Job Role:
· Monitor and analyze security events across various controls, including SIEM, Firewall, EDR, WAF, application, and system logs, to identify threats, trends, and potential risks to the organization.
· Administer the SIEM solution by onboarding log sources, developing enhanced detection rules and capabilities, and focusing on automating defense mechanisms where possible.
· Triage and respond to reported security incidents and requests, ensuring they are appropriately prioritized and remediated.
· Engage in proactive threat hunting to identify targeted threats and suspicious activities.
· Guide the team in remediating vulnerabilities and track progress effectively.
· Research and introduce new tools and techniques to address emerging threats, enhancing the security posture of the organization.
· Stay updated on the latest security threats, advisories, alerts, and vulnerabilities, and initiate appropriate mitigation controls.
· Lead the implementation of new IT security projects identified by management.
· Assist in the development and enforcement of IT policies, procedures, and standards.
· Execute compliance and regulatory requirements as defined by bodies such as PCI DSS, ISO 27001, CBSL, SWIFT, and NIST CSF.
· Participate in compliance, regulatory, and management-initiated audits, providing timely responses to audit observations.
Job Specification:
· Bachelor’s degree in information technology, Computer Science, or a related field specializing in Information Security or Cybersecurity.
· IT and security-related certifications such as CEH, ECIH, CSA+, eJPT, eCIR, SSCP, ISACA CSXP, or GSEC are highly desirable.
· 3-5 years of proven experience as an Information Security Engineer who has demonstrated experience in managing and responding to security incidents.
· Proficiency in scripting languages such as PowerShell, Python, and Bash. Strong understanding of frameworks such as MITRE ATT&CK and D3FEND.
· Comprehensive knowledge of network applications, protocols (TCP/IP, HTTP, TLS, SSH, DNS), and their security implications.
· Familiarity with security technologies including Firewalls, EDR, SIEM, IPS/IDS, WAF, and MDM.
· Hands-on knowledge of Windows and Linux environments.
· Understanding of regulatory and compliance requirements, including PCI DSS, ISO 27001, NIST CSF, CBSL, and SWIFT.
· Excellent verbal and written communication skills to effectively manage relationships with internal and external stakeholders.
· Strong attention to detail with a commitment to maintaining high ethical standards.