IT Security Specialist- Infrastructure (1 Position)

Reporting to the Manager- Cyber Defence, the IT Security Specialist- Infrastructure is responsible for protecting the organization’s critical infrastructure systems—including servers, storage, networks, and cloud platforms—by designing, implementing, and managing robust security controls. This role ensures that all infrastructure components are hardened, monitored, and compliant with security policies, regulatory standards, and industry best practices.

KEY ACCOUNTABILITIES:

Implement, monitor, and maintain infrastructure security controls across on-premises, cloud, and hybrid environments.
Conduct security assessments on servers, network devices, databases, and virtualization platforms to identify vulnerabilities and misconfigurations.
Collaborate with Infrastructure and Network teams to ensure secure architecture design, patch management, and hardening of systems.
Manage and optimize security tools such as endpoint protection platforms (EPP/EDR), firewalls, intrusion prevention systems (IPS), SIEM, vulnerability scanners, and configuration management tools.
Respond to security incidents affecting infrastructure and lead root cause analysis and remediation activities.
Develop and maintain infrastructure security baselines, access control standards, and hardening guides in line with frameworks such as ISO 27001, NIST, and CIS Benchmarks.
Support business continuity and disaster recovery planning with a focus on infrastructure resilience and secure failover procedures.
Ensure infrastructure components meet regulatory and compliance obligations (e.g., PCI DSS, local financial regulations).
Assist with internal and external audits, providing evidence and responses related to infrastructure security.
Stay updated on emerging threats, vulnerabilities, and technologies that may impact infrastructure environments.

KNOWLEDGE, SKILLS, AND EXPERIENCE REQUIRED:

Minimum of a Bachelor’s degree in computer science, IT, Engineering or other numerical biased field from a reputable university.
Information Security certifications e.g. CISSP, CISM, CEH, CCSP. CompTIA Security+, CISSP, CEH, Microsoft Security, AWS/Azure Security.
At least 4 years’ experience in systems / network related administration role.
Work experience in the banking industry and implementing Information security at an enterprise level will be an added advantage.
Experience working with web application firewalls.
Knowledge and experience in infrastructure defense techniques and technologies.
Experience in Unix and Windows and Python scripting skills.
A good understanding of implementation of platform security.
A good understanding of implementation of cloud security.
Effective Communication.
Analytical Thinking & Inductive Reasoning.
Problem Solving.
Stakeholder Management.
Self-Driven Development.