Cyber Security Analyst

JOB PURPOSE:

Responsible for configuring use cases, analysing trends, Incident handling and response.

KEY ACCOUNTABILITIES:

Incident Monitoring Management (IMM)

• Monitor alerts, analyse and triage and respond within the committed SLA’s.
• Escalate qualified incidents for investigation to CA
• Research, document and report on security notifications from DESC and other authorities, security issues and emerging trends.
• Coordinate and guide support and service desk for incident resolution.
• Provide inputs to optimize use cases and reduce false positives.
• Responsible for Investigating incidents, remediation and Root Cause Analysis.
• Conduct threat hunting and basic cyber forensics as and when required.
• Configure use cases and business cases to suit the needs of stakeholders.

Governance

• Adhere to ITIL & NIST Cybersecurity Framework
• Ensure that the organization's data and infrastructure are protected by enabling the appropriate security controls.
• Perform routine audits on security of the infrastructure and present findings.

Reporting and Documentation (RD)

• Produce all required documentation for tasks completed, according to established standards.
• Create & publish reports on a weekly, monthly & quarterly basis to stakeholders
• Review all documentation and ensure everything is correct and up-to-date.
• Configure Security Infrastructure reports covering business requirements with historical statistics that caters to varied stakeholders.
• Document all configuration and changes made to use cases to ensure that all documentation is updated to reflect any changes.

Training and Development

• Ensure all certifications required for the role (see below) are met within 6 months of joining FutureX.
• Ensure all certifications are kept valid.
• Maintain knowledge of all relevant aspects of Cybersecurity and expand areas of required speciality knowledge.

SPAN OF Communication

• Security team and Service Desk
• Security team all other FutureX internal teams

Job relevant information (BOUNDARIES & DECISION-MAKING AUTHORITY)

These roles have limited decision-making authority.

REQUIRED QUALIFICATIONS/ CERTIFICATIONS:

• Bachelor’s degree in a related field
• CEH: Certified Ethical Hacker
• GISF: GIAC Information Security Fundamentals
• GSEC: GIAC Security Essentials
• GCIA: GIAC Certified
• Intrusion Analyst
• GCIH: GIAC Certified Incident Handler
• ITIL Foundation
• GCFA: GIAC Certified Forensic Analyst
• CHFI: Computer Hacking Forensic Investigator

REQUIRED EXPERIENCE

• 5-7 years

REQUIRED SKILLS

• Simple problem solving
• Acceptable spoken and written English
• The ability to make clear presentations to the Security team
• Moderate problem solving
• Good spoken and written English
• The ability to make clear, engaging presentations to all FutureX staff

TECHNICAL COMPETENCIES

• SIEM (Must)
• DLP
• Active Directory
• Email Security
• Endpoint Security
• IDS/IPS
• Vulnerability Assessments
• Firewalls
• Identity & Access Management Principles
• Advanced Persistent Threats (APT)

Bachelor’s degree in a related field