Misr Technology Services · Cairo, Egypt · Posted 2026-04-02
Job SummaryThe Sr. Information Security Analyst supports the organization’s overall Information Security, including Cybersecurity posture and culture. The Sr. Information Security Analyst will require both strong technical and interpersonal skills to effectively analyze information systems, research and validate alerts, and operate security tools for monitoring the MTS environment. In this hands-on role, the incumbent must make well-executed judgments in developing and deploying solutions as part of Application Security. This individual will be required to coordinate with members of other internal IT teams, service vendors, and stakeholder groups to ensure the efficient, timely delivery of security recommendations.ResponsibilitiesEvaluate/assess Application Security Architecture and suggest recommendations. Provide best practicesPrepare Threat Models for Application security and recommend mitigationsSupport the administration of local and vendor-managed security solutions for the MTS environmentAnalyze security threats, vulnerability assessments, and audit results to recommend security solutions that enable business objectivesWork with Application Engineering teams to ensure public access applications are designed and implemented with necessary security controlsWork with the Application Engineering teams to ensure Static Application Security Testing is performed as part of CI/CD. Provide guidance on remediationConduct Dynamic Application Security Testing. Review findings and engage Application Engineering teams for remediationProvide security information assurance subject matter expertise support throughout the SDLCReview and improve Access Management & ControlsCollaborate with other teams to support response efforts to security-related findings or concernsReport on incident response metrics and provide assessment reportsContinuously improve the organization’s security stance and frameworkHelp to develop and maintain Security Best Practices manual/portalAssist with the organization’s security awareness training programRecommend and participate in the design and implementation of policies, procedures, standards, tools, and methodologiesWork with Security Operations Center to analyze and respond to alerts from automated logging, monitoring tools. Review and update the incident response and disaster recovery plans as neededMaintain up-to-date knowledge of the Information security industry, including awareness of new or revised security solutions and improved security processesKeep a keen watch for new vulnerabilities and exploits and execute documented incident response procedures to deal with themQualifications5-7 years of experience working in IT, and5-7 years of experience in Information SecurityFamiliar with OWASP Top 10Familiar with Threat Modeling tools/processFamiliar with SAST and DAST tools/processesFamiliar with Identity and Access Management, IGA, and PAMFamiliar with DevSecOps, CI/CDFamiliar with security best practices of IT networksFamiliar with security best practices of public or private cloudsFamiliar with NIST SP 800-53, CSFExperience managing security service providers to complete regular dutiesExperience leading other team membersStrong knowledge of industry standards and best practices for Information SecurityAbility to set and manage priorities judiciouslyExcellent written and oral communication skillsHigh Emotional Intelligence (interpersonal skills)B.S. degree in Computer Science or related technical discipline or any other college discipline with additional 2 years of Information Security experience and CISSP certificationCertifications such as CISSP, GCIH, OSCP, ISO 27001 LA are highly desirablePowered by JazzHR5OrvXUNArQ