Job Purpose:

The Senior Cybersecurity Analyst is responsible for safeguarding the group’s information systems and sensitive data from cyber threats. This job is responsible for analysing complex security issues, implementing effective security measures, and providing guidance to team members.

Responsibilities:

• Conduct in-depth analysis of security incidents, vulnerabilities, and breaches, providing timely and accurate reports to management.

• Collaborate with cross-functional teams to ensure that security measures are integrated into all aspects of the group’s operations.

• Monitor and assess the group’s network, systems, and applications for potential security risks and

vulnerabilities.

• Perform penetration testing, vulnerability assessments, and security audits to identify weaknesses and recommend mitigation strategies.

• Design and implement advanced security controls to protect sensitive data and maintain regulatory compliance.

• Provide guidance and mentorship to junior cybersecurity team members, assisting with skill

development and knowledge enhancement.

• Stay current with emerging threats, attack techniques, and industry trends to continuously improve the group’s security posture.

• Lead incident response efforts, coordinating with relevant teams to contain, mitigate, and recover from security incidents.

• Collaborate with third-party vendors and partners to assess their security practices and ensure

compliance with established standards.

• Participate in the evaluation and deployment of new cybersecurity technologies, tools, and solutions.

• Contribute to the development of security awareness training programs for employees to enhance their understanding of cybersecurity best practices.

• Prepare and deliver comprehensive reports and presentations to convey security-related information

to technical and non-technical audiences, including senior management.

• Serve as an L3 Cybersecurity Engineer.

• Perform deep analysis of security incidents to identify the full kill chain.

• Create SOC/MDR related use cases and write detections.

• Act as a subject matter expert for any cyber alert or incident that occurs.

• Conduct L3 level investigations to determine the root cause of any cyber incident or alert.

• Work with blue team tools and solutions (EDR, XDR, SIEM, Email Security, DLP, DDoS, WAF, Proxy) and analyse security alerts generated by these tools.

• Create cybersecurity use cases for SOC.

• Perform malware analysis.

• Correlate different log sources and understand logs from various end devices, servers, network devices, and applications.

• Implement security solutions in collaboration with respective vendors.

• Conduct threat intelligence actions and investigations.

• Perform application security checks and reviews, implementing best application security controls.

• Manage cloud security for the group and work with cloud security tools (Microsoft Azure).

• Work on endpoint security.

• Review and manage access control from a security perspective.

• Implement security projects.

• Conduct in automation using scripting languages and programming to automate day-to-day tasks in cybersecurity, build AI bots, identify patterns in large datasets that could signify malicious activity, and use AI tools to proactively search for threats within a network.

• Uphold company values throughout business practices and utilise sound judgment in decision making.

• Any other additional duties as may be required by management based on needs of the business.

Requirements:

• Bachelor's or Master's degree in Computer Science, Information Security, or a related field.

• Certification in GIAC DFIR, Blue Team Level 1 and Blue Team Level 2 required.

• Relevant certifications (e.g., CISSP, CISM, CISA, CEH) are highly desirable.

• A minimum of 5-7 years of experience in a similar role in Cyber Security.

• Proven experience as a cybersecurity analyst or similar role, demonstrating progressive

responsibilities.

• Experience with AI-based cybersecurity tools including Darktrace, Security Copilot, SOAR, Next-gen SIEM, CrowdStrike, AI-based Threat Intel, and Microsoft Security deployment (Defender, Purview DLP,IAM).