Engineer - IP Security Forensics and Incident Management at MTN Nigeria

MTN Nigeria is part of the MTN Group, Africa\'s leading cellular telecommunications company. On May 16, 2001, MTN became the first GSM network to make a call following the globally lauded Nigerian GSM auction conducted by the Nigerian Communications Commission earlier in the year. Thereafter the company launched full commercial operations beginning with Lagos, Abuja and Port Harcourt. MTN paid $285m for one of four GSM licenses in Nigeria in January 2001. To date, in excess of US$1.8 billion has been invested building mobile telecommunications infrastructure in Nigeria. Since launch in August 2001, MTN has steadily deployed its services across Nigeria. It now provides services in 223 cities and towns, more than 10,000 villages and communities and a growing number of highways across the country, spanning the 36 states of the Nigeria and the Federal Capital Territory, Abuja. Many of these villages and communities are being connected to the world of telecommunications for the first time ever. The company\'s digital microwave transmission backbone, the 3,400 Kilometre Y\'elloBahn was commissioned by President Olusegun Obasanjo in January 2003 and is reputed to be the most extensive digital microwave transmission infrastructure in all of Africa. The Y\'elloBahn has significantly helped to enhance call quality on MTN network.

Mission:

To continuously drive MTNN businesses and services to achieve their set objectives and protect these services from internal and external threats while ensuring quality of service, compliance with security standards, availability, confidentiality, integrity, and a better customer experience.

Description:

• Manage and maintain all network security platforms and their associated software, such as firewalls, intrusion detection and prevention, load balancers, anti-dos, anti-spam, syslog, remote access, and other security appliances.
• Ensure active management of IPS/IDS, web filtering, application controls, DDOS, firewalls, WAFs, VPNs, load balancers, and every other technology is in line with security practices.
• Development of scripts for automation of tasks and deployments using Python, Shell, Ansible, or any other network programmability solution
• Demonstrate subject matter expertise in the areas of IPS, load balancers, WAF, anti-DOS, anti-SPAM, remote access, NAT, security information, event management, and next-generation firewalls with product-specific knowledge of Cisco, Juniper, Checkpoint, and Fortinet firewalls.
• Provides technical support for new integration, incidents, and fault resolution.
• Experience with Networking and Troubleshooting (TCP/IP, DNS, routing, switching, firewalls, LAN/WAN, NAT, Access-List, IPSec/SSL VPN, Remote Access, IPS, and ADC)
• Proactive monitoring and daily health checks on network security infrastructure ensure and adhere to security best practices.
• Coordinate and monitor log analysis on all network security nodes to ensure service availability and security requirements are met.
• Ensure compliance with existing security policies and best practices is adhered to from a network security perspective.
• Ensure proper integration of new network security elements in the regions and acceptance testing.
• Ensure proper implementation of change requests and planned activities.
• Monitor performance statistics and generate weekly reports.
• Ensure routine maintenance and housekeeping (records, backups, etc.) on all network security nodes within the region.
• Document network problems and resolutions for future reference.

Education:

• First degree in computer science or any related discipline
• Fluent in English
• CCNA, CCNP Security
• Certification in Cyber Security Incident Response
• Related Cyber Security Certification
• CISSP will be an advantage.
• Azure or AWS certification

Experience:

3–7 years of experience to include

• A minimum of 3 years experience in IT development or IT operations
• Experience working in a medium or large organization
• In-depth understanding of NAT, VPNs, Application Security, WAF, DNS, Web Security, DDOS, Anti-spam, Access List, Netflow, IPS/IDS, Log Analysis, and Routing over varied platforms such as Cisco, Juniper, Checkpoint, Fortinet, and F5.
• Experience supporting and monitoring network security systems in a telecommunications company, managing IPS, firewalls, load balancers, syslog/SIEM, remote access, and other critical network security appliances
• Familiarity with scripting languages and/or automation tools (Python, Ansible, NetMiko, etc.)
• In-depth knowledge of cybersecurity, attack methodology, and security incident management
• Good understanding of risk management, security controls, and standards
• Broad experience handling a variety of network security operational tools, monitoring, executive dashboard reporting, and data analysis

Method of Application