Role Overview: The Security Analyst is responsible for safeguarding CARSOME's digital assets by monitoring, detecting, investigating, and responding to cyber threats. This role plays a critical part in developing and implementing security measures that protect the company's IT infrastructure, networks, and data. The ideal candidate will have strong analytical skills and a proactive approach to identifying and mitigating security risks. Key Responsibilities: + Threat Monitoring and Incident Response + Continuously monitor security alerts and analyze data to detect suspicious activity. + Investigate security incidents and vulnerabilities, documenting findings and response actions. + Coordinate incident response efforts with internal and external stakeholders, ensuring swift containment and remediation. + Security Policies and Compliance + Assist in the development and implementation of security policies, standards, and procedures to ensure compliance with industry regulations and company standards. + Conduct regular security audits and risk assessments, providing actionable insights to improve the security posture. + Vulnerability Management + Perform vulnerability assessments and manage patching schedules across CARSOME's IT infrastructure. + Collaborate with IT and Development teams to ensure timely remediation of vulnerabilities. + Security Awareness and Training + Educate employees on security best practices, social engineering, phishing, and other relevant cybersecurity threats. + Develop and distribute security awareness materials and training sessions to raise overall cybersecurity awareness. + Security Tool Management + Configure and maintain security tools such as firewalls, antivirus software, intrusion detection/prevention systems, and security information and event management (SIEM) solutions. + Regularly assess the effectiveness of security tools and recommend upgrades or adjustments as needed. + Documentation and Reporting + Prepare detailed reports on security incidents, trends, and vulnerabilities for senior management. + Document response processes, action plans, and lessons learned to improve future incident responses. Requirements: + Educational Background: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. + Work Experience: 2+ years of experience in cybersecurity, information security, or related roles. + Technical Skills: Proficiency in security tools (e.g., SIEM, IDS/IPS, firewalls), understanding of networking and cloud security concepts, and experience with vulnerability management. + Certifications: Industry-recognized certifications (e.g., CompTIA Security+, CISSP, CEH, or similar) are preferred. + Soft Skills: Strong analytical and problem-solving skills, attention to detail, and excellent verbal and written communication abilities. Culture & Fit: + Demonstrates CARSOME's core values by putting the Customer First and embodying an Owner Mindset. + Strives to Do More with Less, proactively seeking solutions to mitigate risks with limited resources. + Thrives in a fast-paced, ever-evolving environment and contributes to a culture of continuous improvement.