Security Analyst

Job Description:

Ideal candidate will be responsible for reviewing and enhancing security controls, supporting operational security requirements, monitoring security alerts, responding to incidents, and collaborating with internal and external stakeholders to strengthen cybersecurity posture.

Responsibilities:

• Review current security controls and recommend enhancements.
• Support the operations team to ensure timely delivery of security-compliant deliverables.
• Develop security documentation, including technical presentations, design documents, and system security acceptance test reports.
• Monitor security alerts and events from various sources such as SIEM systems, IDS/IPS, firewalls, and other security tools.
• Analyze security incidents to determine root cause, impact, and severity.
• Respond to security incidents by following established incident response procedures.
• Work with third-party vendors to support forensic analysis and investigations of security breaches and recommend corrective actions.
• Collaborate with IT and other departments to implement security measures and mitigate risks.
• Maintain and update security documentation, including incident reports, playbooks, and standard operating procedures.
• Stay up to date with the latest cybersecurity trends, threats, and best practices.

Requirements:

• Strong verbal and written communication skills in English.
• Excellent interpersonal skills to build and maintain relationships with team members and technical stakeholders.
• Proven ability to work collaboratively in a cross-functional team environment.
• Strong critical thinking and analytical skills for solving complex security issues.
• Resourceful and proactive in identifying and resolving security issues.
• Adaptability to the ever-changing threat landscape and organizational needs.
• Ability to manage and resolve conflicts effectively.

Qualifications:

• Diploma or Bachelor's degree in Computer Information Security or a related field.
• 2 to 5 years of experience in one or more security domains, including but not limited to:
• Security and Risk Management
• Asset Security
• Security Architecture and Engineering
• Communications and Network Security
• Identity and Access Management
• Security Assessment and Testing
• Software Development Security
• Hands-on experience with cloud platforms such as AWS, Azure, or Google Cloud Platform is preferred. Experience with other cloud environments will also be considered.
• Relevant experience in enterprise security implementation.
• Familiarity with virtualization technologies and multi-tenant, private, and hybrid cloud environments.