Information Security Analyst

Information Security Analyst

Asad Hameed

We are seeking a talented and passionate Information Security Analyst to join our dynamic team. In this role, you will be responsible for enhancing the security posture of our SaaS solutions by implementing key security initiatives, conducting risk assessments, managing security incidents, and ensuring compliance with global standards. If you’re ready to make an impact in the fast-paced world of fintech security, we’d love to hear from you!

Key Responsibilities

Governance, Risk, and Compliance (GRC):

  • Develop, implement, and maintain security policies, standards, and procedures to ensure smooth operations and compliance.
  • Perform regular risk assessments and recommend strategies to mitigate identified security threats.
  • Ensure regulatory compliance (e.g., ISO 27001, GDPR) by supporting internal and external audits.

Security Operations Centre (SOC):

  • Monitor security alerts and incidents using advanced SIEM and other security tools.
  • Perform initial triage and analysis of security incidents to identify root causes and mitigate risks.
  • Collaborate with senior SOC analysts to ensure rapid incident resolution.
  • Maintain detailed documentation for incident response and create reports for future reference.

Vulnerability Assessment and Penetration Testing (VAPT):

  • Conduct regular vulnerability assessments and penetration testing on networks and application systems.
  • Identify, document, and report vulnerabilities along with remediation suggestions to ensure timely resolutions.
  • Stay up-to-date with emerging security threats, vulnerabilities, and best practices for system security.

Qualifications

Education:

  • A Bachelor’s degree in Computer Science, Information Security, or a related field.

Experience:

  • 2-3 years of hands-on experience in Information Security, specifically in a FinTech or similar high-security environment.

Required Skills:

  • Codebase Security: Strong understanding of securing codebases and integrating security measures into the software development lifecycle.
  • CI/CD Pipelines: Experience with Continuous Integration/Continuous Deployment (CI/CD) pipelines and securing deployment processes.
  • GitHub Security: Knowledge of best practices for securing GitHub repositories.
  • Penetration Testing (PenTest): Practical experience conducting penetration tests and identifying vulnerabilities.
  • Security Policy-Making: Experience in developing and implementing security policies and procedures.
  • Security Tools: Familiarity with tools such as SonarQube for code analysis and quality assessment.
  • ISO Knowledge: Strong understanding of ISO-9001, ISO-27001, and other relevant standards for security management.
  • Communication: Excellent communication skills, capable of explaining complex security concepts to both technical and non-technical audiences.
  • Security Frameworks & Standards: Familiarity with frameworks like NIST, ISO 27001, and other industry standards.
  • Analytical & Problem-Solving: Strong skills in investigating security incidents and implementing effective solutions.
  • Team Collaboration: Ability to work efficiently in collaborative, cross-functional teams.

Preferred Certifications:

  • CompTIA Security+
  • Certified Ethical Hacker (CEH)

Benefits

  • Competitive salary package commensurate with experience.
  • Opportunities for career growth and professional development within a fast-paced, innovative FinTech environment.
  • Dynamic and supportive work culture with access to cutting-edge security tools.
  • A chance to make a significant impact in the cybersecurity domain while working alongside a talented team.

Application Instructions

Interested candidates should submit their updated CV

Asad Hameed
Latest posts by Asad Hameed (see all)
Apply for this job
Submission
Gender?

Leave a Comment