This role requires to monitor the analytical tools and perform alert management through SIEM solution to support Operations and Helpdesk to handle initial incident qualification security incidents within the company’s Network. He/ She shall also be responsible to report and escalate events to the with the Security Operations Center (SOC).

Job Specification:

• At least University degree in engineering/ science, IT/IS, computer applications or related field. 
• At least 5 years of experience with 2 years in cyber security protection, assessment or monitoring. Exposure in financial sector will be advantage.
• Experience in monitoring and administration of IDS/IPS, Firewall, VPN, Microsoft Active Directory, endpoint security software, and other security products.
• Experience in administration of Security Information Event Management (SIEM) tools and creation of basic co-relation rules, incident response and malware/advanced threat protection.
• Should have knowledge on TCP/IP network traffic and event log analysis from variety of sources including individual host logs, network traffic logs, firewall logs, web logs, or intrusion prevention logs. Experience with packet analysis (Wireshark) and Malware analysis.
• Working knowledge of diverse operating systems, networking protocols, systems administration and security technologies
• Ability to learn, understand and apply new technologies with strong interpersonal and communication skills. Ability to effectively prioritize and execute tasks in high-pressure environment is crucial.