Cyber Security Consultant

Position Summary

The Cyber Security Specialist is responsible for protecting the organizations information systems, networks, and data from cyber threats. The role involves monitoring security tools, analyzing incidents, responding to threats, and implementing best-practice security measures.

Key Responsibilities

1. Security Monitoring & Incident Response

• Monitor security alerts, logs, and events across SIEM and other monitoring tools.
  
• Perform initial triage, analysis, and escalation of security incidents.
  
• Investigate suspicious activity, malware infections, and potential breaches.
  
• Implement incident response procedures and create incident reports.
  

2. Vulnerability Management

• Conduct regular vulnerability scans and penetration testing.
  
• Identify, prioritize, and remediate vulnerabilities across systems and applications.
  
• Work with IT teams to apply patches and updates.
  

3. Access & Identity Management

• Manage user access controls, IAM policies, and multi-factor authentication.
  
• Enforce least-privilege and zero-trust security principles.
  

4. Security Architecture & Compliance

• Assist in designing secure network and system architecture.
  
• Help maintain compliance with frameworks such as ISO 27001, NIST, GDPR, SOC 2, etc.
  
• Develop and update cyber security policies and guidelines.
  

5. Security Tools & Technology

• Configure and maintain security tools such as:
  
• SIEM (Splunk, QRadar, Azure Sentinel)
  
• Firewalls, IDS/IPS
  
• Endpoint protection, EDR/XDR
  
• DLP, CASB, PAM solutions
  
• Evaluate new security products and technologies.
  

6. Training & Awareness

• Conduct cybersecurity awareness training for employees.
  
• Promote secure behavior and best practices across the organization.
  

Required Qualifications

• Bachelor's degree in Computer Science, IT, Cyber Security, or related field.
  
• Strong understanding of networking, operating systems, and security fundamentals.
  
• Experience with SIEM, firewalls, antivirus, and vulnerability management tools.
  
• Knowledge of TCP/IP, IDS/IPS, encryption, authentication protocols.
  

Preferred Skills (Nice to Have)

• Certifications such as: CEH, Security+, CySA+, CCSP, CISSP, OSCP.
  
• Experience with cloud security (AWS, Azure, GCP).
  
• Knowledge of scripting (Python, Bash, PowerShell).
  
• Familiarity with digital forensics and malware analysis