Security & Threat Monitoring Specialist
The Gather Data Security (GIS) division is capable of the first-line assurance of the secrecy, judgment, and accessibility of the Bank’s data frameworks, information, and mechanical infrastructure.
The part holder will be dependable for observing and examining KCB Group’s cybersecurity pose whereas regulating Security Data and Occasion Administration (SIEM), Database Action Administration (DAM), and other IT security observing frameworks for log administration, security observing, risk discovery, and data security occurrence reaction.
Observing inside and outside cybersecurity dangers, analyzing logs, occasions, and cautions created by different stages for odd action, prove of security occurrences, and other mistake conditions which will constitute a breach in security or a corruption of the astuteness or secrecy of KCB Bank Group’s data innovation frameworks and data assets.
Performing exact real-time investigation and relationship of logs/alerts from a huge number of log sources/devices with a center on deciding whether the occasions constitute security occurrences.
Making methods, run books, and other high-level and low-level documentation for arranging, sending, and overseeing SIEM and its components inside the Bank.
This incorporates moving forward the current state of the SIEM and Security Operations Middle (SOC) and actualizing a guide to realize SIEM / SOC development.
Meddle with Overseen Security Benefit Suppliers (MSSPs), other merchants, and inner groups to take after up on alarms and tickets raised, guaranteeing their palatable determination and closure.
Investigating on and giving specialized security ability almost progressed diligent dangers influencing the keeping money industry from different risk nourishes and risk insights platforms.Updates will be detailed to senior management.
Planning, executing, and tuning security framework observing tools.
Collaborating with Innovation SMEs to form related utilize cases and occurrence cautions inside the Bank’s security observing tools.
Providing specialized security back to ventures in a bid to guarantee that security logging and occurrence administration are built into the applications as contradicted to the more costly preparation of including these security highlights taking after an incident or to a framework that’s as of now in production.
Fittingly and for all intents and purposes protecting the data undertaking in understanding with built up approaches, methods, rules and practices.
Staying side by side of the most recent patterns in hacking methods and pernicious computer programs, particularly those focusing on the budgetary administrations industry, and altering the Bank’s security observing approach appropriately to obstruct the same.
Bachelor’s degree in Data Innovation/ Computer Science/ Broadcast communications/ Building (Electrical, Electronic) or related.
At least one from the following:
Certified SOC Examiner (CSA).
Certified Occurrence Handler (E|CIH).
Certified Risk Insights Investigator (CTIA).
Certified Data Frameworks Inspector (CISA).
Certified Data Frameworks Security Proficient (CISSP).
Certified Data Security Director (CISM).
Any seller particular SIEM certification (Splunk, QRadar, LogRhythm, ArcSight, AlienVault, etc.)
Any dealer specific SIEM certification (Splunk, QRadar, LogRhythm, ArcSight, AlienVault, etc.).
5 a long time dynamic working encounter in Data Innovation with at least 3 a long time in Data Security and 2 a long time Security Data and Occasions Administration (SIEM) Operations.
Strong interpersonal and communication skills. The over position may be a requesting part for which the Bank will give a competitive compensation bundle to the effective candidate.