Job Vacancy For Cyber Security Incident Management Specialist



Role Purpose

The purpose of the Cyber Security Incident Management Specialist role is to deliver expert-level assurance that security incidents are swiftly contained, thoroughly investigated, and leveraged to strengthen organizational resilience. By driving advanced response capabilities and embedding lessons learned into controls and processes, the role ensures the business can withstand evolving threats while maintaining trust and operational continuity.

Key Responsibilities

•Monitor and analyze security alerts from SIEM and detection tools, lead end-to-end incident response efforts including triage, investigation, containment, eradication, and recovery and coordinate with SOC analysts to validate and escalate incidents.
•Conduct disk, memory, and network forensics to uncover attack vectors and root causes and perform static and dynamic malware analysis to identify capabilities, persistence mechanisms, and indicators of compromise (IOCs).
•Ingest and operationalize threat intelligence feeds to enrich investigations, and correlate external threat data with internal telemetry to identify emerging threats and targeted attacks.
•Tune and optimize SIEM rules, dashboards, and correlation logic for enhanced threat detection, and integrate new data sources while developing custom use cases to improve detection capabilities.
•Collaborate with cross-functional teams to refine detection logic, provide technical updates, recommend tools, and offer remediation guidance to strengthen overall security posture.
•Conduct proactive compromise assessments across endpoints, servers, and cloud environments, and develop and execute threat hunting hypotheses using MITRE ATT&CK framework and behavioral analytics.
•Maintain detailed incident records, timelines, and evidence for legal, compliance, and audit purposes, and produce post-incident reports that support lessons learned and drive process improvements.
•Collaborate with cross-functional teams during incident response, and support cybersecurity awareness and training initiatives across the organization.

Qualification Required & Experience

Must have Technical / Professional Qualifications

•Bachelor's degree in cyber or information security, computer science, information technology (or systems)
or other related fields.
•5+ years of progressive experience in cybersecurity or related field in cybersecurity, with a significant focus on hands-on technical security work.
•Any of the certifications below or equivalent certifications will be desired - GCIH, GCFA, CISSP, CISM, CEH, OSCP, CCSP, CHFI
•Advanced proficiency in platforms for log analysis, threat detection, and incident correlation.
•Skilled in forensic investigation techniques, memory and disk analysis, and reverse engineering of malicious code to determine root cause and attack vectors.
•Expertise in intrusion detection/prevention systems (IDS/IPS), packet capture tools, and traffic analysis to identify anomalies and potential breaches.
•Ability to integrate threat intelligence feeds, conduct vulnerability assessments, and apply CVE/CVSS scoring to prioritize remediation.
•Competence in using Python, PowerShell, or Bash to automate response workflows, streamline log parsing, and enhance detection capabilities.

Location: Accra

How To Apply For The Job

To submit your application, click on the link below and complete all relevant fields on the online application form.

Click Here To Apply Online

Closing Date: 14 July, 2026