IT Security Anayst at Crusader Pensions Limited

Summary

The IT Security Analyst is responsible for ensuring the confidentiality and integrity of the organization's information assets. They analyze and implement security measures to protect computer systems, networks, and data from unauthorized access, cyber-attacks, and other security breaches.

Security Monitoring:

• Monitor and analyze security alerts, incidents, and logs to identify potential security threats.
• Investigate security incidents and provide incident responses.

Vulnerability Management:

• Conduct regular vulnerability assessments to identify and remediate security weaknesses.
• Collaborate with system administrators and IT teams to implement security patches and updates.

Network Security:

• Design, implement, and manage security measures for the organization's networks.
• Monitor network traffic for unusual activity and implement measures to prevent unauthorized access.

Access Control:

• Manage user access and permissions, ensuring the principle of least privilege.
• Implement and maintain identity and access management (IAM) solutions.

Security Policies and Procedures:

• Develop and enforce security policies and procedures.
• Guide employees on security best practices.

Security Awareness:

• Conduct security awareness training for employees.
• Promote a culture of security within the organization.

Incident Response:

• Develop and maintain an incident response plan.
• Coordinate and participate in incident response activities.

Security Audits and Compliance:

• Conduct regular security audits to ensure compliance with industry regulations and standards.
• Work with compliance teams to address any security-related compliance issues.

Security Technology Evaluation:

• Evaluate and recommend security technologies and tools.
• Stay updated on the latest trends and developments in cybersecurity.

Requirements:

• Bachelor’s degree in computer science, Information Technology, or related field.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), CEH, CISA or CompTIA Security+.
• Proven experience (4-6 years) in information security or related roles.
• Strong knowledge of security principles, practices, and technologies.
• Familiarity with firewall administration, intrusion detection/prevention systems, and encryption technologies.
• Excellent analytical and problem-solving skills.
• Effective communication and collaboration skills.