Information Security Analyst (Penetration Testing)

Job Details

Job Title:

Information Security Specialist – Penetration Testing

Section:

Information Security

Functional Level:

Entry

Department:

Information Security

Sector

Information Security

Reporting Lines

Job Purpose

Handle the daily operations of the Information Security function.

Job Responsibilities

Specific objectives and deliverables will be agreed as part of your annual Performance and Development Review (PDR) process, the points below are a summary of your main duties and responsibilities.

Job specific responsibilities:

1. Administration of security systems (e.g. SIEM, EDR, FIM, Security Scanners)
2. Provide analysis and trending of security log data from numerous heterogeneous security devices.
3. Collaborate with Business Partners in Risk & Fraud on cases, providing technical investigative capabilities.
4. Detect incidents through proactive "hunting" analysis of security- relevant data sets.
5. Investigate host and network forensics, network traffic, malware analysis, and other related tasks required during security incident response workflows.
6. Incident Support: Assist in the investigation and response to cybersecurity alerts and incidents, under the mentorship of more experienced analysts.
7. Security Monitoring: Monitor security systems and tools, such as SIEM, EDR, and Security Scanners, for potential threats and vulnerabilities.
8. Data Analysis: Help in analyzing security logs and data from various sources, identifying anomalies and trends that could indicate potential security incidents.
9. Collaboration: Support cross-functional teams by providing technical assistance in security-related matters and investigations.
10. Documentation: Assist in maintaining clear and concise documentation related to incident response procedures, analysis findings, and security monitoring practices.

.

KPIs (Key Performance Indicators)

• Number of systems with known vulnerabilities. 35%
• Number of days to deactivate former employee credentials. 30%
• Frequency review of the third- party accesses. 25%

Reporting 10%

Competency Model

Technical competency level

Specifications: Qualifications, Experience, skills

Education

Minimum of a bachelor's degree in information technology or related field.

Technical Skills:

Scripting and Coding: Basic proficiency in scripting languages (e.g., bash, Python, Perl, PowerShell)

Security Tools and Technologies: Familiarity with security and monitoring tools such as Security Information and Event Management , Endpoint Detection and Response and vulnerability scanners. Understanding of their basic functions and purposes in a cybersecurity context.

Networking Fundamentals: Understanding of network protocols (TCP/IP, DNS, HTTP/HTTPS), network infrastructure, and security appliances (firewalls, IDS/IPS, VPNs). Ability to analyze network traffic for signs of anomalous activity.

Operating Systems: Knowledge of various operating systems (Windows, Linux/Unix, macOS) with an emphasis on security features and potential vulnerabilities.

Cybersecurity Fundamentals: Awareness of cybersecurity principles, including but not limited to threat landscapes, attack vectors, and malware types. Understanding of basic cybersecurity defenses and best practices.

Incident Response: Basic knowledge of incident response protocols and procedures, including stages of incident handling from preparation to recovery and post-incident analysis.

Threat Intelligence: An understanding of threat intelligence and its role in identifying and mitigating potential security threats.

Soft Skills:

Strong analytical and problem-solving skills, effective communication, and a team-oriented mindset. Eagerness to learn and adapt in a fast-paced environment.

Experience

Minimum 2 years of relevant experience.

Languages

English: Excellent command

Arabic: Native command

Conditions of Employment