Job Purpose

Monitoring of Investigating, documenting, and reporting on all information security (InfoSec) incidents as well as emerging trends. Administering of SOC tools and Information Protection systems to ensure protection of Company IT Assets, business systems and Information. Incumbent shall have in-depth knowledge of (Industrial) Network Cybersecurity operations area.

Key Accountabilities & Working Relationships

KEY ACCOUNTABILITIES

• Continuous monitoring of SOC tools such as SIEM for security incidents.
• Segregation of incidents into appropriate categories.
• Taking actions based on incident severity such as notifying system owners, Provide resolution steps or workaround, Following the Incident Response Plan, Escalate Security incidents according to the incident response escalation procedure, Properly document the SOC ticket, document and report false positives, Suggest or implement filtering tools to suppress recurring false positives, Resolve SOC tickets and ticket related issues, Trace attacks and gather information about attackers, Verify logging and reporting of newly integrated devices.
• Monitor health of SIEM components and create incidents to support team for action.
• Escalation of incident for non-standard incident.
• Generate reports as per defined templates and frequency.
• Enhance or develop and maintain and support computer software and hardware.
• Test and evaluate Information Security systems.
• Performs Cybersecurity audits, assessments, vulnerability tests and reports the findings and undertake measures to ensure conformance.
• Performs risk assessments, vulnerability tests and reports to management with findings and undertake measures to ensure conformance.

WORKING RELATIONS

Internal Interactions: Frequent contact with Senior Engineer for direction and guidance, and with customers for review and evaluation of application requirements.

External Interactions: Frequent contact with vendors for product information and technical support.

Who we are looking for

Education

Bachelor of Science (BS) OR Bachelor’s degree in Computer Science, Management Information Technology (MIS), Engineering, Physical Sciences, Mathematics or equivalent. 

Professional Qualifications

(Certifications & Accreditations)

IT Industry Accredited and related certificate e.g., ITIL, MCP, CCNA - Security, CompTIA Sec+, CEH.

Competencies

(Knowledge, Skills & Abilities)

• Knowledge and experience with PCs, LAN topologies, routers, Switches, and terminal servers 

• Knowledge and experience with Security incident handling and associated tools

• Knowledge of security applications such as IDS, Security Event Management, and anomaly detection tools

• Knowledge of Cybersecurity frameworks and standards such as NIST CSF, ISO 27001.

• Seek self-development programs/education

Experience

0-5 Years in Information Security function.

Languages

Thoroughly proficient in both verbal and written English.