Employment contract:

Standard / Permanent

Location:

Mumbai, Maharashtra, India

Job/mission:

INFORMATION TECHNOLOGY

Reference:

CIB008255

 

About BNP Paribas India Solutions:

Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union’s leading bank with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24×7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 10000 employees, to provide support and develop best-in-class solutions.

 

About BNP Paribas Group:

 BNP Paribas is the European Union’s leading bank and key player in international banking. It operates in 65 countries and has nearly 185,000 employees, including more than 145,000 in Europe. The Group has key positions in its three main fields of activity: Commercial, Personal Banking & Services for the Group’s commercial & personal banking and several specialised businesses including BNP Paribas Personal Finance and Arval; Investment & Protection Services for savings, investment, and protection solutions; and Corporate & Institutional Banking, focused on corporate and institutional clients. Based on its strong diversified and integrated model, the Group helps all its clients (individuals, community associations, entrepreneurs, SMEs, corporates and institutional clients) to realize their projects through solutions spanning financing, investment, savings and protection insurance. In Europe, BNP Paribas has four domestic markets: Belgium, France, Italy, and Luxembourg. The Group is rolling out its integrated commercial & personal banking model across several Mediterranean countries, Turkey, and Eastern Europe. As a key player in international banking, the Group has leading platforms and business lines in Europe, a strong presence in the Americas as well as a solid and fast-growing business in Asia-Pacific. BNP Paribas has implemented a Corporate Social Responsibility approach in all its activities, enabling it to contribute to the construction of a sustainable future, while ensuring the Group’s performance and stability

 

 

Commitment to Diversity and Inclusion

At BNP Paribas, we passionately embrace diversity and are committed to fostering an inclusive workplace where all employees are valued, respected and can bring their authentic selves to work. We prohibit Discrimination and Harassment of any kind and our policies promote equal employment opportunity for all employees and applicants, irrespective of, but not limited to their gender, gender identity, sex, sexual orientation, ethnicity, race, colour, national origin, age, religion, social status, mental or physical disabilities, veteran status etc. As a global Bank, we truly believe that inclusion and diversity of our teams is key to our success in serving our clients and the communities we operate in.

 

About Business line/Function:

CIB ITO Production ensures the provision of industrialized and digital production services. The objective is to offer innovative products and services to its customers in a performing, global, and secured environment in order to speed up delivery and time to market. CIB ITO Production manages operational risk by running stable and robust IT production platforms. CIB ITO production hosts critical service delivery scope comprising of Global Markets, Global Banking, Client & Experience, BP2S and Production Security.   

 

 

 

Job Title:

SIEM Admin

Date:

 

Department:

APAC IT Production 

Location:

Mumbai

Business Line / Function:

APAC Production Security 

Reports to:

(Direct)

 

Grade:

(if applicable)

 

(Functional)

 

Number of Direct Reports:

N/A

Directorship / Registration:

NA

 

Position Purpose

APAC Production Security teams (based in Singapore and India) is covering multiple IT Security tasks for BNP Paribas Asia Pacific region, such as:

–        Emergency Response (Production follow-up of Security Incidents in coordination with APAC CSIRT team)

–        Network Security

–        Vulnerability & Compliance Security scanning

–        Privileged Identity Management

–        Designing & Implementation of Security solutions

–        Production Support of Security solutions

 

The team in India is looking for an IT Infrastructure/Security Professional to increase its capability to improve the Bank detection & reaction to Cyber Threats by :

–        Deploying, maintaining and improving the new SIEM infrastructure

–        Developing parser for integration of new log sources

–        Participating in Use Cases creation / improvement

–        Improve the automation of the processes

The new joiner will work in close collaboration with CSIRTs (including Threat Hunting experts), Cyber Threat Intelligence SMC, Logging specialists and other Production SME.

Finally, the new joiner will fully be part of the Production CSIRT / Logging & Detection team with the opportunity to expand the scope of activities within the team.

Given the diversity of activities, the new team member will have the opportunity over time to expand his knowledge & responsibilities on the other topics managed by the teams.

 

Responsibilities

 

Direct Responsibilities

  • Install and administrate the servers of the SIEM Infrastructure
  • Participate to the integration of new technologies logs
  • Support logs parsing using custom parser/GROK development.
  • Deploy / update use cases on the platform
  • Fine tune the alerts in collaboration with CSIRTs and SMC
  • Improve existing use cases / tools
  • Project management
  • Improve the automation on the team processes
  • Be a full time member of the Production CSIRT / Logging & Detection team and participate to the various activities of the team

 

Contributing Responsibilities

 

  • Contribute to the Permanent Control framework for implementation of policies and procedures in day‐to‐day business activities, such as Control Plan.
  • Comply with regulatory requirements and internal guidelines.
  • Contribute to the reporting of all incidents according to the Incident Management System

 

 

Technical & Behavioral Competencies

·       At least 3 years of experience in the IT Security field

·       Strong knowledge in administration of UNIX systems

·       Basic knowledge in administration of Windows servers, Architecture and Network

·       Experience on SIEM and use cases, log monitoring (ELK Stack will be a plus)

·       Independent, self-motivated and innovative with good problem solving, interpersonal and communication skills, and can foster teamwork

·       Understanding of cyber threat analysis models such as kill chain, diamond model, etc and how they apply to both targeted and non-targeted threats

·       Experience in common scripting languages such as Bash

 

 

Qualification

·       University degree or equivalent in IT discipline (preferably in IT Security)

·       Professional credentials in one of the relevant IT Security disciplines

 

Specific Qualifications (if required)

 

Skills Referential

Behavioural Skills: (Please select up to 4 skills)

Choose an item.

Choose an item.

Choose an item.

Choose an item.

Transversal Skills: (Please select up to 5 skills)

 

Choose an item.

Choose an item.

Choose an item.

Choose an item.

Choose an item.

Education Level:

Choose an item.

Experience Level

Choose an item.

Other/Specific Qualifications (if required)

 

 

 

NA