Responsibilities 

Security Operations & Monitoring  

• Monitor ICT systems and services for vulnerabilities, malware, and suspicious activities using advanced tools.   

• The role involves proactive threat detection, triage of security events, and leveraging automation to streamline alert handling.  

• Continuously review and enhance monitoring processes to strengthen detection capabilities and minimise risk.  

Incident Management & Response  

• Act as the designated point of contact for cybersecurity incidents.  

• Triage, analyse, and escalate incidents in line with established policies and procedures.  

• Track remediation efforts for security gaps, audit findings and conduct post-incident reviews, implement lessons learned to strengthen response processes.  

Vulnerability Management & Risk Management  

• Design and integrate security systems to reduce exposure to threats.  

• Perform regular vulnerability scans across critical and high-value assets, including applications.  

• Track remediation progress and provide timely status reports to management and work with developers to remediate application-level vulnerabilities promptly.  

• Identify and assess cybersecurity risks, including application security risks and coordinate mitigation measures with relevant stakeholders.  

• Update risk registers monthly, ensuring new risks are assessed and mitigation plans documented within two weeks of identification. 

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related discipline (Master’s degree preferred)  
• Relevant professional certifications such as CISSP, CISM, CISA, CompTIA Security+, CEH,  
• Global Information Assurance Certification such as GIAC, GSEC ,GIAC or GCIH preferred. 
• Cloud Security Certifications such as AWS Certified Security – Speciality or Microsoft Certified: Azure Security Engineer Associate 
• Additional desirable skills: Knowledge of secure coding practices, application security frameworks (e.g., OWASP Top 10), and experience integrating security into the Software Development Lifecycle (SDLC). 
• Strong understanding of cybersecurity principles, concepts, threats, and best practices from both defensive and incident response perspectives. 

• Hands-on experience in:  

  • Cloud security (AWS, Azure, GCP) and hybrid environments 

  • Security monitoring, analytics, and reporting using SIEM and EDR tools 

  • Vulnerability assessments and management across infrastructure and applications 

  • Network and infrastructure security, including firewalls and endpoint protection 

  • Web and application security, including OWASP Top 10 and secure coding practices 

• Advanced knowledge in:  

  • Incident response and escalation, including coordination with technical and business stakeholders.

  • Vulnerability management frameworks and use of MITRE ATT&CK for threat analysis 

  • Able to develop and improve of security playbooks, post-incident reviews, and lessons learned 

• Preferred experience: Working with development teams to embed security in the software development lifecycle, conducting secure code reviews, and using automated scanning tools 

• Strong communication skills and able to explain complex technical concepts in clear, simple terms to both technical and non-technical stakeholders. 
• Critical thinking and problem-solving, capable of analysing situations, anticipating risks, and making sound decisions under pressure. 
• Proactive mindset, takes initiative to identify risks, suggest improvements, and drive security awareness.  
• High adaptability and continuous learning , comfortable with change, and committed to staying current with evolving threats and technologies. 
• Attention to detail, meticulous in monitoring, analysis, and documentation to ensure accuracy and compliance. 
• Able to collaborate and work as a team and works effectively with colleagues across different departments to implement security measures.