We are seeking a proactive Information Security Specialist skilled in security operations, threat intelligence, and risk management. This role is crucial for maintaining robust security protocols, identifying vulnerabilities, and ensuring compliance with security standards. The ideal candidate will have a strong background in IT infrastructure security, preferably within financial institutions, experience with network infrastructure components, solid analytical and problem solving skills, and a deep understanding of threat [CI(C1] intelligence and incident response.

Having CISSP or other relevant certifications (e.g., Network+, Security+, MCSP, CAN) would be beneficial to have to perform this role. [CI(C2] 

Day-to-Day of the Role:

Security Operations and Infrastructure

• Assist in identifying, analysing, and following up on security vulnerabilities in IT systems.
• Help maintain accurate IT asset inventory across various security platforms (e.g., CMDB, AV, SIEM).
• Participate in regular security reviews, vulnerability assessments, and help ensure compliance with established security standards.
• Monitor user access and permissions, identifying and reporting potential unauthorized access.
• Implement and maintain Active Directory and File Share security controls. Participate in regular AD security assessments and remediation efforts.

Threat Intelligence and Incident Response

• Monitor and analyse phishing campaigns and assist in managing the organizational phishing response program.
• Review and distribute threat intelligence alerts to relevant stakeholders, helping assess potential impacts on organizational assets.
• Monitor security alerts identified by SOC and CSIRT, participate in investigations, and assist in incident response activities including malware analysis and threat hunting.
• Collaborate with the CERT team in maintaining an up-to-date threat landscape and contributing to the incident response playbooks.

Security Risk Management and Compliance

• Support the maintenance of the IT security risk register and assist with internal and external security audits.
• Contribute to security reporting and tracking security risk indicators.

• CISSP or other relevant certifications (e.g., Network+, Security+, MCSP, CNA).

• Proven experience in an information security role is essential.

• Dynamic, creative, and proactive.
• Committed to continuous learning and staying updated with the latest technologies.
• Ability to work independently and achieve results.
• Strong timekeeping and time management skills.
• Ability to prioritize and meet tight deadlines
• Hands-on approach with a willingness to go the extra mile.