IT Security Analyst
About the job
Job Description
We are seeking a highly motivated and experienced IT Security Analyst to play a pivotal role in safeguarding organization’s IT infrastructure and data. You will be responsible for identifying, assessing, and mitigating IT risks, ensuring compliance with relevant regulations, and supporting organization’s IT security operations.
Risk Management:
• Conduct regular threat, risks and vulnerability assessments.
• Assess vulnerabilities, risks and cyber security standard of technologies and solutions
• Identify, analyse, and prioritize IT security risks.
• Develop and oversees implementation of risk mitigation strategies and controls.
• Maintain and update the organization’s risk register.
• Identify IT risks and/ or vulnerabilities
Compliance:
• Stay up-to-date on relevant IT security regulations and standards (e.g., PCI-DSS, ITRM, IM8, etc).
• Develop and implement security policies and procedures to ensure compliance.
• Monitor and audit compliance activities.
• Report on compliance status to relevant stakeholders.
• Assist compliance initiatives to ensure conformance with security requirements
Security Operations:
• Monitor security logs and events for suspicious activity.
• Monitor and mitigate potential data loss events, and investigate suspected incidents.
• Investigate security incidents and implement appropriate response measures.
• Participate in incident response exercises and simulations.
• Assist with the deployment and maintenance of security tools and technologies.
Collaboration:
• Work closely with IT operations, development, and other business units to promote security
awareness and best practices.
• Provide guidance and training to employees on security policies and procedures.
• Collaborate with external auditors and regulators.
• Prepare regular management reports on overall IT security posture.
Qualifications:
• Bachelor’s degree in Cybersecurity, Information Technology, or related field (or equivalent
experience).
• Minimum of 3-5 years of experience in IT security, risk management, and compliance.
• Strong understanding of IT security concepts, frameworks, and methodologies.
• Working knowledge of relevant IT security regulations and standards.
• Experience with security tools and technologies (e.g., vulnerability scanners, SIEM, IDS/IPS).
• CISA / CISM / CISSP certifications will be an added advantage
• Knowledge in PHP, C++ and Java programming will be an advantage
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills.
• Self-driven and independent, with good attention to detail and quality
• Ability to work independently and as part of a team