Security Operations Centre (SOC) Analyst at NCBA Group

Job Purpose Statement

The Cyber SOC Analyst is responsible for monitoring and defending the organization’s IT infrastructure against cyber threats. This role involves identifying, analyzing, and responding to security incidents and vulnerabilities. The SOC Analyst plays a key role in maintaining the security of networks, systems, and applications, ensuring the organization’s assets are protected from cyberattacks

Key Accountabilities (Duties and Responsibilities)

SOC Monitoring & Log Management (60%):

• Collect, review, and analyze logs from various security tools and infrastructure devices (e.g., firewalls, routers, servers) to detect anomalies.
• Manage security incidents through all phases of the incident response process through to closure.
• Send weekly tools coverage for SIEM, DAM, Vulnerability management, and EDR.

Information Security Processes (20%):

• Ensure proper and conclusive resolution of reported issues.
• Manage security incidents through all phases of the incident response process through to closure.

Audit and Risk (20%):

• Support all Audit and Risk initiatives and assessments around SOC.

Job Specifications

Ideal Person Specifications:

• A Bachelor’s degree in Computer Science, Information Technology, or a related field.
• Minimum 3 years working experience in a busy IT environment.
• Certification in a systems security or audit-related area, such as CEH, CISA, CISM, or CISSP.
• Deep interest in computing and cybersecurity.
• Excellent analytical, planning, and organizing skills.
• Familiarity with methods for ethical security hacking/penetration testing.
• Knowledge of SIEM toolsets.
• Experience/Knowledge in security Incident Detection and Response.
• Familiarity with tools and techniques used by hackers.
• Excellent written and oral communication skills.