SENIOR CYBER DEFENSE CENTRE ANALYST
Kenya
TRENDING
JOB DESCRIPTION
Reporting to the Team Leader – Cyber Defense Centre (CDC), the successful candidate will lend support in Cyber threat detection, working in 24/7 shifts, providing eyes-on-the-glass service at the Safaricom CSOC, performing real-time monitoring and identification of security incidents.
He/She will help identify suspicious activity, open incident investigation tickets, and escalate any key concerns to Level 2/3 for additional analysis & communication. Additionally, he/she will take up tasks in threat research, threat simulation, content engineering and infrastructure management
RESPONSIBILITIES
- Work in 24*7 shifts performing real time monitoring of security alerts generated by various security tools deployed by Safaricom
- Serves as a primary point of contact for reporting potential security incidents
- Validate, classify and open tickets for security incidents
- Analyze and assess security alerts and escalate to Level 2/3 analysts for further investigations and communication
- Document security incidents as identified by the case management process
- Provide feedback on enhancing the operations of the cyber security operations Centre
- Respond to generated security alerts within the time window as defined in procedural SLAs
- Pick out potential intrusions from seemingly benign sets of audit logs or security alerts
- Triage (primary investigation) of detected security alerts and make necessary escalation decisions
- Escalation to appropriate teams, follow ups and help during remediation.
- Take part in purple team activities.
- Review threat intelligence and take part in threat intel activities.
- Carry out content engineering tasks assigned.
- Take up threat hunting tasks.
QUALIFICATIONS
- Bachelor’s degree in Electrical Engineering/Computer Science/IT Security/Information Technology
- Knowledge of common SIEM solutions, the purpose of them and an understanding of how they work
- Knowledge of common network protocols such as TCP/IP, HTTP, DNS, etc.
- Experience with Microsoft Windows and *NIX operating systems is required.
- Knowledge and/or experience with common security tools such as anti-virus, Intrusion Prevention Systems and Firewalls is an added advantage
- Knowledge and/or experience with Relational Database Management Systems (RDBMS) – Oracle, MS SQL, My SQL, Pervasive SQL is an added advantage
- Good communication and presentations skills are required
- Enthusiasm, curiosity, thirst for knowledge and passion for the job is required
- Analytical thinking
- Customer focused. Team spirit
- Learning agility
ABOUT US
We are the leading telecommunication company in East Africa. Our purpose is to transform lives by connecting people to people, people to opportunities and people to information. We keep over 42 million customers connected and play a critical role in the society, supporting over one million jobs both directly and indirectly while our total economic value was estimated at KES 362 Billion ($ 3.2 billion) for the 12 months through March 2021.
We are listed on the Nairobi Securities Exchange (NSE) and with annual revenues of close to KES 298 Billion ($2.5 billion) as at March 2022. We were founded in 1997 as a fully owned subsidiary of Telkom Kenya before a 40 percent acquisition by Vodafone Group PLC in May 2000, and a public offering of 25 percent shares through the NSE in 2008. Under the management of Vodafone Group PLC, we welcomed Michael Joseph, as our first CEO, a few months later in July of 2000. He led the company’s growth to accommodate 16.71 million subscribers from the previous 20,000, largely owing to innovative products like M-PESA in 2007.