FUNCTIONS: We are looking for security analysts for our cybersecurity team. As a security analyst, you will be a part of our intelligent and growing team of cybersecurity professionals helping clients to tackle their cybersecurity challenges and to understand how cybersecurity risks and technology impact their organisations. You will work on a variety of projects performed at our cybersecurity centre or client location. Your role within our team may focus on advisory or development of security solutions. We value that you are a team player with affinity and passion for cyber, technology, learning, self-development, and solving cybersecurity challenges.

As a security analyst, we will offer you a great opportunity to use and expand your knowledge and experience. You will determine your training program in consultation with your manager. We offer a wide variety of internal training as well as frequently chosen training such as CISM, CISSP, Security +, TOGAF, PRINCE2, PMP, and ITIL.

REQUIREMENTS:

• Experience in IT environment, consulting, or advisory
• Experience in technical security assessments and formulating recommendations for cybersecurity and business risks management
• A strong background in cybersecurity advisory/consulting and enhancing business resilience to cyber attacks
• Proficiency in implementation of security controls using practices such as OWASP, NIST CSF, COBIT, CIS, etc.
• Experience in practical vulnerability assessment, threat modelling, application security, and developing security solutions
• Experience in security gap analysis, risk assessments, and options analysis
• Proficiency in understanding cybersecurity regulations such as GDPR, PCI-DSS, NGPR, etc.
• Experience in SIEM, log management, security analytics, VPN, OS, networking technology, security technologies (e.g., IDS, IPS, and Firewalls, etc.), identity and access management (e.g., Active Directory, OpenLDAP, etc.), and virtualization technology (e.g., VMware, Hyper-V, etc.).
• Interest in Linux container technology (e.g., Docker), big data, databases, storage, mobile, cloud (e.g., IAAS, SAAS, and PAAS), DevOps, IT automation technology (e.g., Ansible), and virtual cloud infrastructure (e.g., Azure, AWS, Rackspace, etc.)
• Knowledge in emerging technology security such as blockchain security
• Strong analytical, presentation, teamwork, interpersonal, time management, and problem-solving skills
• Experience in cybersecurity maturity assessment
• Create actionable plans to grow and maintain clients
• Support development of cybersecurity education newsletter – learning and development
• Excellent communication skills (verbal, written, and listening), as well as articulating complex technical issues to the cybersecurity team
• Demonstrated client service excellence, as well as a strong team player and ability to coordinate with other teams and instances
• Ability to work under pressure of time and ambition for self-development

QUALIFICATIONS:

• A tertiary qualification (preferably technology)
• Industry certifications like CISM, CISSP, CEH, Security +, and TOGAF. Related certifications such as ITIL, PRINCE2, AWS, Azure, PMP, and GCP security are added advantages.
• Solution level certifications such as Microsoft technologies and cloud certifications are added advantages.
• Experience in one or more of the following sectors is an added advantage – IT, Telecoms, Banking & Financial Services, Energy & Utilities, Oil & Gas, Government, Retail, and Aviation.