Job Description

:

Description:

1. Security Monitoring: Monitoring and analyzing security events and alerts from various sources, such as security tools, logs, and intrusion detection systems, to identify potential security incidents or threats.

2. Incident Response: Responding to security incidents by following established protocols, investigating the incident, containing the threat, and initiating appropriate remediation actions to minimize impact and restore normal operations.

3. Threat Intelligence: Staying updated with the latest threat intelligence, vulnerabilities, and emerging security risks to proactively identify potential threats and take necessary preventive measures.

4. Security Incident Management: Managing the end-to-end lifecycle of security incidents, including documentation, tracking, and reporting of incidents, conducting post-incident analysis, and identifying areas for improvement in security measures.

5. Security Tools Management: Configuring, monitoring, and maintaining security tools such as SIEM (Security Information and Event Management) systems, IDS/IPS (Intrusion Detection/Prevention Systems), firewalls, and endpoint protection solutions to ensure optimal security posture.

6. Log Analysis: Analyzing and correlating logs and security events to identify patterns, anomalies, and potential security breaches, and taking appropriate actions based on the findings.

7. Security Documentation and Reporting: Documenting security incidents, procedures, and policies, and generating regular reports on security incidents, trends, and key performance indicators (KPIs) for management and stakeholders.

8. Security Awareness and Training: Assisting in the development and delivery of security awareness programs, training sessions, and workshops for employees to promote a culture of security and ensure adherence to security best practices.

9. Continuous Improvement: Actively participating in security assessments, audits, and reviews to identify areas for improvement in security operations, processes, and controls, and suggesting and implementing enhancements accordingly.

10. Key Result Development: Working with teams to establish measurable and specific key results that indicate progress and success towards the objectives.

Key Skills Required :

A strong understanding of cybersecurity principles, best practices, and industry standards, including knowledge of common attack vectors, vulnerabilities, and threat landscape.

Proficiency in detecting and analyzing security incidents, identifying indicators of compromise (IOCs), and effectively responding to and mitigating security threats.

Familiarity with security tools such as SIEM (Security Information and Event Management) systems, IDS/IPS (Intrusion Detection/Prevention Systems), firewalls, antivirus software, and endpoint protection solutions, and the ability to utilize these tools effectively.

Skill in analyzing security logs, network traffic, and system event data to identify patterns, anomalies, and potential security breaches, as well as proficiency in conducting incident investigations.

Knowledge of threat intelligence sources, methodologies, and tools to gather and analyze information on emerging threats, vulnerabilities, and attack techniques.

Understanding of network protocols, architecture, and administration, as well as knowledge of operating systems (Windows, Linux, etc.) and their security configurations.

Familiarity with incident response frameworks (such as NIST, ISO 27035) and the ability to follow established incident handling procedures to effectively respond to and manage security incidents.

Strong analytical thinking and problem-solving abilities to analyze complex security issues, identify root causes, and propose appropriate solutions or mitigations.

Excellent communication skills to effectively communicate and document security incidents, collaborate with cross-functional teams, and provide clear and concise reports to management and stakeholders.

A mindset of continuous learning, staying updated with the latest security trends, technologies, and threats, and the ability to adapt to evolving security landscapes and emerging technologies.

Requirements:

1. Analytical Thinking: The ability to analyze complex security data, identify patterns, and draw meaningful insights from various sources to effectively detect and respond to security incidents.

2. Problem-Solving: Strong problem-solving skills to assess and address security challenges, identify vulnerabilities, and develop appropriate solutions to mitigate risks.

3. Attention to Detail: A meticulous approach to examining security events, logs, and alerts to ensure no potential threats or indicators of compromise are missed.

4. Communication Skills: Excellent written and verbal communication skills to effectively articulate technical information, document incidents, and communicate with cross-functional teams, stakeholders, and management.

5. Collaboration and Teamwork: The ability to work collaboratively with other team members, share knowledge, and contribute effectively in a team-oriented environment to achieve common security objectives.

6. Time Management: Strong organizational skills and the ability to prioritize tasks, manage multiple incidents simultaneously, and meet deadlines in a fast-paced and dynamic environment.

7. Adaptability: Flexibility and the capacity to adapt quickly to evolving security landscapes, emerging threats, new technologies, and changing priorities.

8. Critical Thinking: The capability to analyze situations objectively, evaluate information, and make sound judgments to determine security incidents\' severity and potential impact.

9. Ethics and Integrity: A commitment to upholding ethical standards, maintaining confidentiality, and following established security policies and procedures.

10. Continuous Learning: A desire for ongoing learning and professional development to stay updated with the latest security trends, technologies, and industry best practices.

11. Stress Management: The ability to remain calm and composed under pressure, handle high-stress situations effectively, and make well-informed decisions in time-sensitive scenarios.

ValueMentor