JOB DESCRIPTION:
As an Information Security/SOC Analyst you will be responsible for real-time monitoring of the organization’s information assets with an objective to promptly identify and thwart likely or/and ongoing cybersecurity incidents or attacks.
You will collaborate with other stakeholders to ensure that preventive and detective controls targeted at minimizing the likelihood of a successful breach on the organization’s infrastructure are put in place.
CORE RESPONSIBILITIES:
The role holder would be responsible for the following:
Monitors and analyses network traffic leveraging on security tools implemented within the organization
Carries out Vulnerability Assessment on the infrastructure
Engages with stakeholders on the resolution of security incidents
Identifies indicators of compromises-IoCs and indicators of attacks-IoAs on the network
Analyses IoCs and IoAs, and coordinate closure of identified risks as the need arises
Recommends controls to address identified weaknesses on the network
Support the organization security certification program by ensuring that Security Monitoring Requirements relevant to each standard are met
Identifies all relevant log sources and ensure collection of logs from the relevant log sources
Specifies security requirements for provisioning of new assets on the network
Carries out security review on information assets such as Databases and Firewalls
Provides supports for the optimization of security configurations on assets such as WAFs, Network Firewalls, Emails e.t.c
Manages security configuration setups and optimization on security tools such EDRs, SIEM, SAST and DAST tools e.t.c
Coordinates monitoring and reporting activities with other SOC Analyst
Coordinates and manages security incident management process
QUALIFICATIONS & EXPERIENCE:
Qualification:
A degree in a computer science or computer engineering or other relevant courses
Relevant certifications: CompTIA Security +, CompTIA CySA+, EC-Council Certified SOC Analysts and EC-Council CEH
Must have experience:
Over 3 years’ experience as a SOC Analyst, preferably with experience within the financial sector
Have sound understanding of threats and vulnerability management
Have a sound understanding of the workings of the following Operation Systems: Windows, MacOs and Linux (multiple flavors of Linux)
Have a sound understanding of network architectures and communication protocols
Have sound understanding of Risk and Incident Management
Have a good understanding of basic network communications within an IT Infrastructure
Experience with Cloud Infrastructure security and security of a hybrid infrastructure
Nice to-have experience:
Good understanding of Cloud Infrastructure and workings of a hybrid environment
Good understanding of security standard requirements such as ISO 27001 and PCI-DSS
Team management – should have managed a team
Skills:
Efficient in the use of security tools such as SIEM – previous experience with Splunk preferred
Be an efficient communicator with capabilities to communicate complex technical situation in simpler forms to different stakeholders
Good analytical skills and reporting skills
Personal Attributes:
Good and effective communicator
Be inquisitive and have an eye for system anomalies
Good distraction management skills
Good Time Management skills
Good Team Management/Collaboration skills
Apply via :
cellulant.bamboohr.com
