Overview
The Information Security Operations Officer is a key operational contributor to information security operations, responsible for day-to-day activities including monitoring, incident management, threat hunting, and vulnerability management.
Key Responsibilities
- Champion information security operations, including incident assessment, categorization, triage and escalation.
- Provide expertise in Information Security Incident Response, driving detection, threat hunting and incident analysis.
- Monitor and assess the ILO threat landscape, identify and assess emerging risks, and participate in mitigation activities.
- Drive the hardening and baselining of assets, monitor and investigate deviations from security baselines.
- Participate in planning and deliver simulation exercises to test preparedness and validate response capabilities.
- Contribute to data analysis and reporting capabilities to collect and analyse logs, metrics, and events.
- Conduct targeted digital forensics services to acquire images and reconstruct intrusion timelines.
- Support Threat and Vulnerability management, ensuring IT systems are discovered and scanned.
- Closely monitor technology developments within the domain to anticipate shifts and propose evolutions.
- Advocate for information security standards and best practices across the Organization.
Required Experience
At least five years of professional experience in the cyber security field.
Qualifications
Advanced level university degree in computer science or other closely related field. A first-level university degree (Bachelor’s or equivalent) in computer science or other relevant field with an additional two years of relevant experience will be accepted in lieu of an advanced university degree. One or more industry-recognized certifications covering IT security such as CISSP, BTL1/2, GCIH, TryHackMe SOC, Microsoft Certified Security Operations Analyst Associate, any relevant SANS certifications, or equivalent.