ICT Security Analyst (Ezulwini)
Website Eswatini Revenue Service
Key Responsibilities
1. Security Monitoring and Event Correlation
- Monitor security events and alerts in real-time using SIEM solutions.
- Correlate events from multiple sources to identify potential security incidents.
- Integrate and analyse threat intelligence feeds to enhance detection capabilities.
- Identify and report on emerging threats, vulnerabilities, and potential organisational impact.
- Prepare periodic reports highlighting trends, anomalies, and risks.
2. ICT Security Monitoring and Incident Response
- Detect and respond to security incidents in line with SOC processes and protocols.
- Execute incident response procedures to contain, mitigate, and remediate risks.
- Ensure adherence to defined incident response timelines.
- Produce regular (weekly/monthly) security monitoring reports summarising alerts and incidents.
- Conduct research and recommend improvements to strengthen the ICT security posture.
- Stay updated on evolving cybersecurity threats, trends, and technologies.
3. Security Policy Enforcement and Compliance Monitoring
- Enforce ICT security policies through monitoring and alerting mechanisms.
- Conduct compliance checks against regulatory and organisational requirements.
- Participate in internal and external audits.
- Develop compliance reports and track remediation of identified gaps.
Business Continuity Management (BCM)
- Support the implementation and maintenance of the BCM programme.
- Ensure ICT security aligns with enterprise BCM frameworks.
- Monitor data centre environments (temperature, humidity, access, fire protection).
- Oversee backup restore testing and system health monitoring.
- Produce monthly reports on system health and backup performance.
5. Vulnerability Management and Risk Assessment
- Collaborate in vulnerability assessments and prioritisation of risks.
- Conduct risk assessments and document mitigation strategies.
- Ensure secure configuration of servers, networks, firewalls, and cloud environments.
- Oversee identity and access management (IAM), including privileged access.
- Monitor patching, updates, and vulnerability remediation activities.
- Detect and prevent unauthorised (“alien”) devices on the network.
- Ensure proper data handling and secure decommissioning of ICT assets.
6. Security Awareness and Training
- Deliver security awareness training to staff on threat identification and response.
- Promote a culture of cybersecurity awareness across the organisation.
- Develop training content aligned to emerging threats and SOC insights.
Minimum Requirements
§Bachelor’s Degree in Computer Science, Information Technology, Cybersecurity, or a related field.
§Relevant certifications such as Certified Information Systems Security Professional (CISSP) or similar
·Advantageous:
§Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), CompTIA Security+, or similar.
§ITIL Certificate
Experience
§ Minimum of 2-4 years of experience in IT security or a related field like Networking, Systems Admin, IT Governance, Systems Audit, System Development, Server Admin, ICT Support Services
A: Skills
• Analytical
• Problem solving
• Strong communication (both written & verbal)
• Attention to detail and accuracy
• Team oriented
B: Knowledge
• Proficiency in security tools and technologies (e.g., firewalls, intrusion detection systems, antivirus software).
• Knowledge of network protocols and security architecture.
• Familiarity with regulatory compliance standards (e.g., GDPR).
• Experience with risk assessment and vulnerability management.
• Ability to conduct security audits and assessments.
C: Behaviours (Attributes)
• Passionate
• Attention to detail
• Confidentiality
• Independent
• Integrity
• Self-starter
• Work under pressure
• Collaborative mindset
To apply for this job please visit ers.mcidirecthire.com.
