Specialist; Security Operations Center (SOC)- 2 Positions at CRDB Bank | April 2024

April 10, 2024
Application deadline closed.

Job Description

Support in ensuring that the Bank’s information is protected in accordance with the needs of the business and according to Information Security principles of availability, integrity and confidentiality. To bring the organization’s information security risks under explicit management control through implementation of controls and close monitoring. To support the technical implementation of the Security Incident and Event Management (SIEM) toolset.

Key responsibilities:

  • Responsible for building relationships with teams across the company to understand current and future security threats and vulnerabilities at the direction of the SOC Manager. 
  • Steer work on the design and operation of current and future toolsets that will support the SOC development, as per current understanding of future scenarios; namely alerting, monitoring, and reporting.
  • Accountable for the development of long and short technical capabilities, including software and hardware requirements; gathering business requirements; developing initial findings and working to agree a prioritised list of technical capabilities and projects with the assistance of the SOC Analyst. 
  • Support SOC development roadmap by delivering SOC capabilities to the business and championing new ideas and initiatives to help improve new and existing capabilities
  • Responsible for ensuring that SOC delivery for Information Security is aligned with Information security policy, related information security standards and guidelines.
  • Deliver Information Security related support across a wide range of technology issues to technology and business leaders and their teams across various departments within the business.
  • Make recommendations to various project teams and sponsors across the business regarding Security Monitoring requirements and log data feeds that will need to feed into the SOC when new business functions are conceived to ensure all the Information Security requirements are captured at the earliest opportunity.
  • Responsible for ensuring all relevant technical standards and policy documentations are reviewed and maintained thought-out each of the SOC technical capabilities
  • Responsible for integration of standard and non-standard logs in SIEM and central log management solutions.
  • Responsible for ensuring that relevant request forms for each of the SOC capabilities have been completed correctly, assessed, and actioned in a timely manner.
  • Manage technical relationships with key personnel to ensure that all work is aligned to help deal with any issues or problems and the same are followed up and dealt with appropriately.
  • Represent the Information Security team at internal and external meetings and forums as agreed by the SOC Manager.
  • Required to communicate and collaborates at all technical levels throughout the corporation, and with external parties including liaise with and manage outsourced service providers.
  • Perform scheduled and ad-hoc security assessments across the Bank systems and networks, ethically, to identify loopholes and devise remediation actions, acting as part of red team and assisting the cyber security blue team in resolution of identified flaws. Security assessments include but not limited to penetration testing, cracking and ethical hacking.

Experience, Knowledge and Skills Requirements

  • Bachelor’s degree in computer systems technology or related academic field.
  • Minimum of 3 years’ experience in Cyber security operations.
  • At least 1 ICT Security professional certifications, CISA, CISSP, CEH, CISM, CFCE etc.
  • Experience in implementing and managing SIEM solutions.
  • Experience of working in a deadline-oriented incident management environment managing multiple issues simultaneously.
  • Technical handling interaction with vendors, contractors, and other stakeholders
  • Experience in operating big data forensic technologies.
  • Experience in operating VMware implementations.
  • Understanding of ISMS concepts.

Deadline: 21st April 2024