Cyber/Information Security Analyst

Looking for a motivated and experienced Cyber/Information Security Analyst to join our team! Incumbent would be responsible for identifying, documenting, and tracking system and platform vulnerabilities. Mission will be to ensure the security and integrity of our company’s data, information, and systems. Duties and responsibilities:

• Well versed with industry standards and regulations related to IT governance and cybersecurity, such as ISO27001:2022 and CIS version 8, NIST etc. Ensuring compliance with all security policies and procedures

• Keep up to date with the latest security and technology developments. Research/evaluate emerging cyber security threats and ways to manage them. Test and evaluate security products.

• Knowledge and experience in governance, risk management, compliance, internal audit, business continuity management as well as IT and information security

• Plan for disaster recovery and create contingency plans in the event of any security breaches.

• Monitor for attacks, intrusions and unusual, unauthorised, or illegal activity.

• Work with the security team to perform tests and uncover network vulnerabilities. Identify potential weaknesses in the system and implement measures.

• Perform periodic risk assessments and penetration tests, investigate security alerts, and provide incident response.

• Monitor identity and access management, including monitoring for abuse of permissions by authorized system users.

• Investigate incidents and respond to events in real time. Investigate security breaches and other cybersecurity incidents. Generate reports for both technical and non-technical staff and stakeholders.

• Maintain an information security risk register and assist with internal and external audits relating to information security.

• Assist with the creation, maintenance, and delivery of cyber security awareness training for colleagues,
• give advice and guidance to staff on issues such as spam and unwanted or malicious emails.

1. Bachelor’s degree in IT, Computer Science, MIS, or related disciplines.
2. Minimum of 5 years of experience, working in Cyber/Information security Governance, Risk & Compliance.
3. Related Professional certifications are required.