Key responsibilities:

• Assists with monitoring security alerts and events from various sources.
• Assists with investigating potential threats and escalates incidents as necessary.
• Assists in the implementation and monitoring of security controls, including firewalls, intrusion detection systems, and access controls.
• Assists with performing regular vulnerability assessments, analyses scan results, and assists in prioritising and remediating identified vulnerabilities.
• Supports the incident response team in investigating security incidents, documenting findings, and participating in remediation efforts.
• Installs security measures and operates software to protect systems and information infrastructure, including firewalls and data encryption programs
• Researches on and recommends fixes for detected vulnerabilities to maintain a high-security standard.
• Installs and upgrades antivirus software and assists with testing and evaluating new technology.
• Assists with the installation of security software and understands information security management.
• Researches security enhancements and makes recommendations to management.
• Stays abreast of information technology trends and security standards.
• Contributes to security awareness initiatives by creating training materials, conducting workshops, and educating employees about best security practices.
• Maintains accurate records of security incidents, assessments, and actions taken for reporting and audit purposes.
• Assists in the management and maintenance of security tools, including antivirus software, encryption tools, and security information and event management (SIEM) systems.
• Participates in risk assessments to identify potential security threats, vulnerabilities, and associated risks to the organization.
• Collaborates with cross-functional teams, IT, and other teams to ensure security measures are integrated into the organization’s processes and projects.
• Performs any other related task as required.

To thrive in this role, you need to have:

• Good communication skills to effectively convey technical information to non-technical stakeholders.
• Good analytical thinking and problem-solving skills to triage security events and perform basic investigations. 
• Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
• Understands firewalls, proxies, SIEM, antivirus/EDR, and IDPS concepts.
• Understands patch management with the ability to deploy patches in a timely manner whilst understanding business impact.
• Some proficiency python/other scripting language
• Familiarity with security frameworks, standards, and regulations (for example, Mitre ATT&CK, NIST, CIS, GDPR).
• Basic understanding of network and system architecture, protocols, and security controls.
• Ability to analyze security incidents and assess potential risks.
• Ability to work both independently and collaboratively in a fast-paced environment.

Academic qualifications and certifications:

• Bachelor’s degree or equivalent in information security, cybersecurity, computer science, or related disciplines.
• Security certifications such as CompTIA Security+ are advantageous.