Security Analyst
Current• Track and analyse security events (such as malware, unauthorized access, or suspicious activity) using Security Information and Event Management (SIEM) tools Like Microsoft Defender.• Investigate, contain, and mitigate security incidents. Collaborate with the team to perform forensics, recover systems, and generate reports.• Regularly assess and patch vulnerabilities in systems and software to reduce the risk of attacks, ensuring all systems are up to date and securely configured.• Design and implement layered security defences to protect against advanced threats, using firewalls, intrusion prevention systems (IPS), and endpoint detection and response (EDR).• Help create, update, and enforce security policies, standards, and guidelines to ensure best practices are followed across the organization.• Monitor network traffic using tools such as firewalls, IDS/IPS, and traffic analysers to detect and block malicious activities.• Deploy and manage security solutions for endpoints (e.g., laptops, mobile devices) to ensure they are protected against malware, phishing, and other threats.• Regularly review and analyse logs from various sources (firewalls, intrusion detection systems, servers) to identify and respond to security concerns.• Educate employees on security best practices, phishing attacks, password policies, and safe internet usage to minimize the risk of human error.• Implement and manage IAM policies, ensuring that only authorized users have access to critical systems and data. This includes managing role-based access control (RBAC) and enforcing multi-factor authentication (MFA).• Implement and monitor DLP systems to ensure sensitive data is not improperly accessed, moved, or shared outside the organization.• Oversee regular patching and updates of operating systems, applications, and firmware to mitigate vulnerabilities.