JOB OVERVIEW

The Senior Officer, Cybersecurity Operation Specialist, assists the Information Security Manager in overseeing and executing security operations tasks and cybersecurity initiatives. This role ensures that all processes within the Security Operations Center (SOC), cybersecurity intelligence, external threat assessment, advisory services, and cybersecurity standards development are effectively implemented and maintained. The position plays a key role in cybersecurity assessment and provides advisories on risk remediation or mitigation controls, enhancing defensive capabilities, and driving continuous improvement in the Bank’s overall cybersecurity maturity.

JOB DUTIES & RESPONSIBILITIES

• Assist the manager in supervising day-to-day SOC activities, including cooperating, monitoring, detection, and response to cybersecurity events.
• Ensure SOC processes, playbooks, and incident response procedures are up-to-date and properly executed.
• Maintain and improve security monitoring tools, SIEM configurations, and log management practices.
• Provide recommendations and best practices to ensure the SIEM tool is optimized and tailored to business needs, minimizing false-positives while maximizing true-positives.
• Act as a point of contact between the SOC team, cybersecurity intelligence functions, and management.
• Perform or assist in penetration testing and offensive security assessments to proactively identify vulnerabilities and strengthen the Bank’s cybersecurity posture.
• Assist in managing cybersecurity incidents by handling preparation, investigation, escalation, and reporting activities.
• Continuously monitor and analyze threat intelligence to detect potential risks and emerging threats from external attack vectors.
• Contribute to the development, implementation, and maintenance of cybersecurity policies, standards, and guidelines.
• Track and coordinate remediation efforts with relevant teams.
• Provide actionable intelligence and recommendations to stockholders and management.
• Review and improve cybersecurity operational processes to enhance efficiency and effectiveness.
• Maintain accurate documentation of procedures, incidents, and investigations.
• Assist and support other tasks which are assigned by the line manager.

QUALIFICATION & REQUIREMENTS

• Bachelor’s degree in Information Technology (IT), Cybersecurity, Information Security, Computer Science, or a related field.
• 3+ years’ experience in security operations center, cybersecurity threats intelligence, cybersecurity incident management, or similar roles.
• Hands-on experience with SIEM, IPS/IDS Tool, or Security Operation Center (SOC).

• Strong knowledge of the MITRE ATT&CK Framework (Tactics, Techniques, and Procedures), network and application security, Windows and Linux server hardening, threat modeling, and cybersecurity incident response.
• Knowledge of penetration testing and cybersecurity intelligence methodologies and tools.
• Practical understanding of network protocols, Firewalls, Routers, Windows, Linux, Virtualization platforms, and Cloud platform security.
• Understanding of ISO 27001, NIST, CIS Controls, MITRE ATTA&CK, or other frameworks.
• Professional certifications in cybersecurity, such as CSA, CEH, CompTIA Security+, OSCP, CCSP, or similar are preferred.
• Ability to assist in developing cybersecurity policies, procedures, and advisory guidelines.
• Strong analytical thinking, problem-solving, and communication skills.
• Self-driven professional with a growth mindset, committed to continuously enhancing capabilities to address emerging technologies and evolving cybersecurity threats.