Ta oferta pracy jest nieaktualna od 21 dni. Sprawdź aktualne oferty pracy dla Ciebie

(Cybersecurity) Analyst GCB 6

  • Kraków, małopolskie pokaż mapę
  • Kierownik
  • 2018-07-31

    Pracodawca ma prawo zakończyć rekrutację we wcześniejszym terminie.

    HSBC Service Delivery (Polska) Sp. z o.o. is a part of HSBC Holdings plc, the parent company of the HSBC Group, headquartered in London. The Group serves customers worldwide from over 6,300 offices in over 75 countries and territories in Europe, Asia, North and Latin America, and the Middle East and North Africa. HSBC is one of the world’s largest banking and financial services organisations. Currently, we are looking for a candidate for the position of:

    (Cybersecurity) Analyst GCB 6
    Location: Kraków
    Ref No: HTK/Cybersecurity/AGCB6/07/2018
    The Cybersecurity Monitoring and Threat Detection Team are charged with efficiently and effectively monitoring the company global technology and information estate 24x7. The team’s mission is to detect the presence of any adversary within the estate, quickly analyse the severity and scope of the issue and work with the Cybersecurity Incident Management and Response Team to contain, mitigate and remediate the incursion. In addition, the team is responsible for constantly improving its detection capability through attack analysis and ensuring that the appropriate security event information is being fed into the team and that the alerting rules are tuned for maximum effectiveness. This mission is critical to the protection of company’s customers, the brand, shareholder value, as well as information and financial assets.
     
    Analysts are responsible for monitoring multiple networks simultaneously using the latest threat detection technologies to detect, analyse and respond to cyber security incidents. The Analyst will follow detailed processes and procedures to identify and analyse these incidents, escalating to and supporting more senior analysts based on the severity and potential impact of the incident.

     

    Key Accountabilities:

    • Monitoring the entire global company technology and information estate for new attacks and log them to appropriate systems.
    • Triaging potentially malicious events to determine severity and criticality of the event.
    • Responding to alerts from the various monitoring/detection systems and platforms within defined SLAs.
    • Following detailed processes and procedures to analyse, respond to and/or escalate cyber security incidents.
    • Supporting cyber security incidents through to eradication and feedback lessons learned, in to improved cyber resilience.
    • Analysing network traffic using a variety of analysis tools.
    • Monitoring security appliance health and perform basic troubleshooting of security devices; notify security engineering as necessary for malfunctioning equipment.
    • Analysing malicious artefacts obtained from network monitoring with a focus on generation of threat intelligence and service improvement.
    • Identifying and developing new ideas to enhance our detection capability (Use cases) and mitigations (Playbooks) across the security platforms.
    • Reviewing and validating new Use Cases and Playbooks created by Cybersecurity colleagues.
    • Researching emerging threats and vulnerabilities to aid in the identification of cyber incidents.
    • Applying structured analytical methodologies to maximise threat intelligence growth and service efficacy.
    • Supporting handovers to other teams and countries at the start and end of the working shift.
    • Contributing to the continued evolution of hunting, monitoring, detection, analysis and response capabilities and processes.
    • Training, developing and mentoring colleagues in area(s) of specialism.
    • Collaborating with the wider Cybersecurity (and IT) teams to ensure that the core, underlying technological capabilities that underpin an effective and efficient operational response to current and anticipated threats and trends remain fit for purpose.
    • Identifying processes that can be automated and orchestrated to ensure maximum efficiency of Global Cybersecurity Operations resources.
    • Promoting a “self-critical” and continuous assessment and improvement culture whereby identification of weaknesses in the bank’s control plane (people, process and technology) are brought to light and addressed in an effective and timely manner.
    • Supporting engagement in support of Global Businesses and Functions to drive a global up-lift in cyber-security awareness and help to evangelise Cybersecurity efforts and success.

    Requirements:

    • Demonstrated experience in similar cyber security analyst role
    • Experience within an enterprise scale organisation; including hands-on experience of complex data centre environments, preferably in the finance or similarly regulated sector would be beneficial
    • Industry recognised cyber security related certifications would be beneficial; CEH or SANS GSEC or GCIH or GCIA or CISSP
    • Formal education and advanced degree in Information Security, Cyber-security, Computer Science or similar and/or commensurate demonstrated work experience in the same

    We offer:

    • Stable job in professional team,
    • Interesting path of career in an international organization,
    • Consistent scope of responsibilities,
    • Private health care, employees’ benefits.

     

     
    To apply for this position please send your curriculum vitae in English including reference number, using "Apply now" button below.
    Applications sent to us will be taken into consideration only if they include the following statement:
    I hereby declare that I have familiarized myself with the Privacy Statement for Applicants published at http://www.about.hsbc.pl/careers and I hereby give consent for personal data included in my application to be processed for the purposes of recruitment in HSBC Service Delivery (Polska) Sp. z o. o. according to rules described in the Privacy Statement for Applicants, as per the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (GDPR).”
    In case you would like to resign from participation in recruitment process or withdraw previously sent to us application, please email us at: [email protected]