Job Role:

· Monitor and analyze security events across various controls, including SIEM, Firewall, EDR, WAF, application, and system logs, to identify threats, trends, and potential risks to the organization.

· Administer the SIEM solution by onboarding log sources, developing enhanced detection rules and capabilities, and focusing on automating defense mechanisms where possible.

· Triage and respond to reported security incidents and requests, ensuring they are appropriately prioritized and remediated.

· Engage in proactive threat hunting to identify targeted threats and suspicious activities.

· Guide the team in remediating vulnerabilities and track progress effectively.

· Research and introduce new tools and techniques to address emerging threats, enhancing the security posture of the organization.

· Stay updated on the latest security threats, advisories, alerts, and vulnerabilities, and initiate appropriate mitigation controls.

· Lead the implementation of new IT security projects identified by management.

· Assist in the development and enforcement of IT policies, procedures, and standards.

· Execute compliance and regulatory requirements as defined by bodies such as PCI DSS, ISO 27001, CBSL, SWIFT, and NIST CSF.

· Participate in compliance, regulatory, and management-initiated audits, providing timely responses to audit observations.

Job Specification:

· Bachelor’s degree in information technology, Computer Science, or a related field specializing in Information Security or Cybersecurity.

· IT and security-related certifications such as CEH, ECIH, CSA+, eJPT, eCIR, SSCP, ISACA CSXP, or GSEC are highly desirable.

· 3-5 years of proven experience as an Information Security Engineer who has demonstrated experience in managing and responding to security incidents.

· Proficiency in scripting languages such as PowerShell, Python, and Bash. Strong understanding of frameworks such as MITRE ATT&CK and D3FEND.

· Comprehensive knowledge of network applications, protocols (TCP/IP, HTTP, TLS, SSH, DNS), and their security implications.

· Familiarity with security technologies including Firewalls, EDR, SIEM, IPS/IDS, WAF, and MDM.

· Hands-on knowledge of Windows and Linux environments.

· Understanding of regulatory and compliance requirements, including PCI DSS, ISO 27001, NIST CSF, CBSL, and SWIFT.

· Excellent verbal and written communication skills to effectively manage relationships with internal and external stakeholders.

· Strong attention to detail with a commitment to maintaining high ethical standards.