Cyber Security Analyst-IT

Position Overview: The Cyber Security Analyst plays a critical role in safeguarding the digital assets and information of a Fast-Moving Consumer Goods (FMCG) company from cyber threats and attacks. This position involves monitoring, analyzing, and responding to security incidents, implementing security measures and controls, and providing expertise and guidance on cyber security best practices. The Cyber Security Analyst collaborates with internal teams to identify vulnerabilities, mitigate risks, and ensure compliance with regulatory requirements.

Key Responsibilities:

Security Monitoring and Incident Response:

Monitor security alerts and events using security information and event management (SIEM) tools, intrusion detection systems (IDS), and other security technologies.

Analyze security incidents and anomalies to determine their nature, scope, and potential impact on the organization's systems and data.

Respond to security incidents in a timely manner, containing and mitigating threats, and coordinating with relevant stakeholders to investigate and resolve incidents.

Vulnerability Management:

Conduct regular vulnerability assessments and penetration testing to identify weaknesses in the company's IT infrastructure, applications, and systems.

Prioritize and remediate identified vulnerabilities, working with IT teams to implement patches, configurations, or other controls to reduce risk.

Stay informed about emerging threats, vulnerabilities, and security trends, and recommend proactive measures to strengthen the company's security posture.

Security Controls Implementation:

Assist in the design, implementation, and maintenance of security controls and measures to protect the company's networks, systems, and data.

Configure and manage security technologies such as firewalls, antivirus software, encryption tools, and endpoint detection and response (EDR) solutions.

Develop and enforce security policies, standards, and procedures to ensure compliance with industry regulations and best practices.

Security Awareness and Training:

Develop and deliver security awareness training programs and materials to educate employees about cyber security risks, threats, and best practices.

Promote a culture of security awareness and compliance throughout the organization, emphasizing the role of every employee in protecting company assets and data.

Incident Reporting and Documentation:

Document security incidents, investigations, and remediation activities in accordance with established procedures and regulatory requirements.

Prepare incident reports and post-incident reviews to analyze root causes, lessons learned, and recommendations for improving incident response processes.

Qualifications and Skills:

Bachelor's degree in computer science, information technology, cyber security, or a related field; relevant certifications such as CISSP, CEH, or CompTIA Security+ are highly desirable.

Proven experience in cyber security roles, preferably in a corporate environment or within the FMCG industry.

In-depth knowledge of cyber security principles, technologies, and best practices, including network security, encryption, intrusion detection/prevention, and incident response.

Familiarity with security frameworks and standards such as NIST Cybersecurity Framework, ISO/IEC 27001, and PCI DSS.

Strong analytical and problem-solving skills, with the ability to analyze security incidents, assess risks, and develop effective solutions.

Excellent communication and interpersonal skills, with the ability to convey technical concepts to non-technical stakeholders and collaborate with cross-functional teams.