About BNP Paribas India Solutions:
Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union’s leading bank with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 10000 employees, to provide support and develop best-in-class solutions.
About BNP Paribas Group:
BNP Paribas is the European Union’s leading bank and key player in international banking. It operates in 65 countries and has nearly 185,000 employees, including more than 145,000 in Europe. The Group has key positions in its three main fields of activity: Commercial, Personal Banking & Services for the Group’s commercial & personal banking and several specialised businesses including BNP Paribas Personal Finance and Arval; Investment & Protection Services for savings, investment, and protection solutions; and Corporate & Institutional Banking, focused on corporate and institutional clients. Based on its strong diversified and integrated model, the Group helps all its clients (individuals, community associations, entrepreneurs, SMEs, corporates and institutional clients) to realize their projects through solutions spanning financing, investment, savings and protection insurance. In Europe, BNP Paribas has four domestic markets: Belgium, France, Italy, and Luxembourg. The Group is rolling out its integrated commercial & personal banking model across several Mediterranean countries, Turkey, and Eastern Europe. As a key player in international banking, the Group has leading platforms and business lines in Europe, a strong presence in the Americas as well as a solid and fast-growing business in Asia-Pacific. BNP Paribas has implemented a Corporate Social Responsibility approach in all its activities, enabling it to contribute to the construction of a sustainable future, while ensuring the Group's performance and stability
Commitment to Diversity and Inclusion
At BNP Paribas, we passionately embrace diversity and are committed to fostering an inclusive workplace where all employees are valued, respected and can bring their authentic selves to work. We prohibit Discrimination and Harassment of any kind and our policies promote equal employment opportunity for all employees and applicants, irrespective of, but not limited to their gender, gender identity, sex, sexual orientation, ethnicity, race, colour, national origin, age, religion, social status, mental or physical disabilities, veteran status etc. As a global Bank, we truly believe that inclusion and diversity of our teams is key to our success in serving our clients and the communities we operate in.
About Business line/Function:
CIB Security & IT Risk provides information security services for the BNP Paribas Group. The IT Security Professional role is based in Chennai and will work as part of a global team covering security risks and associated activities in multiple locations across EMEA, AMER & APAC
Job Title:
Security Test Engineer
Date:
Department:
India IT Security
Location:
Chennai
Business Line / Function:
Reports to:
(Direct)
Grade:
(if applicable)
(Functional)
Number of Direct Reports:
Directorship / Registration:
NA
Position Purpose
The purpose of the position is to help with the security testing activities mentioned in the direct responsibilities
Responsibilities
Direct Responsibilities
- To perform Penetration testing (Gray Box and/or Black Box) for Web applications, Thick Client, API, and mobile applications.
- Understand and deep knowledge of application security engineering principles to follow secure development practices which includes secure build processes, secure code review, security testing
- Collaborate with the developers to help them understand the vulnerabilities reported in application
Contributing Responsibilities
- To understand the application’s security requirements and identify & document the scope of the test
- Ensure execution of the documented security scenarios for the application under test.
- Document and report all findings
- Escalate issues to the local management and onshore stakeholders in case it affects the testing progress
- Ensure processes for the project is followed for the assessments
Help review peer's work and mentor junior members in the team
Technical & Behavioral Competencies
- Clear understanding of OWASP Top 10 - application security risks
- Tools/OS: Burp Suite, OWASP ZAP, Kali Linux
- Manual Security Testing & Analysis, Security Test Designing
- Excellent Inter personal and presentation skills
- Strong in verbal and written communication
- Good analytical skills
- Strong Time Management
- Must be flexible, independent, self-motivated
- Team Player
Specific Qualifications (if required)
CSSLP/CEH / ECSA or equivalent certification preferred
Skills Referential
Behavioural Skills: (Please select up to 4 skills)
Ability to collaborate / Teamwork
Ability to deliver / Results driven
Communication skills - oral & written
Ability to share / pass on knowledge
Transversal Skills: (Please select up to 5 skills)
Ability to understand, explain and support change
Ability to inspire others & generate people's commitment
Ability to develop and adapt a process
Ability to manage a project
Ability to develop others & improve their skills
Education Level:
Bachelor Degree or equivalent
Experience Level
At least 3 years
Other/Specific Qualifications (if required)
