• Assist the manager in supervising day-to-day SOC activities, including cooperation, monitoring, detection, and response to cybersecurity events.
• Ensure SOC processes, playbooks, and incident response procedures are up-to-date and properly executed.
• Maintain and improve security monitoring tools, SIEM configurations, and log management practices.
• Provide recommendations and best practices to ensure the SIEM tool is optimized and tailored to business needs, minimizing false-positives while maximizing true-positives.
• Act as a point of contact between the SOC team, cybersecurity intelligence functions, and management.
• Perform or assist in penetration testing and offensive security assessments to proactively identify vulnerabilities and strengthen the Bank’s cybersecurity posture.
• Assist in managing cybersecurity incidents by handling preparation, investigation, escalation, and reporting activities.
• Continuously monitor and analyze threat intelligence to detect potential risks and emerging threats from external attack vectors.
• Contribute to the development, implementation, and maintenance of cybersecurity policies, standards, and guidelines.
• Track and coordinate remediation efforts with relevant teams.
• Provide actionable intelligence and recommendations to stockholders and management.
• Review and improve cybersecurity operational processes to enhance efficiency and effectiveness.
• Maintain accurate documentation of procedures, incidents, and investigations.
• Assist and support other tasks that are assigned by the line manager.

• Bachelor’s degree in Information Technology (IT), Cybersecurity, Information Security, Computer Science, or a related field.
• 3+ years’ experience in a security operations center, cybersecurity threats intelligence, cybersecurity incident management, or similar roles.
• Hands-on experience with SIEM, IPS/IDS Tool, or Security Operation Center (SOC).

• Strong knowledge of the MITRE ATT&CK Framework (Tactics, Techniques, and Procedures), network and application security, Windows and Linux server hardening, threat modeling, and cybersecurity incident response.
• Knowledge of penetration testing and cybersecurity intelligence methodologies and tools.
• Practical understanding of network protocols, Firewalls, Routers, Windows, Linux, Virtualization platforms, and Cloud platform security.
• Understanding of ISO 27001, NIST, CIS Controls, MITRE ATT&CK, or other frameworks.
• Professional certifications in cybersecurity, such as CSA, CEH, CompTIA Security+, OSCP, CCSP, or similar, are preferred.
• Ability to assist in developing cybersecurity policies, procedures, and advisory guidelines.
• Strong analytical thinking, problem-solving, and communication skills.
• Self-driven professional with a growth mindset, committed to continuous