Security Analyst

The Security Analyst (Nextgen) represents the next evolution of security operations, blending traditional security expertise with AI-driven analytics, advanced threat intelligence, and hyperautomation. This role is responsible for proactive threat hunting, AI-assisted security analysis, and real-time incident response to protect Vista Group’s SaaS environment. The ideal candidate thrives at the intersection of human intuition and AI-driven security augmentation.

Working at the forefront of AI-powered SOC transformation, the Security Analyst will gain hands-on experience in advanced threat hunting, adversary emulation, and hyperautomated security operations. Working with AI-assisted SOC tools to improve detection and response capabilities and drive meaningful strategic improvements in security operations.

About the role

AI-Enhanced Threat Detection & Response

• Use machine learning, generative AI, and agentic AI to analyse vast security datasets, uncover hidden attack patterns, and optimise response workflows
• Perform predictive threat modelling to anticipate emerging cyber threats and proactively enhance security measures
• Leverage AI-driven anomaly detection tools to detect sophisticated cyber adversaries in real time
• Collaborate with Detection Engineers to refine detection logic based on insights gained from AI-powered investigations

Incident Investigation & Threat Hunting

• Lead proactive threat hunting engagements using AI-powered analytics, threat intelligence correlation, and adversary simulation techniques
• Investigate complex security incidents, leveraging SIEM, XDR, cloud security tools, and forensic data to uncover root causes
• Automate investigative workflows using SOAR playbooks, Python scripts, and no-code/low-code automation platforms (n8n, Flowise, Torq)
• Conduct post-incident analysis to continuously refine detection logic and improve response playbooks

Security Automation & AI Integration

• Utilise agentic AI to automate security responses such as account lockouts, network isolations, and WAF rule adjustments
• Work with generative AI and retrieval-augmented generation (RAG) to improve SOC documentation, incident reports, and forensic summaries
• Develop automated security workflows to streamline triage, enrichment, and escalation processes

Threat Intelligence & Adversary Simulation

• Track global attack trends, leveraging threat intelligence platforms and AI-driven predictive modelling
• Simulate potential attack scenarios to test detection resilience and improve security posture
• Map attack techniques to the MITRE ATT&CK framework and suggest detection rule enhancements

Strategic Security Operations & Collaboration

• Work closely with the Head of Security Operations to align emerging security threats with the broader SOC strategy
• Engage with DevSecOps, Cloud Security, and Platform Engineering teams to proactively mitigate security risks
• Drive continuous improvement initiatives across security operations through research, automation, and AI-enhanced analytics

About you

Security Analytics & Threat Hunting Expertise

• Strong hands-on experience with SIEM, XDR, and advanced analytics platforms
• Deep understanding of threat detection, incident response, and adversary tactics
• Knowledge of AI-enhanced security operations, including machine learning-based threat detection

Technical Proficiency

• Proficiency in Python, PowerShell, KQL, or SQL for security automation and analysis
• Familiarity with cloud security monitoring (AWS, Azure, GCP)
• Experience with SOAR platforms and AI-driven security automation

Certifications & Education

• GCIA, GCTI, GOSI, AWS Security Specialty, or equivalent
• Strong grasp of MITRE ATT&CK, threat intelligence frameworks, and cloud-native security operations

This is a hybrid role with a home and office-based split, requiring regular weekly (2 days per week) attendance in the Cape Town office.

We are only considering applicants with an existing right to work in South Africa, without the need for employer sponsorship.

About Vista

Vista is a world-leading company that makes software for the cinema industry. Started in Auckland, New Zealand, over 25 years ago, we now serve cinemas, film distributors, and moviegoers worldwide.

Our HQ is in the City Works Depot in Auckland. We have offices and subsidiary companies in Sydney, Los Angeles, London, Amsterdam, Cape Town, Shanghai, Mexico City, and Kuala Lumpur. We use the latest technologies and offer a fun, agile and collaborative environment. We continue to innovate and build our reputation as one of the best Kiwi tech companies to work for.

Shared Standards 

Our Shared Standards act as a compass for how we work together and reflect the behaviours we value at Vista Group. The way in which each member of our crew embodies these Shared Standards is an indicator for performance and success, as it aligns with our vision and strategy.   

One Crew 

• We're a diverse team, in different places and functions, and we're at our best when we connect, help and collaborate  

Shine a Light 

• We communicate openly, we explain the why, and we ask when we don't understand. We don't leave people in the dark 

Make it Happen 

• We make good things happen as people and as teams through our focus on delivery 

Chase Great 

• We challenge ourselves and each other to keep improving 

You will be supported to continually learn and improve your skills, share knowledge and ideas in the team, and be part of a dynamic and open culture.

We have a range of benefits that include:

• Rest & Relax Fridays - Finish at lunch time on Friday but get paid for the full day
• Annual volunteer day
• Employee Rewards and Benefits with Perkbox
• Medical Insurance / Medical Aid
• Employee Assistance Programme Service
• Paid Sick leave
• 5 days bereavement leave per year
• On-Site Breakfast Bar

If this sounds like you, get in touch to find out more

We value inclusivity celebrate diversity and are committed to offering equal opportunity to our staff and candidates — regardless of gender, age, race, ethnicity, marital status, disability, sex, sexual orientation, religious, ethical beliefs or political opinion. This commitment is reflected in all our employment policies and procedures.