Security Operations Analyst at Flutterwave

About the Security Operations Analyst Role
The team is looking for a Security Operations Analyst who will defend against cybersecurity incidents and identify, analyze, communicate and contain incidents as they occur.

What Your Day-to-Day Activities Will Be;

• To conduct network monitoring and intrusion detection analysis using various computer network defense tools, such as intrusion detection/prevention systems, firewalls, and host-based security systems
• Conduct log-based and endpoint-based threat detection to detect and protect against threats coming from multiple sources
• Deploy cloud-centric detection to detect threats related to cloud environments and services used by the organization
• Correlate activity across assets (endpoint, network, apps) and environments (on-premises, cloud) to identify patterns of anomalous activity
• Review alerts and data from sensors, and documents formal, technical incident reports
• Work with threat intelligence and/or threat-hunting teams
• Provide network subscribers with incident response support, including mitigating actions to contain activity and facilitating forensics analysis when necessary
• Support the creation of business continuity/disaster recovery plans, including conducting disaster recovery tests, publishing test results, and making changes necessary to address deficiencies
• Work with security information and event management (SIEM) to manage/tune the system, create/manage the detection content and actively watch for alerts
• Correlate network, cloud, and endpoint activity across environments to identify attacks and unauthorized use
• Research emerging threats and vulnerabilities to aid in the identification of incidents
• Provide users with incident response support, including mitigating actions to contain activity and facilitating forensics analysis when necessary
• Perform security standards testing against computers before implementation to ensure security

Required competency and skillset to be a Waver:

• BS or MA in computer science, information security, cybersecurity, or a related field
• 4+ years of experience in IT audit, enterprise risk management, penetration tester, red team/incident responder, or as a junior security operations analyst.
• 2+ years of experience with regulatory compliance and information security management frameworks (such as International Organization for Standardization [IS0] 27000, COBIT, National Institute of Standards and Technology [NIST] 800)
• Experience working with error and solution tracking systems
• Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
• High degree of technical aptitude, knowing how hardware and software interact, and able to identify problems when they occur
• Has good judgment and a sense of urgency, and has demonstrated commitment to high standards of ethics, regulatory compliance, customer service and business integrity
• Strong oral and written communication skills and the ability to clearly articulate to all project members and stakeholders.
• Highest ethical standards and values
• Pays meticulous attention to detail.
• Confident, energetic self-starter, with strong interpersonal skills
• Instinctive and creative

Desired, but not required:

• Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM)