We are seeking a highly motivated and experienced IT Security Analyst to join our team and play a pivotal role in safeguarding our organization's IT infrastructure and data. You will be responsible for identifying, assessing, and mitigating IT risks, ensuring compliance with relevant regulations/best practice, and supporting our IT security operations.
Risk Management:
- Conduct regular threat, risks and vulnerability assessments.
- Assess technologies and solutions against cyber security standard.
- Identify, analyse, and prioritize IT security risks.
- Develop and oversees implementation of risk mitigation strategies and controls.
- Maintain and update the organization's risk register.
Compliance:
- Stay up-to-date on relevant IT security regulations and standards (e.g., PCI-DSS, ITRM, IM8, etc).
- Develop and implement security policies and procedures.
- Monitor and audit compliance activities.
- Report on compliance status to relevant stakeholders.
- Establish compliance initiatives to ensure conformance with security requirements
Security Operations:
- Monitor security logs and events for suspicious activity.
- Monitor and mitigate potential data loss events, and investigate suspected incidents.
- Investigate security incidents and implement appropriate response measures.
- Participate in incident response exercises and simulations.
- Assist with the deployment and maintenance of security tools and technologies.
Collaboration:
- Work closely with IT operations, development, and other business units to promote security awareness and best practices.
- Provide guidance and training to employees on security policies and procedures.
- Collaborate with external auditors and regulators.
- Prepare regular management reports on overall IT security posture.
Qualifications:
- Bachelor's degree in Cybersecurity, Information Technology, or related field (or equivalent experience).
- Minimum of 3-5 years of experience in IT security, and compliance.
- Strong understanding of IT security concepts, frameworks, and methodologies.
- Working knowledge of relevant IT security regulations and standards.
- Experience with security tools and technologies (e.g., vulnerability scanners, SIEM, IDS/IPS).
- CISA / CISM / CISSP certifications will be an added advantage
- Knowledge in PHP, C++ and Java programming will be an advantage
- Excellent analytical and problem-solving skills.
- Strong communication and interpersonal skills.
- Self-driven and independent, with good attention to detail and quality
- Ability to work independently and as part of a team