Information Security/SOC Analyst at Cellulant

JOB DESCRIPTION: 

As an Information Security/SOC Analyst you will be responsible for real-time monitoring of the organization’s information assets with an objective to promptly identify and thwart likely or/and ongoing cybersecurity incidents or attacks.

You will collaborate with other stakeholders to ensure that preventive and detective controls targeted at minimizing the likelihood of a successful breach on the organization’s infrastructure are put in place.

CORE RESPONSIBILITIES:

The role holder would be responsible for the following: 

• Monitors and analyses network traffic leveraging on security tools implemented within the organization
• Carries out Vulnerability Assessment on the infrastructure
• Engages with stakeholders on the resolution of security incidents
• Identifies indicators of compromises-IoCs and indicators of attacks-IoAs on the network
• Analyses IoCs and IoAs, and coordinate closure of identified risks as the need arises
• Recommends controls to address identified weaknesses on the network
• Support the organization security certification program by ensuring that Security Monitoring Requirements relevant to each standard are met
• Identifies all relevant log sources and ensure collection of logs from the relevant log sources
• Specifies security requirements for provisioning of new assets on the network
• Carries out security review on information assets such as Databases and Firewalls
• Provides supports for the optimization of security configurations on assets such as WAFs, Network Firewalls, Emails e.t.c
• Manages security configuration setups and optimization on security tools such EDRs, SIEM, SAST and DAST tools e.t.c
• Coordinates monitoring and reporting activities with other SOC Analyst
• Coordinates and manages security incident management process

QUALIFICATIONS & EXPERIENCE:

Qualification:

• A degree in a computer science or computer engineering or other relevant courses
• Relevant certifications: CompTIA Security +, CompTIA CySA+, EC-Council Certified SOC Analysts and EC-Council CEH

Must have experience:

• Over 3 years’ experience as a SOC Analyst, preferably with experience within the financial sector
• Have sound understanding of threats and vulnerability management
• Have a sound understanding of the workings of the following Operation Systems: Windows, MacOs and Linux (multiple flavors of Linux)
• Have a sound understanding of network architectures and communication protocols
• Have sound understanding of Risk and Incident Management
• Have a good understanding of basic network communications within an IT Infrastructure 
• Experience with Cloud Infrastructure security and security of a hybrid infrastructure

Nice to-have experience:

• Good understanding of Cloud Infrastructure and workings of a hybrid environment
• Good understanding of security standard requirements such as ISO 27001 and PCI-DSS
• Team management – should have managed a team

Skills:

• Efficient in the use of security tools such as SIEM – previous experience with Splunk preferred
• Be an efficient communicator with capabilities to communicate complex technical situation in simpler forms to different stakeholders
• Good analytical skills and reporting skills

Personal Attributes:

• Good and effective communicator
• Be inquisitive and have an eye for system anomalies
• Good distraction management skills
• Good Time Management skills
• Good Team Management/Collaboration skills