Job Purpose:
The role is responsible for monitoring, analysing, and responding to security events and incidents to ensure timely detection and containment of threats. It ensures the effective implementation and continuous improvement of security controls aligned with regulatory requirements, industry standards, and organizational policies. The Senior IT Security Analyst supports vulnerability management, threat intelligence, and risk assessments to strengthen the overall security posture. The role collaborates closely with IT, business, and third‑party stakeholders to embed security best practices across systems, applications, and processes. It provides expert guidance during security investigations, audits, and regulatory inspections, ensuring accurate reporting and compliance. The position contributes to security architecture reviews, change management, and project initiatives to ensure security-by-design principles are applied.
Principal Accountabilities:
- Monitor, analyze, and investigate security events and alerts using SIEM, EDR, NDR, and other security platforms.
- Lead incident response activities, including containment, eradication, root cause analysis, and post‑incident reporting.
- Perform vulnerability assessments and coordinate remediation activities with infrastructure, application, and operations teams.
- Conduct regular security risk assessments and support risk treatment plans aligned with business objectives.
- Ensure implementation and effectiveness of security controls in line with ISO 27001, NIST, PCI DSS, and regulatory requirements.
- Support internal, external, and regulatory audits by providing evidence, explanations, and corrective action tracking.
- Analyze threat intelligence feeds and emerging cyber threats to proactively enhance detection and prevention capabilities.
- Review security architecture, system designs, and change requests to ensure security‑by‑design principles are applied.
- Manage and tune security tools and technologies to improve detection accuracy and reduce false positives.
- Coordinate with SOC, IT operations, and third‑party service providers on security monitoring and incident handling (as Level 3).
- Develop and maintain security procedures, playbooks, and standard operating procedures (SOPs).
- Support data protection and information classification initiatives, including security monitoring and incident handling.
- Perform periodic access reviews, privileged access monitoring, and support identity and access management controls.
- Track, report, and trend security metrics, incidents, and risk indicators for management and governance forums.
- Support business continuity, disaster recovery, and cyber resilience planning from a security perspective.
- Provide security guidance and awareness to IT and business teams to promote secure practices.
Requirements:
Education And Experience
- Bachelor's degree in computer science, Information Technology, Information Systems, or related discipline.
- Equivalent professional experience may be considered in lieu of formal education where applicable.
- CISSP, CISM, CISA, or equivalent internationally recognized cyber security certification.
- Vendor‑specific security certifications (e.g., EDR, SIEM, Firewall, Cloud Security) are highly desirable.
- Minimum 5–8 years of hands‑on experience in IT Security Operations, Cyber Security, or Information Security roles.
