Nous recherchons un

Cyber Security Forensic & Incident Response Officer (permanent)

Postuler REF: ITO001637

Position purpose

The role will conduct cyber Forensic Investigations and assist on Cyber incident response specifically on e-fraud cases for all the business entities in BNPP Asia Pacific.

Successful candidate would be able to demonstrate significant understanding of Cyber Security, capabilities to think out of the box, as well as having a sound and demonstrated experience in large organizations from the financial industry.


Direct Responsibilities

  • Enrich the Forensic service catalogue with Fraud forensic investigations for BNP Paribas Asia Pacific
  • Build the Forensic Investigation framework to deliver Forensic service to the APAC BNP Paribas métier and business such as: Compliance, Legal, Operational Risk Control
  • Test, implement and deploy Forensic tools and technologies to deliver the expected catalogue of services for the business lines and métiers
  • Conduct analyses related to forensic investigations, cybercrimes, and/or cyberattacks from inside and external threat actors.
  • Develop processes to enable forensic investigations  and evidence to be court-admissible
  • Perform threat management and protection against threats including malware, phishing, hacking and DDoS
  • Experience conducting computer forensic analysis, maintaining chain of custody and testifying on evidence collected.
  • Investigation and recommendations to identify gaps from the incident.
  • Manage projects related to cyber security investigation and forensic examination.
  • Review and Update Incident Management Procedure.
  • Develop and Update operational playbook e.g. DDOS, ransomware
  • Prepare investigation report and KPI indicator on security incidents.
  • Co-ordinate and liaise with global, regional and local incident response team.
  • Co-ordinate with internal security teams for incident response.
  • Assist with routine compliance and audit functions to ensure requirements are satisfied.
  • Provide input to the department’s management for enhancing the information security strategy.
  • Stay current on security industry trends, mitigation techniques, security technologies and new and evolving threats to the organization by attending conferences, networking with peers and other education opportunities.

Contributing Responsibilities

  • Contribute to the Permanent Control framework for implementation of policies and procedures in day-to-day business activities, such as Control Plan
  • Comply with regulatory requirements and internal guidelines.
  • Contribute to the reporting of all incidents according to the Incident Management System.

Technical / behavioural competencies

  • Exceptional communication and advocacy skills, both verbal and written, with the ability to express complex technical issues in an easily understood manner.
  • Ability to collaborate and communicate effectively and respectfully with both business-oriented executives and technology-oriented personnel in teams across the organization.
  • Team player
  • Computer Forensic experience with sound knowledge of Encase, X-Ways and Cellebrite
  • Investigation skill required.

Qualification / experience

  • Bachelor’s degree in Computer Science, Information Assurance, or a related degree or equivalent experience.
  • At least 6 years of relevant working experience, CISSP or equivalent security certification mandatory. Strong candidate without security certification could be considered with commitment to obtain a security certification during probation period.
  • Holder of information Security and Forensics Certificate (i.e. GIAC, CCME, CEH, Encase) preferred.
  • Background in Fraud incident management in a regulated environment is a plus.
Primary Location: AU-NSW-SydneyJob Type: Standard / PermanentJob: INFORMATION TECHNOLOGYEducation Level: Bachelor Degree or equivalent (>= 3 years)Experience Level: At least 7 years Reference: ITO001637