Job Summary
Jobholder is in charge of reviewing the latest alerts to determine relevancy and urgency, creates new trouble tickets for alerts that signal an incident and require Incident responder review, runs Vulnerability scans and reviews vulnerability assessment reports, manages and configures security monitoring tools and ad-hoc report to SOC team leader when necessary. He also reports analyzed threats to Tier 3 SOC analyst for further analysis and investigation for root cause analysis.
Key Responsibilities
- 24/7 security monitoring and security incident response activities for NBR SOC and FinSOC connected Stakeholders.
- Timely response to cyber events occurring.
- Monitor and report to SOC Manager on health and security of SOC and FinSOC infrastructure.
- Quick and full planed system scanning and results analysis.
- End user support to IT security related issues.
- Ensure all NBR devices and systems are updated and patched.
- Monitoring of users activities, Perimeter devices alerts and behaviors to ensure there are no security breaches.
- Stay updated in all areas of information technology concerning security breaches or malicious attacks.
- Analyse tickets and take proper action.
- Leverages emerging threat intelligence (IOCs, updated rules, etc.) to identify affected systems and the scope of the attack.
- Reviews and collects asset data (config, running processes, etc.) on these systems for further investigation and ensure all work is done in compliance with local and federal laws and forensic standards.
- Determines and directs remediation and recovery efforts.
- Participate in Vulnerability analysis and internal penetration testing.
- Provide technical advice to ICT Directorate and staff on computer and data security issues
- Investigate information security vulnerabilities and threats facing NBR and propose solutions and improvements
- Cooperate with FinSOC peer groups to share security incidents and ease response plans.
- Cooperate with NCSA, R-CSIRT and other national and international security intelligences to share threats and security incidents.
- Represent NBR in the court of law as technical expert whenever NBR is involved in any case (this is common in the sector fraud cases)
- Comply with NBR policies and procedures
Qualifications, Experience and Skills
- At least a Bachelor’s degrees in Computer Science, Information Technology or related field.
- Two(2)years experience in Cyber Security or Information security
- Female candidates are encouraged to apply
Skills and Competencies Required
- Professional certifications such as CEH,CompTIA Security +
- Very good understanding of windows and Linux operating systems (OS architecture, information flows & instruction processing, ..)