Job Summary

• The primary role of the Analyst in cybersecurity is to safeguard the organization’s digital assets, infrastructure, and sensitive information from cyber threats.
• The roleholder collaborates closely with cross-functional departments and service providers to implement robust security measures and cultivate a culture of cyber resilience.

Job Context

• Evolution and highly competitive Fintech Industry
• Multi regulated environment
• Environmental, social and governance prioritized
• Evolving Telco with a focus on business platform and digital
• Partnerships at the core of industry plans
• Regionalized structure
• Financial inclusion at the core of government agenda
• Localization a key objective for business and government
• Brand Reputation
• Performance driven environment
• Diverse cultural environment

Job Role

Security Monitoring and Analysis:

• Monitor security events and alerts to identify potential threats and vulnerabilities.
• Analyze security incidents to determine their nature, scope, and potential impact on the organization’s systems and data.
• Provide timely response and escalation for security incidents, ensuring prompt resolution and mitigation of risks.
• Lead incident response efforts to investigate and remediate security incidents, breaches, or vulnerabilities.
• Coordinate with internal teams and external partners to contain security incidents and minimize their impact on operations.
• Develop and maintain incident response plans and procedures to ensure an effective and coordinated response to security incidents.

Vulnerability Assessment and Management:

• Conduct regular vulnerability assessments and scans to identify weaknesses in the organization’s IT infrastructure and systems.
• Prioritize vulnerabilities based on risk and severity, and work with IT teams to implement remediation measures.
• Monitor and track the status of vulnerability remediation efforts to ensure timely resolution of identified issues.

Security Awareness and Training:

• Develop and deliver security awareness training programs to educate employees about cybersecurity risks and best practices.
• Conduct phishing simulations and other security awareness activities to test and improve employees’ awareness and response to potential threats.
• Promote a culture of security awareness across the organization through ongoing communication and engagement.

Policy Development and Compliance:

• Work with the information security team to develop, review, and update information security policies, procedures, and guidelines to ensure compliance with regulatory requirements and industry standards.
• Conduct regular audits and assessments to verify compliance with security policies and procedures.
• Provide guidance and support to internal teams to address compliance gaps and implement corrective actions as needed.

Security Tools and Technologies:

• Collaborate with group team to evaluate and implement security technologies and tools to enhance the organization’s security posture.
• Configure and manage security systems such as SIEM, IDS/IPS, antivirus solutions, and endpoint protection platforms.
• Stay updated on emerging security technologies and trends to recommend and implement appropriate solutions.

Risk Management:

• Identify, assess, and prioritize cybersecurity risks to the organization’s systems, data, and operations.
• Develop and implement risk mitigation strategies and controls to reduce the likelihood and impact of security incidents.
• Monitor and report on the effectiveness of risk mitigation efforts and recommend improvements as necessary.

Qualification Required & Experience

Education

• Minimum of bachelor’s degree in computer science, Software Engineering, Information Technology, or a related field.
• AWS Certified Solutions Architect or Microsoft Certified: Azure Solutions Architect Expert may be preferred.

Experience

• Minimum of 3 years relevant experience in cybersecurity, information security, or a related field is usually required.
• Experience may include roles such as security analyst, IT security specialist, or network administrator with a focus on cybersecurity responsibilities.
• Candidates with internships, co-op placements, or relevant certifications may also be considered, depending on the organization’s requirements.

Competencies

Professional/Technical Competencies:

• Proficiency in cybersecurity technologies, tools, and methodologies is essential. This includes knowledge of security information and event management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), vulnerability assessment tools, and endpoint protection solutions.
• Familiarity with networking concepts, operating systems, and cloud computing environments is also beneficial.
• Strong analytical and problem-solving skills are necessary to analyze security incidents, assess risks, and recommend appropriate mitigation strategies.
• The ability to interpret complex security data and identify trends or patterns is highly valued.
• Excellent written and verbal communication skills are important for conveying technical information to both technical and non-technical stakeholders.
• The ability to document security incidents, prepare reports, and deliver presentations is essential.
• Familiarity with incident response procedures and methodologies is beneficial for effectively responding to security incidents, conducting investigations, and implementing remediation measures.
• Understanding of risk management principles and practices is necessary to assess cybersecurity risks, develop risk mitigation strategies, and ensure compliance with regulatory requirements and industry standards

Must live the MTN Values of

• Lead with Care, Collaborate with Agility, Serve with Respect, Can Do with Integrity, Act with Inclusion

Must exhibit the MTN Vital Behaviors of

• Complete Candor, Complete Accountability, Active Collaboration & Get it done.

Location: Accra

How To Apply For The Job

Qualified applicants should indicate Vacancy Ref no: MMLACS257 as the email subject and ensure that CVs are saved in applicants’ names. Applications without the subject and CVs saved in their names will automatically be disqualified.

Interested and qualified applicants should send their Curriculum Vitae to:

[email protected]

Closing Date: 19 February, 2025

• Applicants should have served at least twelve (12) months or more in their current role with Scancom PLC.
• Applicants should also make their managers aware that they are applying for the position.
• Only shortlisted applicants will be contacted.