Senior Specialist: Cyber Security Operations at MTN

The primary purpose of this position is to perform analytics on threats and vulnerabilities, review log data & propose mitigating controls to improve security posture of MTN and its Operation Companies (OPCOs). The continuous SIEM enhancement, development of processes & standards and visibility enhancing initiatives are also key components of this job role.

Key Job Responsibilities

Security Monitoring

• Drive the enablement and availability of security logs from the Opcos
• Actively monitor security dashboard alerts to identify incidents and potential threats
• Triage and analyze security event alerts to determine if the event qualifies as a legitimate security breach in line with MTN operational processes
• Logging of incidents in the incident management system and track to resolution.
• Work extended hours to assist in the resolution of an active security incident
• Initiate escalation procedure to Incident Manager, Cyber Defence and Group Information Security teams on potential threats/vulnerabilities
• Maintain an in-depth knowledge of common attack vectors, common security exploits, and countermeasures
• Drive execution of daily, weekly, monthly, quarterly & annual metrics for statistical threats and KPI reporting
• Appropriately inform and advise management on incidents and incident prevention mechanism
• Document processes related to security monitoring
• Participate in knowledge sharing with other team members and industry collaboration organizations to advance the security monitoring program
• Develop, rollout, align, standardise and improve monitoring processes at the OPCOs

Digital Forensics and Incident Response

• Participate in the resolution of an incident
• Participate in the security incident investigations and determining the cause of the incident

Functional Operations Delivery

• Participate in the development and implementation of the overall security monitoring and defense requirements and framework
• Provide input into the cyber security risk profile
• Effective and continuous liaison with the Incident Manager, Regional Managers and Opco First Responders

Managerial / Supervisory Responsibilities

• Provide guidance and leadership ensuring future focus and current efficiency
• Ensure skill transfer for staff development, motivation and business continuity where required
• Identify staff training and development needs and implement necessary actions where required

MINIMUM REQUIREMENTS:

• Education / Business Degree
• 3-year Information Technology/ Information Science Degree
• Honors Degree in Technology/ Information Science is preferred

Work Experience

• 3-5 years of relevant work experience in Cyber Security
• Knowledgeable, hands-on technical specialist
• Knowledge of industry recognized analysis frameworks (Kill Chain, MITRE ATT&CK, NIST Incident Response, etc.)
• Experience in working in or with Cyber Security Operations Center
• Working Knowledge of Security Information and Event Management (SIEM) and/or Security Orchestration, Automation and Response (SOAR) and incident logging tools
• Knowledge of various security methodologies and processes, and technical security solutions
• Knowledge of TCP/IP Protocols, network analysis, and network /security applications
• Advanced working or an understanding of the information technology environment of a Telecom company
• Experience in Financial and ICT Sectors
• Experience working in Africa and Middle East and have a grasp of political, social and infrastructure challenges

Training

• Relevant training on Telco or IT Security preferred.

Industry / Certifications

• GCIH or other related incident handling certification
• Other preferred certifications are: CISSP, S+, CEH, GCIA, GCIH, CFCE, OSCP or other related certifications
• Strong written and oral communications skills.
• Fluent in English
• French would be advantageous
• Telecommunications industry experience
• Global mindset to service worldwide operations
• Pan Africa and Middle East multi-cultural experience
• Multi-country operations oversight experience
• Willing and flexible to travel within Africa and Middle East
• Understanding of general regulatory requirements in the telecom industry