Information Security Analyst

Requirements

• Bachelor’s degree in Computer Science, Information Security, Engineering, or related field (or equivalent experience).
  
• 2 - 3 years’ experience in Information Security, SOC operations, or related IT security roles (experience in a bank, fintech, or financial institution is a strong advantage).
  
• Hands-on experience with SIEM platforms (e.g., Splunk, QRadar, Azure Sentinel, ELK, or similar).
  
• Practical experience with vulnerability scanning tools (e.g., Qualys, Nessus, OpenVAS, etc.) and patch management processes.
  
• Familiarity with security frameworks and standards: ISO 27001, NIST CSF, CIS Controls, PCI-DSS, and NDPR.
  
• Exposure to cloud platforms (AWS, Azure, GCP) and their native security controls is an advantage.
  

• Monitor SIEM dashboards and alerts, escalating suspicious activities to CISO & IT Audit
  
• Log, track, and support closure of security incident tickets under supervision.
  
• Perform basic investigation of alerts (log review, IP/domain lookups, user verification).
  
• Run scheduled vulnerability scans and generate reports.
  
• Follow up with IT/DevOps on remediation status for vulnerabilities and patches.
  
• Engage with third-party vendors and service providers to track and remediate security issues impacting Zedcrest
  
• Maintain incident and vulnerability registers with accurate, up-to-date information.
  
• Assist in preparing security reports and metrics for the CISO and management.
  
• Help document and update SOC procedures, playbooks, and checklists.
  
• Support basic security awareness activities (e.g., phishing simulations, training logistics).
  
• Participate in risk assessments for new projects, third-party engagements, and technology changes.