Job Description
The Botswana Communications Regulatory Authority (BOCRA) was established through the Communications Regulatory Authority Act (CRA Act) of 2012. BOCRA is responsible for the regulation of the communications sector in Botswana, comprising Telecommunications, Internet, Information and Communications Technologies (ICTs), Radio Communications, Commercial Broadcasting, Postal Services, and related matters.
1. Main Purpose of the Job
In this role, you will be at the frontline of cybersecurity defence, responsible for detecting, analysing, and responding to security incidents.
2. Key Performance Areas
1. Incident Response Execution ii. Triage and Initial Assessment iii. Collaboration and Coordination iv. Post-Incident Analysis
3. Key Responsibilities:
- a) Incident Detection & Response:
i. Proactively monitor security systems and alerts.
ii. Investigate and analyse security events to determine if they qualify as legitimate security incidents.
iii. Execute incident response procedures, ensuring timely containment and remediation of threats.
iv. Coordinate with internal teams and external stakeholders during the incident lifecycle. - b) Threat Intelligence Integration:
i. Leverage threat intelligence sources to understand emerging threats and potential vulnerabilities.
ii. Correlate threat intelligence data with incidents to identify attack vectors and potential risks. - c) Post-Incident Reporting:
i. Conduct thorough root cause analysis of incidents.
ii. Prepare detailed post-incident reports and recommend improvements to prevent future incidents.
iii. Present incident findings to stakeholders, including technical teams and executive management. - d) Collaborative Defense:
i. Work closely with other cybersecurity teams, such as Threat Intelligence, Vulnerability Management and Security Operations Centre (SOC).
ii. Assist in developing and refining incident response playbooks and standard operating procedures (SOPs).
iii. Engage with external partners (other CSIRTs,) for information sharing. - e) Conduct awareness and training programs:
i. Develop and maintain awareness and training programs to educate the constitutes about cybersecurity best practices and emerging threats.
ii. Regularly update training materials and content to reflect new threats, vulnerabilities, and incident response procedures.
iii. Conduct engaging and interactive training sessions to promote cybersecurity awareness and foster a culture of security within the organization.
4. Position Requirements:
Education:
• The applicant should have a BSc in Network Security or Information Technology security or Cybersecurity related Degrees.
Experience:
• No experience required
5. Applications
Candidates who meet the requirements for the above-mentioned position should apply and enclose:
• Curriculum Vitae
• Certified copies of educational
certificates and transcripts
• Certified copy of National Identity (Omang)
APPLICATIONS SHOULD BE SENT THROUGH THE DIRECT HIRE LINK BELOW: https://bit.ly/4gy6DoH ONLY SHORTLISTED CANDIDATES WILL BE RESPONDED TO. For further information or clarification please contact the Human Resources Unit at +267 3685500. CLOSING DATE: 18 OCTOBER 2024