Information Security Specialist - eFinancialCareers

The ideal candidate will have a strong background in IT infrastructure security, preferably within financial institutions, experience with network infrastructure components, solid analytical and problem-solving skills, and a deep understanding of threat intelligence and incident response.

Having CISSP or other relevant certifications (e.g., Network+, Security+, MCSP, CAN) would be beneficial to have to perform this role.

Day-to-Day of the Role:

• Assist in identifying, analysing, and following up on security vulnerabilities in IT systems.
• Help maintain accurate IT asset inventory across various security platforms (e.g., CMDB, AV, SIEM).
• Participate in regular security reviews, vulnerability assessments, and help ensure compliance with established security standards.
• Monitor user access and permissions, identifying and reporting potential unauthorized access.
• Implement and maintain Active Directory and File Share security controls. Participate in regular AD security assessments and remediation efforts.

• Monitor and analyse phishing campaigns and assist in managing the organizational phishing response program.
• Review and distribute threat intelligence alerts to relevant stakeholders, helping assess potential impacts on organizational assets.
• Monitor security alerts identified by SOC and CSIRT, participate in investigations, and assist in incident response activities including malware analysis and threat hunting.
• Collaborate with the CERT team in maintaining an up-to-date threat landscape and contributing to the incident response playbooks.

• Support the maintenance of the IT security risk register and assist with internal and external security audits.
• Contribute to security reporting and tracking security risk indicators.