Senior Cybersecurity Analyst

The Senior Cybersecurity Analyst is responsible for safeguarding the group's information systems and sensitive data from cyber threats. This job is responsible for analysing complex security issues, implementing effective security measures, and providing guidance to team members.

KEY DUTIES AND RESPONSIBILITIES

Conduct in-depth analysis of security incidents, vulnerabilities, and breaches, providing timely and accurate reports to management.

Collaborate with cross-functional teams to ensure that security measures are integrated into all aspects of the group's operations.

Monitor and assess the group's network, systems, and applications for potential security risks and vulnerabilities.

Perform penetration testing, vulnerability assessments, and security audits to identify weaknesses and recommend mitigation strategies.

Design and implement advanced security controls to protect sensitive data and maintain regulatory compliance.

Provide guidance and mentorship to junior cybersecurity team members, assisting with skill development and knowledge enhancement.

Stay current with emerging threats, attack techniques, and industry trends to continuously improve the group's security posture.

Lead incident response efforts, coordinating with relevant teams to contain, mitigate, and recover from security incidents.

Collaborate with third-party vendors and partners to assess their security practices and ensure compliance with established standards.

Participate in the evaluation and deployment of new cybersecurity technologies, tools, and solutions.

Contribute to the development of security awareness training programs for employees to enhance their understanding of cybersecurity best practices.

Prepare and deliver comprehensive reports and presentations to convey security-related information to technical and non-technical audiences, including senior management.

Serve as an L3 Cybersecurity Engineer.

Perform deep analysis of security incidents to identify the full kill chain.

Create SOC/MDR related use cases and write detections.

Act as a subject matter expert for any cyber alert or incident that occurs.

Conduct L3 level investigations to determine the root cause of any cyber incident or alert.

Work with blue team tools and solutions (EDR, XDR, SIEM, Email Security, DLP, DDoS, WAF, Proxy) and analyse security alerts generated by these tools.

Create cybersecurity use cases for SOC.

Perform malware analysis.

Correlate different log sources and understand logs from various end devices, servers, network devices and applications.

Implement security solutions in collaboration with respective vendors.

Conduct threat intelligence actions and investigations.

Perform application security checks and reviews, implementing best application security controls.

Manage cloud security for the group and work with cloud security tools (Microsoft Azure).

Work on endpoint security.

Review and manage access control from a security perspective.

Implement security projects.

Conduct in automation using scripting languages and programming to automate day-to-day tasks in cybersecurity, build AI bots, identify patterns in large datasets that could signify malicious activity, and use AI tools to proactively search for threats within a network.

Uphold company values throughout business practices and utilise sound judgment in decision making.

Any other additional duties as may be required by management based on needs of the business.

WORK EXPERIENCE

A minimum of 5-7 years of experience in a similar role in Cyber Security.

Proven experience as a cybersecurity analyst or similar role, demonstrating progressive responsibilities.

Experience with AI-based cybersecurity tools including Darktrace, Security Copilot, SOAR, Next-gen

SIEM, CrowdStrike, AI-based Threat Intel, and Microsoft Security deployment (Defender, Purview DLP, IAM).

EDUCATIONAL QUALIFICATION

Bachelor's or Master's degree in Computer Science, Information Security, or a related field.

Certification in GIAC DFIR, Blue Team Level 1 and Blue Team Level 2 required.

Relevant certifications (e.g., CISSP, CISM, CISA, CEH) are highly desirable.

SKILLS/BEHAVIOUR ATTRIBUTES

Understanding of machine learning (ML) algorithms, data preprocessing, and feature engineering.

Strong knowledge of cybersecurity principles, technologies, protocols, and best practices.

Proficiency in using cybersecurity tools and software for threat detection, analysis, and mitigation.

Experience with security information and event management (SIEM) solutions.

Strong understanding of network architecture, operating systems, and cloud computing platforms.

Exceptional analytical and problem-solving abilities, with keen attention to detail.

Excellent communication and interpersonal skills, with the ability to explain complex technical concepts to non-technical stakeholders.

Demonstrated ability to lead and mentor junior team members.

Strong project management skills, with the ability to prioritise tasks and meet deadlines in a fast-paced environment.

Ethical mindset and commitment to maintaining the highest levels of confidentiality and integrity