We have one vision. To B-one of a kind. To #B-one-of-a-kind and become a reliable technology partner to our business and an attractive workplace, driven by a culture of innovation, technical competence and quality. B-INFINIT by BNP Paribas.
BNP Paribas, the leading bank in the European Union and a leading international player, is seeking to reinforce its existing teams in the areas of IT risk management, cybersecurity, and the fight against digital fraud.
Within IT Group, Informatics Directorate of BNP Paribas, the Cybersecurity & Digital Fraud Department's mission aims to structure, strengthen, and harmonize IT risk management and cybersecurity for the Group (approximately 30 entities) by:
- Defining the vision and strategy for IT risk management and cybersecurity,
- Ensuring the implementation of this strategy within the Group’s operating entities,
- Monitoring the security of the Group's information systems,
- Steering the IT Continuity and Resilience strategy and methodological framework.
The evolving Cyberthreats landscape increases the security risk of financial sector, that leads BNP Paribas to strengthen its Cybersecurity maturity, IT risk management and Operation Resilience.
Within IT Group Cybersecurity & Digital Fraud department, as a CSIRT (Computer Security Incident Response Team) analyst, you will be part of the Fusion Center team in Poland.
You will play a key role to develop Poland platform, ensuring core Cybersecurity, IT Risk and Operational Resilience activities are performed with the required efficiency and quality to protect BNP Paribas.
CSIRT Analyst
Requirements:
- At least 2 years of experience in similar position (IT Security and Cyber Security),
- Mastered knowledge of UNIX & MAC environments, Commun network protocols, Microsoft environment and SIM3 / ITIL SIEM tools,
- High analytical skills and mindset,
- Ability to establish and activate people networking,
- Ability to collaborate with the team, coordinate a meeting, seminar, committee, training,
- Great communication skills (oral and writing) in English,
- University education is a must: Master’s degree or equivalent experience.
- The recruitment process requires participation in the background check procedure and providing certificate from National Court Registry confirming no criminal record
Responsibilities:
- Follow up security incidents for the whole group.
- Coordinate with different teams to respond to cyber security incidents.
- Learn from past and present events to continuously improve the group’s response capabilities.
- Carry out analyses and gather information when alerts and security incidents have an impact on the Group.
- Understand, analyze, and explain attacks techniques.
- Contribute to crisis cells.
- Perform security media watch on various channels for the Group, monitor threats and report.
- Ensure all the CSIRT community is aware about the relevant vulnerabilities.
- Contribute to Group’s projects and information security systems processes.
- Participate in the governance around the Group’s security incident response.
- Log and handle from end to end security investigations.
- Automation of team processes.
- Contribute on ‘detection techniques’ continuous improvement.
- Threat hunting.
- Define and Analyze SIEM alerts.
- Enrich the team knowledge base
We offer:
- Hybrid work mode, 60% working from home within a month
- Equivalent for remote work expenses (120 PLN per month)
- Stable employment in the international company
- Fully paid private medical care for employee
- Pre-paid lunch card
- Employee Pension Plan
- Co-financed Multisport Card
- MyBenefit Cafeteria Platform
- Life insurance
- Car parking availability in the office building
- Trainings and development opportunities
