Information Security Analyst(Officer-SEO)

Job Description

Title: Information Security Analyst(Officer-SEO)

Company Name: Bank Asia PLC

Vacancy: --

Age: Na

Job Location: Dhaka

Salary: Negotiable

Experience:

• At least 5 years
• The applicants should have experience in the following business area(s): Banks

• Bachelor of Science (BSc) in Computer Science & Engineering
• Master of Science (MSc) in Computer Science & Engineering

• Master of Science (M.Sc) / Bachelor of Science (B.Sc) in Computer Science & Engineering (CSE) / Information Security or any relevant field. The applicants should have experience in the following area(s): Networking, DB and Programming.

Certification: 

CISA /CISM, CSA, CEH, CPEN, CCNA, RHCHA or equivalent.

ITIL, PMP, or other process improvement frameworks are a plus.

ISO27001/CEH/ITIL/COBIT Certification

• At least 5 years
• The applicants should have experience in the following business area(s): Banks

• At least 5 years of experience in cyber security with at least 03 years in a SOC leadership role.

• Strong understanding of threat intelligence, malware analysis, and incident response methodologies.

• Hands-on experience with security tools: SIEM (e.g., Splunk, QRadar), SOAR, IDS/IPS, firewalls, antivirus, etc.

Monitoring & Detection:       

• Oversee 24/7 security monitoring operations and threat detection activities.
• Manage and optimize SIEM, SOAR, EDR, IDS/IPS, and other monitoring tools.
• Ensure proper tuning of alerts to reduce false positives and increase detection accuracy.
• Maintain situational awareness of the threat landscape and emerging vulnerabilities. 

Incident Management:

• Response to security incidents, including triage, containment, eradication, and recovery.
• Ensure incident response procedures and playbooks are up-to-date and followed.
• Coordinate cross-functional teams during major incidents and ensure timely communication to stakeholders.
• Oversee post-incident reviews and drive corrective and preventive actions. 

Team Leadership & Management:

• Supervise SOC analysts across all shifts, ensuring balanced rosters and effective 24/7 coverage.
• Develop training programs and conduct periodic drills to improve team readiness.
• Conduct performance evaluations and build career paths for SOC personnel.
• Manage vendor relationships for outsourced monitoring, threat intelligence, or tools (if applicable). 

Policy, Compliance & Reporting:

• Ensure compliance with security frameworks like ISO 27001, PCI DSS, NIST, etc.
• Generate daily, weekly, and monthly incident and monitoring reports for senior management.
• Collaborate with internal audit, risk, and compliance teams for assessments and regulatory reviews. 

Process Improvement & Optimization:      

• Continuously improve SOC operations through automation, tool integrations, and workflow enhancements.
• Establish and track SOC KPIs, such as Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR).
• Ensure log retention, incident documentation, and data privacy requirements are met.
• Other issues relating to Information Technology and Security.