Cybersecurity Analyst

The Cybersecurity Analyst protects the university’s digital environment by monitoring, detecting, and responding to threats across on-premises and cloud systems. By ensuring compliance and safeguarding critical data, this role enables secure, uninterrupted operations that support the university’s mission of delivering quality education and research.

Responsibilities

• Monitor ICT systems and services for vulnerabilities, malware, and suspicious activities using advanced tools.
• The role involves proactive threat detection, triage of security events, and leveraging automation to streamline alert handling.
• Continuously review and enhance monitoring processes to strengthen detection capabilities and minimise risk.

• Act as the designated point of contact for cybersecurity incidents.
• Triage, analyse, and escalate incidents in line with established policies and procedures.
• Track remediation efforts for security gaps, audit findings and conduct post-incident reviews, implement lessons learned to strengthen response processes.

• Design and integrate security systems to reduce exposure to threats.
• Perform regular vulnerability scans across critical and high-value assets, including applications.
• Track remediation progress and provide timely status reports to management and work with developers to remediate application-level vulnerabilities promptly.
• Identify and assess cybersecurity risks, including application security risks and coordinate mitigation measures with relevant stakeholders.
• Update risk registers monthly, ensuring new risks are assessed and mitigation plans documented within two weeks of identification.

• Collect, log, and organise cybersecurity events, incidents, and vulnerability data in a centralised system.
• Analyse data to identify trends and provide actionable insights for management.
• Evaluate the effectiveness of security standards and procedures regularly, review post-incident actions, and incorporate improvements into processes.
• Promote secure development practices, security awareness across teams and encourage participation in security initiatives across divisions.

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related discipline (Master’s degree preferred)
• Relevant professional certifications such as CISSP, CISM, CISA, CompTIA Security+, CEH,
• Global Information Assurance Certification such as GIAC, GSEC ,GIAC or GCIH preferred.
• Cloud Security Certifications such as AWS Certified Security – Specialty or Microsoft Certified: Azure Security Engineer Associate
• Additional desirable skills: Knowledge of secure coding practices, application security frameworks (e.g., OWASP Top 10), and experience integrating security into the Software Development Lifecycle (SDLC).
• Strong understanding of cybersecurity principles, concepts, threats, and best practices from both defensive and incident response perspectives.
• Hands-on experience in:
• Cloud security (AWS, Azure, GCP) and hybrid environments
• Security monitoring, analytics, and reporting using SIEM and EDR tools
• Vulnerability assessments and management across infrastructure and applications
• Network and infrastructure security, including firewalls and endpoint protection
• Web and application security, including OWASP Top 10 and secure coding practices
• Advanced knowledge in:
• Incident response and escalation, including coordination with technical and business stakeholders.
• Vulnerability management frameworks and use of MITRE ATT&CK for threat analysis
• Able to develop and improve of security playbooks, post-incident reviews, and lessons learned
• Preferred experience: Working with development teams to embed security in the software development lifecycle, conducting secure code reviews, and using automated scanning tools

• Strong communication skills and able to explain complex technical concepts in clear, simple terms to stakeholders.
• Critical thinking and problem-solving, capable of analyzing situations, anticipating risks, and making sound decisions under pressure.
• Proactive mindset, takes initiative to identify risks, suggest improvements, and drive security awareness.
• High adaptability and continuous learning , comfortable with change, and committed to staying current with evolving threats and technologies.
• Attention to detail, meticulous in monitoring, analysis, and documentation to ensure accuracy and compliance.
• Able to collaborate and work as a team and works effectively with colleagues across different departments to implement security measures.

We thank you for your interest and shortlisted candidates will be notified

Closing Date : 30 January 2026