledge: Foundational understanding of the SDLC and how security fits into the development pipeline.
• Tools: Exposure to any major SIEM or EDR platform.
• Soft Skills: Highly motivated and disciplined; able to follow complex playbooks while working independently during quiet shifts.
• Interest: A demonstrated passion for either Red or Blue teaming.

Benefits and Perks:

At impact.com, we believe that when you’re happy and fulfilled, you do your best work. That’s why we’ve built a benefits package that supports your well-being, growth, and work-life balance.

• Flexible Working: Our Responsible PTO policy means you can take the time off you need to rest and recharge. We're committed to a positive work-life balance and provide a flexible environment that allows you to be happy and fulfilled in both your career and your personal life.
• Health and Wellness: Your well-being is a priority. Our mental health and wellness benefit includes up to 12 fully covered therapy/coaching sessions per year, with additional dependent coverage. We also offer a monthly gym reimbursement policy to support your physical health.
• A Stake in Our Growth: We offer Restricted Stock Units (RSUs) as part of our total compensation, giving you a stake in the company's growth with a 3-year vesting schedule, pending Board approval.
• Investing in Your Growth: We’re committed to your continuous learning. Take advantage of our free Coursera subscription and our PXA courses.
• Parental Support: We offer a generous parental leave policy, 26 weeks of fully paid leave for the primary caregiver and 13 weeks fully paid leave for the secondary caregiver.
• Technology Financial Support: We provide a technology stipend to help you set up your home office and a monthly allowance to cover your internet expenses

impact.com is proud to be an equal opportunity workplace. All employees and applicants for employment shall be given fair treatment and equal employment opportunity regardless of their race, ethnicity or ancestry, color or caste, religion or belief, age, sex (including gender identity, gender reassignment, sexual orientation, pregnancy/maternity), national origin, weight, neurodivergence, disability, marital and civil partnership status, caregiving status, veteran status, genetic information, political affiliation, or other prohibited non-merit factors.

About impact.com

impact.com is the world’s leading commerce partnership marketing platform, transforming the way businesses grow by enabling them to discover, manage, and scale partnerships across the entire customer journey. From affiliates and influencers to content publishers, brand ambassadors, and customer advocates, impact.com empowers brands to drive trusted, performance-based growth through authentic relationships. Its award-winning products—Performance (affiliate), Creator (influencer), and Advocate (customer referral)—unify every type of partner into one integrated platform. As consumers increasingly rely on recommendations from people and communities they trust, impact.com helps brands show up where it matters most. Today, over 5,000 global brands, including Walmart, Uber, Shopify, Lenovo, L’Oréal, and Fanatics, rely on impact.com to power more than 225,000 partnerships that deliver measurable business results.

Your Role at impact.com:

As an L2 Security Analyst, you move beyond the "what" and into the "how" and "why." You will handle escalated incidents that require deep technical dives and proactive measures. You are expected to be a self-starter who can manage complex security projects independently, specifically focusing on our SASE/SSE architecture and advanced Cloud environments.

What You'll Do:

• Advanced Investigation: Lead deep-dive forensics for escalated alerts from L1, determining the root cause and scope of breaches.
• Threat Hunting: Conduct proactive threat hunting missions across AWS and Google Cloud to find "living off the land" attackers.
• Infrastructure Security: Manage and optimize SASE/SSE policies to ensure secure access for our remote workforce.
• Secure SDLC: Partner with DevOps to integrate security scanning and best practices into the SDLC.
• AI Implementation: Lead the implementation of AI/Machine Learning models for predictive threat detection and behavioral analysis.

What You Bring:

• Experience: 2-5 + years of dedicated experience in a SOC or Incident Response role.
• Cloud Mastery: Proven experience securing and auditing Google Cloud and AWS environments.
• Advanced Tooling: Expertise in configuring SIEM correlation rules and fine-tuning AV/EDR policies to reduce false positives.
• Independence: Proven ability to work independently, managing long-term security projects with minimal supervision.
• Education: Knowledge of both Red Team (offensive) and Blue Team (defensive) methodologies to better anticipate adversary moves.

Benefits and Perks: 

• Flexible Working: Our Responsible PTO policy means you can take the time off you need to rest and recharge. We're committed to a positive work-life balance and provide a flexible environment that allows you to be happy and fulfilled in both your career and your personal life.
• Health and Wellness: Your well-being is a priority. Our mental health and wellness benefit includes up to 12 fully covered therapy/coaching sessions per year, with additional dependent coverage. We also offer a monthly gym reimbursement policy to support your physical health.
• A Stake in Our Growth: We offer Restricted Stock Units (RSUs) as part of our total compensation, giving you a stake in the company's growth with a 3-year vesting schedule, pending Board approval.
• Investing in Your Growth: We’re committed to your continuous learning. Take advantage of our free Coursera subscription and our PXA courses.
• Parental Support: We offer a generous parental leave policy, 26 weeks of fully paid leave for the primary caregiver and 13 weeks fully paid leave for the secondary caregiver.
• Technology Financial Support: We provide a technology stipend to help you set up your home office and a monthly allowance to cover your internet expenses

impact.com is proud to be an equal opportunity workplace. All employees and applicants for employment shall be given fair treatment and equal employment opportunity regardless of their race, ethnicity or ancestry, color or caste, religion or belief, age, sex (including gender identity, gender reassignment, sexual orientation, pregnancy/maternity), national origin, weight, neurodivergence, disability, marital and civil partnership status, caregiving status, veteran status, genetic information, political affiliation, or other prohibited non-merit factors.