Stanbic IBTC Bank, a leading African banking group is recruiting to fill the position below:
POSITION : SOC Analyst
DESCRIPTION
Responsible for performing security monitoring and incident handling to ensure the Confidentiality, Integrity and Availability of information assets for the Standard Bank Group.
Key Responsibilities/Accountabilities
- Engagement:
- Partner with relevant stakeholders to maintain and improve the security posture of Business and IT.
- Develop appropriate measures to understand the effectiveness of securing the bank through the availability of systems.
Service Delivery:
- Update the Case Management tools with evidence trails of all analysed incidents.
- Document results of incidents.
- Escalate and provide feedback on incidents as per Incident Handling Classification Standard and process.
- Provide support to Lead Analyst and coordinate activities in support of Incident Containment.
- Interact with the CSIRT team by assignment from Lead Analyst or Manager of Cyber Security Operations Centre.
- Perform monitoring via the Security Information and Event Management (SIEM) tool as well as from external sources (e.g. telephone or email).
- Report on false positives and escalate those to the Lead Analyst for verification.
- Undertake incident analysis, tracking, recording, and response.
- Work with or assist other Cyber Security Incident Response Team (CSIRT) members in analysis activities.
- Report new attack types or suspicious activity to the Lead Analyst.
Mitigation of Risk:
- Continuously report on incidents identified via the SIEM.
- Spot patterns across a number of systems to provide advanced warning on new threats.
- In-depth knowledge of Stanbic IBTC’s policies, procedures, or overall IT environment. Adherence to all applicable Policies and Procedures is mandatory.
Reporting:
- Ad- hoc compilation and submission of M.I.S reports.
- Security incidents reporting
Qualifications
- B.Sc in any Science courses
- MCSE / CISA / CISM / CISSP etc would be beneficial
- 2 - 3 years Experience in IT
- 1 - 3 years Working knowledge of the ITTCP/IP, HTTP, encryption, network access controls, Security principles
- Ability in the incident management and software development lifecycles
Skills/Expertise:
- Demonstrate knowledge of standards associated with the role, e.g. ISO, CobiT, ITIL.
- Understanding of incident management and case management technologies (ticketing systems).
- Understanding of the CSOC and CSIRT objectives and requirements.
- Relevant IT certifications.
- Working knowledge of the IT and IT Security field including TCP/IP, HTTP, encryption, network access controls, intrusion detection and prevention systems.
- Working knowledge of relevant Operating Systems.
Sorry the application deadline for this job has elapsed
