Information Security Operations Analyst at Baobabplus

Position Overview

The Information Security Operations Analyst will ensure secure user access across all systems and continuously monitor security events to detect threats. This role will handle user provisioning, privilege control, access reviews, and SIEM alert investigation, while supporting incident response, vulnerability management, and compliance activities to strengthen the organization's overall security posture.

Key Responsibilities

Identity & Access Management

• Manage user access provisioning, modification, and de-provisioning across enterprise systems and applications
• Conduct periodic reviews and validations of user access rights (monthly, quarterly)
• Enforce the principles of least privilege and segregation of duties (SoD)
• Monitor privileged accounts and support the implementation of PAM controls
• Collaborate with HR and IT to ensure timely and accurate onboarding and offboarding
• Support access certification campaigns and provide documentation for audits
• Maintain and continuously enhance access management procedures and workflows

SIEM Monitoring & Incident Response

• Monitor security events, alerts, and logs using the SIEM platform
• Analyze alerts to distinguish between false positives and actual security incidents
• Escalate confirmed incidents to the Information Security Manager or SOC team
• Perform first-level incident triage, including root-cause indicators and initial response actions
• Document security incidents and contribute to post-incident analysis and reporting
• Assist in developing SIEM use cases, correlation rules, dashboards, and alert logic to enhance detection capabilities

Vulnerability & Compliance Support

• Assist with scheduled vulnerability scans and track remediation progress
• Support compliance activities related to ISO 27001, PCI DSS, and internal security audits
• Prepare and deliver routine compliance reports and documentation