Job Purpose:

• To be part of a team conducting 24/7 security monitoring of the Bank’s network, and systems, responding to alerts, conducting security assessments and providing security reports.

Key Responsibilities

• Be part of a team conducting 24/7 monitoring and analysis of security alerts and incidents generated by various security tools and technologies
• Conduct in-depth analysis of security events and incidents to identify root causes, indicators of compromise (IOCs), and attack vectors.
• Monitoring current and emerging cyber risks and escalating the IOCs pre-emptively.
• Configure and fine tune security monitoring systems to make sure the Bank is sufficiently protected.
• Stay current with emerging threats, vulnerabilities, and security technologies through continuous learning and professional development.
• Overseeing and implementing the Bank’s cyber security program and enforcing the cyber security policy/framework.
• Ensuring the bank maintains a current enterprise-wide knowledge base of its users, devices, applications and their relationships.
• Ensuring that information systems meet the needs of the bank, comply with the overall business strategies, ERM framework, risk appetite and ICT policies.
• Organizing cyber related training and awareness to improve security proficiency of staff.
• Conducting regular and comprehensive cyber risk assessments that consider people (i.e. employees, customers, customers, outsourcing and other external parties), processes, data, and technology across all its business lines and locations.
• Collaborate with other teams to address security vulnerabilities and improve overall security posture.
• Regularly review the Bank’s devices to ensure they are up to date with the latest patches, antivirus and conform to the Bank’s standards.
• Continuously assist in the IT disaster recovery and Business Continuity Management Planning.
• Develop and maintain Policies and Procedures to streamline monitoring and incident response processes to improve efficiency.
• Continuously improve the Bank’s detection tools and capabilities to keep pace with emerging threats
• Prepare reports for various stakeholders
• Any other official duties that may be allocated from time to time by the line manager.

Key Relationships:

• Direct Reports to this Position – None
• Customers of this Position – All Departments in the Bank, external parties and regulators

Skills, Competencies & Experience required for this Role

• A BSc. Information Technology/Computer Science/Cybersecurity/Business Technology or related fields.
• 2 years Technology experience with at least 1 year experience in Cybersecurity.
• A professional certification in any one of the following: Certified Cybersecurity (CC) / Certified SOC Analyst (CSA) / Certified Incident Handler (E|CIH) / Certified Threat Intelligence Analyst (CTIA) / Certified Ethical Hacker (CEH) / PENTEST+ / Security+ or their equivalent is an added advantage
• Technical knowledge of database, network, and operating systems security.
• Knowledge of various security methodologies and processes, and technical security solutions (firewall and intrusion detection systems).
• Knowledge and experience using one or more tools related to; SIEM, IDS/IPS systems,
• Network Security, Firewalls and Endpoint Protection Tools.
• Knowledge of TCP/IP Protocols, network analysis, and network/security applications.
• Strong interpersonal and communication skills.