BNP Paribas Fortis B

Cyber Defence- Security Monitoring & Response Analyst (BB-A2F3C)

Trouvé dans: Xpatjobs BE

Cyber Defence Security Monitoring & Response Analyst Willing to push the boundaries with us for a more sustainable world? At the bank for a changing world, our employees make change their greatest asset, turning challenges into opportunities. They think ahead to offer customers innovative solutions perfectly suited to their needs. At BNP Paribas Fortis, the country''s number one bank, employees enjoy continuous career growth in a rewarding and flexible work environment. Centre of Excellence (COE) Security supports Information Technology and Business Units to develop adequate solutions in Information Security and Risk Management practices. The mission is: to enable sound and formal information security risk decision making by bank management, and to help with implementing a proper information security management system. Information Security Strategy of our organization commits to deliver upon four objectives: 1) enable the extended enterprise; 2) Counter cybercrime; 3) Protect our information systems; 4) Manage security risks. Consequently, the vision of the Cyber Defence team is to support Counter cybercrime objective by demonstrably best in class preparation and response to unauthorized cyber activity. This is done by providing the following services: Proactive - support & intelligence to help prepare and secure bank systems in anticipation of cyber-attacks where threat management ensures collection, assessment and sharing of threat information. Reactive - triggered by a request / incident / event identified by an intrusion detection system or reported by human. To support those services, BNP Paribas Fortis is looking for a Security Monitoring & Response Analyst to perform security monitoring, incident response, digital forensics and threat hunting activities. Your future job You will carry the following responsibilities: Security Monitoring Monitor Security Information and Event Management (SIEM), Endpoint detection and response (EDR), Data Analytics Platforms and Data Loss Prevention (DLP) solutions for alerts triggered by pre-defined detection use cases; Investigate and qualify those alerts for further handling; Provide feedback to engineering team for fine-tuning of detection use cases; Develop runbooks for handling of security monitoring alerts. Incident Response & Digital Forensics Drive the handling of security incidents by defining and assigning response actions to IT personnel and following-up on their execution; For severe incidents, steer and coordinate and ad hoc incident response team to contain, mitigate, eradicate and restore; Perform Digital Forensics on a wide range of asset, but particularly on Windows systems; Develop reaction plans for handling of security incidents. Threat Hunting Retroactively hunt for potential compromises and other security issues, based on new threat intelligence, gathered by our Threat Analysts. Threat Collection and Analysis Routinely collect the cyber threat intelligence information using Threat Intelligence platform. Execute threat analysis based on MITRE Attack framework: prioritize threats, develop threat scenarios, identify used techniques, enumerate impacted assets. Identify existing or missing counter-measures (controls & reaction plans) i.e. mapping to bank specificity: enterprise architecture, vulnerability status, latest incidents. Generate reports and share within the relevant parties in the bank. Highlight your strengths Highlight your strengths You have a bachelor or master degree in IT You have at least 5 years experience in an IT function with, preferably, 1-3 years of experience in information security You are fluent in English ; a good level of French/Dutch is an asset. Required knowledge and experience: First experience working in a Security Operations Center (SOC) or Computer Security Incident Response Team (CSIRT) environment in a L1 security analyst or monitoring role. Experience with reviewing alerts to determine relevancy and urgency by correlating different events and sources. Experience managing IT and/or Cyber security incidents. Experience with detection and mitigation of phishing attacks Hands on malware analyses skills. Experience with Use Case Development and Runbook creation Knowledge of digital forensics practices, on various IDS/IPS technologies. Knowledge of log aggregation and normalisation, SIEM solutions and Digital Analytics Platforms. Experience working with EDR solutions, with DLP solutions, with DDoS solutions both delivered from the Cloud and onsite based. Practical experience with Threat Hunting. Soft skills: Adhere to processes and procedures. Able to work in a rotating shift with on-call duties (24x7). Has the potential to step up, take the lead and stand ground when needed. Good communication skills vocally and written on different levels (to a group, towards technical people, end users). Autonomy, commitment and perseverance. Outstanding ability to work under stress in emergency situ

calendar_todayil y a 3 jours


location_on Brussels , Brussels, Belgique

work BNP Paribas Fortis

J'autorise expressément le Conditions générales

Emplois similaires