Nous recherchons un

SMC Analyst

Horaires Temps plein
Métier Informatique
Marque BNP Paribas
Niveau d'expérience 3 à 5 ans
Niveau d'études Niveau BAC+2/3
Localisation Inde Ouvrir la carte
Postuler REF: BNP020530


About BNP Paribas Group:

BNP Paribas is a top-ranking bank in Europe with an international profile. It operates in 71 countries and has almost 199 000 employees. The Group ranks highly in its three core areas of activity: Domestic Markets and International Financial Services (whose retail banking networks and financial services are grouped together under Retail Banking & Services) and Corporate & Institutional Banking, centred on corporate and institutional clients. The Group helps all of its clients (retail, associations, businesses, SMEs, large corporates and institutional) to implement their projects by providing them with services in financing, investment, savings and protection. In its Corporate & Institutional Banking and International Financial Services activities, BNP Paribas enjoys leading positions in Europe, a strong presence in the Americas and has a solid and fast-growing network in the Asia/Pacific region..

About BNP Paribas India Solutions:

Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, a leading bank in Europe with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 6000 employees, to provide support and develop best-in-class solutions.

About Businessline/Function :

To locally monitor and manage the alerts in the Security Monitoring Center (SMC) and work with the Cybersecurity team/ team members in BNPP from various regions in APAC. Follow SoPs' based on the alerts defined and do the Incident handling. Understand the requirement from the stakeholders and meet their expectations. 

Job Title:

SMC Analyst

Date:

3-Sep-2021

Department:

Information Security

Location:

Mumbai

Business Line / Function:

CIB IT & Operations 

Reports to:

(Direct)

Head of APAC SMC

Grade:

(if applicable)

Analyst

(Functional)

Head of APAC CyberDefense

Number of Direct Reports:

N/A

Directorship / Registration:

NA

 

Position Purpose

To locally monitor and manage the alerts in the Security Monitoring Center (SMC) and work with the Cybersecurity team/ team members in BNPP from various regions in APAC. Follow SoPs' based on the alerts defined and do the Incident handling. Understand the requirement from the stakeholders and meet their expectations. 

Responsibilities

Monitor and Escalate Cyber alerts triggered from various sources

 Primarily responsible for security event monitoring, management and response

 Ensure incident identification, assessment, quantification, reporting, communication, mitigation and monitoring

 Perform threat management, threat modeling, identify threat vectors and develop use cases for security monitoring

 Prepares operational documentation for operational teams in use of security solutions

 Handling escalations and work as L2 analyst for remediation of Security Alerts / Incidents

 Adhere to procedures, Service Level Agreements

 Provide expert analytic investigative support of large scale and complex security Alerts / Incidents.

 Perform & direct analysis of security Alerts / Incidents for further enhancement of alert catalog.  Manage and direct external security providers to provide actionable and useful
incident escalations.

 Identification of and correlation with other data sources to enhance security event detection, monitoring and response capabilities.

 Creation of reports, dashboards, metrics for SOC operations and presentation to Mgmt.

 Co-ordination with stakeholders, build and maintain positive working relationships with them

Contributing Responsibilities

• Advise and assist APAC Security Monitoring Centre to sharpen their playbook and procedures 
• Assist with routine compliance and audit functions to ensure requirements are satisfied. 
• Provide input to the department’s management for enhancing the information security strategy. 
• Stay current on security industry trends, mitigation techniques, security technologies and new and evolving threats to the organization by attending conferences, networking with peers and other education opportunities. 
 

Technical & Behavioral Competencies


 Proficient in Incident Management and Response

 Ability to handle high pressure situations with key stakeholders to collaborate and communicate effectively and respectfully with both business-oriented executives and technology-oriented personnel in teams across the organization.

 Hands on experience on designing, implementing use cases (Rules, Reports, Dashboard) on SIEM solution such us ArcSight or QRadar.

 Experience of performing security monitoring and incident response activities in an advanced Security operation centers(SOC) environment (log analysis, event analysis, incident investigation, reporting)

 Experience and knowledge in investigating incidents, remediation, tracking and follow-up for incident closure with concerned teams, stakeholders.

 Technical knowledge on security tools (Anti-virus/malware, IDS/ISP, Firewalls, proxies, vulnerability, etc) and infrastructure (Network, OS, Database)


Skills Referential

Behavioural Skills:

Decision Making

Client focused

Ability to collaborate / Teamwork

Attention to detail / rigor

Transversal Skills:

Analytical Ability

Ability to manage a project

Ability to develop others & improve their skills

Ability to set up relevant performance indicators

Choose an item.

Education Level:

Bachelor Degree or equivalent

Experience Level

At least 3 to 5 years

Other/Specific Qualifications (if required)
 

 3 to 5 years of Experience required.

 BE-IT / B Tech /Comps or Equivalent

 Strong knowledge & hands on experience in SIEM products like ArcSight, Qradar etc.

 Good understanding on network and endpoint security devices like Firewall, IPS, Web Application Firewall (WAF),Vulnerability Scanning, Antivirus, Endpoint Encryption etc.

 Advantage to have certifications like Certified Ethical Hacking (CEH), Offensive Security Certified Professional (OSCP), Certified Information Security Manager (CISM) or equivalent.  

Primary Location: IndiaJob Type: Standard / PermanentJob: INFORMATION TECHNOLOGYEducation Level: Bachelor Degree or equivalent (>= 3 years)Experience Level: At least 3 yearsSchedule: Full-time Reference: BNP020530