•Bachelor’s degree in Cyber Security, Information Security, Computer Science, Information Technology, Computer Engineering, or a related field.

•Relevant professional certification such as CISSP, CISM, CompTIA Security+, CEH, ISO/IEC 27001 Lead Implementer/Lead Auditor, Microsoft Security, Compliance and Identity, or equivalent is an added advantage.

•Minimum of 3–5 years’ relevant experience in cyber security, information security, IT risk, security operations, or infrastructure security.

•Demonstrated experience in security monitoring, incident detection and response, vulnerability management, access control, endpoint security, network security, and log analysis.

•Good working knowledge of identity and access management, including MFA, privileged access control, role-based access, and account separation.

•Experience supporting or enforcing backup assurance, restore testing, disaster recovery, and business continuity controls.

•Familiarity with security awareness Programmes, phishing prevention, cyber reporting culture, and staff security behavior improvement.

•Understanding of security architecture and hardening principles, including segmentation, logging, alerting, evidence retention, secure remote access, recovery controls, and third-party security governance.

•

Proficiency in use of security tools such as SIEM, EDR/antivirus, firewalls, vulnerability scanners, email security tools, and access management systems.

•Knowledge of cybersecurity frameworks, standards, and good practice, including ISO/IEC 27001, NIST Cybersecurity Framework, CIS Controls, and basic regulatory/compliance requirements.

•Ability to investigate incidents, prepare security reports, risk assessments, and remediation recommendations for both technical and non-technical stakeholders.

•Good understanding of Windows and Linux environments, cloud security basics, network concepts, and endpoint protection.

•Strong analytical, problem-solving, and documentation skills.