Cyber Security Engineer

HWG Sababa, a leading company in cybersecurity, is looking to strengthen its internal team by hiring a:

Cyber Security Operations Centre (CSOC) TIER 1 Operator

Job Description:

We are looking for a motivated and knowledgeable Cyber Security Operations Centre (CSOC) TIER 1 Operator to join our team. As part of the Cyber Security Operations Centre, you will be responsible for monitoring, analyzing, and responding to cyber security threats, ensuring quick and effective incident handling, and working closely with Tier 2 engineers to resolve issues. The role involves leveraging various security monitoring tools and ensuring that incidents are efficiently managed and reported.

Responsibilities:

• Perform cyber threat monitoring continuously using available monitoring systems (e.g., IBM QRadar).
• Conduct triage and initial analysis of identified issues, determining the severity and impact.
• Identify false positives, monitor the system tuning process, and collaborate with Tier 2 for alert resolution.
• Classify and prioritize security incidents based on their severity and impact.
• Manage the incident lifecycle via a trouble ticketing system, adhering to established processes.
• Utilize available playbooks to manage incidents and participate in their creation.
• Communicate incident status and manage customer notifications effectively.
• Collaborate with Tier 2 security engineers to ensure timely and accurate incident response.
• Gather information and contribute to the production of recurrent reports (weekly, monthly, yearly).
• Participate in post-incident analysis and provide valuable insights to improve security processes.

Hard Skills:

• Strong foundational and in-depth knowledge of computer science and cybersecurity concepts.
• Good understanding of major operating systems (Windows, Linux, etc.).
• Knowledge of network topologies, devices, and protocols.
• Expertise in firewall management.
• Familiarity with security monitoring tools such as IBM QRadar.
• Proficient with trouble ticketing tools.
• Competent in using Microsoft Office tools (Excel, Word, PowerPoint).

Soft Skills:

• Strong sense of role awareness and goal orientation.
• Excellent interpersonal and communication skills.
• Ability to work well in a team environment.
• Flexibility and composure when handling stressful situations.
• Strong attention to detail, analytical thinking, and problem-solving capabilities.

Educational Background:

• Bachelor's degree in Information Science, Computer Science, Telecommunications Engineering, or related fields. Alternatively, a relevant diploma is acceptable.

Languages:

• Good command of English is required (both spoken and written).

Processes Involved:

• Security Event Management: Actively monitor security events and perform initial analysis.
• Incident Handling: Contribute to the management and resolution of security incidents.
• Monitoring System Tuning: Participate in the tuning of security monitoring systems to optimize detection capabilities.
• Incident Response: Collaborate with Tier 2 engineers to ensure effective incident response.
• Post-Incident Analysis: Contribute to post-incident reviews and improvements.