datatrota
Signup Login
Home Jobs Blog

Senior Information Security Engineer at CapitalSage Technology Limited

CapitalSage Technology LimitedLagos, Nigeria Networking and Tech Support
Full Time

CapitalSage is an integrated digital financial service group, providing people-driven empowerment and inclusive solutions for individuals and businesses for sustainable value and wealth creation in Africa. We retail world-class technologies to African businesses and individuals so that they can prosper and realise their full potential. Our agenda is anchored on three significant pillars - financial inclusion, entrepreneurial development and wealth creation - steered by the force of innovative technology.

  • The Senior Information Security Engineer is responsible for developing and implementing security solutions to protect the organization's IT infrastructure, data, and systems.
  • The ideal candidate will have a strong understanding of cybersecurity best practices and a proven track record of success in implementing and managing security solutions.
  • The Senior Information Security Engineer will manage SIEM content, and monitor and detect cyber security threats & incidents.
  • The ideal candidate is highly motivated, intellectually curious, and analytical. The role requires a blend of cybersecurity experience and highly developed communication skills.
  • The purpose of this role is to enhance security monitoring tooling, detections, and incident response capabilities using SIEM solutions to provide a single view of the environment.

Responsibilities

  • Develop and implement security strategies and plans
  • Manage and maintain security infrastructure
  • Conduct security risk assessments and audits
  • Investigate and respond to security incidents
  • Train and educate employees on security best practices
  • Stay up-to-date on the latest security threats and trends
  • Work closely with the Engineering, Application Support, Cloud Support, and various Business Teams to improve existing security monitoring and deliver resilient and comprehensive security solutions
  • Onboard data to the required standards, maintain and tune log sources, data contents, and use cases
  • Provide evidence of compliance for our audited environments (including PCI, ISO27001, ISAE3000, etc)
  • Define how logs should be parsed and ingested for best practice
  • Engage with other teams to ensure that the SIEM is performing to standard with all necessary logging sources monitored
  • Analyse, design, and deliver solutions to detect and stop adversaries
  • Propose additional Security Monitoring Use Cases
  • Define thresholds and baselines to aggregate similar events then write correlation rules
  • Ensure SIEM technologies are integrated & utilized to protect cyber-related assets
  • Support the operation of the comprehensive SIEM platform
  • Analyse SOC alert statistics and workflows to reduce false positives and increase fidelity.
  • Manage and improve SIEM infrastructure to improve detection flexibility and reliability.
  • Build pipelines to enrich logs and alert results to provide a comprehensive view for SOC analysts.
  • Research new security technologies
  • Support relationships with 3rd party vendors to enhance monitoring
  • Contribute to requirements for other security (and allied) technologies such as Endpoint/Network Detection & Response, Intrusion Detection/Prevention, Web Proxies, et

Requirements

  • Bachelor's degree in computer science, information security, or a related field
  • 5+ years of experience in cybersecurity
  • Strong understanding of cybersecurity best practices
  • Proven track record of success in implementing and managing security solutions
  • Excellent communication and interpersonal skills
  • Ability to work independently and as part of a team
  • Senior-level experience within a logging and monitoring function, with functional knowledge of a Security Operations Centre, preferably within a Regulated Financial Services business
  • Familiar with different log onboarding techniques in Splunk including Syslog, HTTP event, Universal Forwarder, DB Connect, and API queries
  • Has the ability to write SPL and use and populate data models
  • Previous experience in an audited environment complying with common regulation standards
  • Experience with other common Security Monitoring Technologies
  • Knowledge of global security and reporting standards such as NIST and MITRE
  • Common cloud-based platform technology experience is beneficial
  • Delivery mindset supported by the ability to execute in a complex technical environment
  • Experience collaborating cross-functionally to identify and implement best practice security, logging, and monitoring processes
  • Strong interpersonal skills, including good communication with the ability to articulate ideas in a precise and concise manner
  • CISSP, GIAC certifications, or equivalent
  • Familiarity with Indicators of Compromise (IoCs), Indicators of Attack (IoAs), ATT&CK Tools, Techniques and Procedures (TTPs)
  • Strong interpersonal skills, including good communication with the ability to articulate ideas in a precise and concise manner
  • The ideal candidate is a technically inclined and experienced security specialist who enjoys working in a fast-paced collaborative team environment
  • Flexible to provide on-call support 24/7 in the future if required

Method of Application

Signup to view application details. Signup Now

More jobs like this

X

Send this job to a friend