We are looking for an innovative, self -driven, and ambitious Information Security Analyst to join our team!
This role is responsible for handling security events and also carrying out security assessments of business
products
to
identify
vulnerabilities
and
potential threats. As an Information Security Analyst, your job responsibilities include the following:
• Monitor computer networks for security issues, install security software, and document any
security issues or breaches.
• Investigate security breaches and other cybersecurity incidents.
• Stay up to date on information technology trends and security standards.
• Help colleagues install security software and understand information security management.
• Perform technical (evaluation of technology) and nontechnical (evaluation of people and
operations) risk and vulnerability assessments of relevant technology focus areas (e.g., local
computing environment, network and infrastructure, supporting infrastructure, and
applications).
• Provide recommendations regarding the selection of cost -effective security controls to mitigate
risk (e.g., protection of information, systems, and processes).
• Provide technical documents, incident reports, video -recorded descriptions, findings from
computer examinations, summaries, and other situational awareness information to relevant
stakeholders.
• Conduct and/or support authorized penetration testing on enterprise network assets.
• Perform penetration testing as required for new or updated applications.
• Review the security status of a system (including the effectiveness of security controls) on an
ongoing basis to determine whether the risk remains acceptable.
• Provide recommendations for how to improve the controls based on test scenario findings
• Analyze Threat Trends to identify indicators of compromise (IOCs)
• Develop your test scenarios by performing threat hunts and ethical hack tests
• Identify control gaps that allow threats to enter our network.
• Develop specific cybersecurity countermeasures and risk mitigation strategies for systems and/or
applications.
• Exploit network devices, security devices, and/or terminals or environments using various
methods or tools.
• Create comprehensive exploitation strategies that identify exploitable technical or operational
vulnerabilities.
• Test and evaluate locally developed tools for operational use.
• Identify functional and security -related features to find opportunities for new capability
development to exploit or mitigate vulnerabilities.
• Conduct exploitation of wireless computers and digital networks.
• Analyze identified malicious activity to determine weaknesses exploited, exploitation methods,
and effects on system and information.
Requirements
We would love to meet you if:
• You have at least 3 years of experience in Security center operations and offensive security.
• You have any security certifications such as Comptia S+, Comptia Cysa+, Comptia Pentest+, CEH.
• You have a strong knowledge of industry processes and regulations such as ISO 27001, NDPA and
PCI DSS.
• You have strong knowledge in configuring, deploying, and managing security tools such as SIEM
and EDR.
• You have experience with the Incident response cycle from the detection phase to eradication.
• You have superb problem -solving, critical and analytical skills.
• You have a flair for the use of solutions to carry out VAPT.
• You have a knack for the use of the SIEM (e.g. Alienvault)
• You use EDR (e.g. SentinelOne)
• You use DLP.
• You use any of the SAST tools (e.g. Sonarcube)
• You use DAST tools (e.g. burpsuite)
These are some of the nitty -gritty things you may have listed on your CV/LinkedIn profile but certainly do not define who you are:
• First degree in Information Security, or any related discipline.
• Experience working in the Payment or Fintech industry will be an advantage
• Relevant certifications.
Physical Requirements:
We currently run a flexible work structure; some days are remote while others require you to collaborate with colleagues at the office location. For each situation, you may have:
â Prolonged periods sitting at a desk and working on a computer.
This role reports to the Information Security Manager.
Location: Lagos, Nigeria
Grade Level: Associate
Please send us your CV or LinkedIn Profile to
[email protected] along with a message on why
you think Zone is a good fit for you.
Activate JobCopilot
Your email job alert is now active!