Skip to main content

Cyber Defence Security Logging & Monitoring Expert

brussel START DATE: TBD DEADLINE: 2024-06-21
For our client BNP Paribas we are looking for a Cyber Defense
Security Logging & Monitoring Expert

Start date: 01/06/2024
End date : 31/05/2025

Mission Context: Do you want to help shape the bank of tomorrow today? At BNP Paribas Fortis, the country's leading bank, our employees transform challenges into opportunities, offering customers innovative solutions tailored to their needs. Our Centre of Expertise (COE) Security department supports Information Technology and Business to enable informed information security risk decision-making by bank management and to help implement a robust information security management system.

The purpose of the “Cyber Defense” team is to prepare for and respond to unauthorized cyber activity by providing the following services:

  • Proactive Services: Support & intelligence to help prepare and secure bank systems in anticipation of cyber-attacks, ensuring the collection, assessment, and sharing of threat information.
  • Reactive Services: Activated by a request, incident, or event identified by an intrusion detection system or reported by humans.

To support these services, BNP Paribas Fortis is seeking a Security Logging & Monitoring Expert.

Function Description:

Your Future Job:

The Security Logging & Monitoring Expert represents various stakeholders and the internal client's voice, identifying their expectations, preferences, and aversions, and translating these into business requirements. The Expert ensures the engineering team thoroughly understands the products and monitors progress. The role includes defining stories, prioritizing the backlog, and organizing the execution of operational priorities while maintaining the conceptual and technical integrity of features/user stories. The Expert also plays a significant role in quality assurance and is empowered to judge the finalization of stories.

Key Responsibilities:

  • Translate the Cyber Defense vision and strategy into a target operating model and processes for Security Logging & Monitoring capabilities.
  • Effectively communicate the target operating model and processes to key stakeholders and Cyber Defense team members.
  • Incorporate stakeholder input into the product roadmap and negotiate priorities based on value to BNP Paribas Fortis.
  • Collaborate daily with stakeholders and IT teams to clarify requirements, remove roadblocks, and ensure alignment around Security Logging & Monitoring capabilities.
  • Ensure delivery of the Security Logging & Monitoring yearly roadmap by partnering with delivery teams, removing barriers, and resolving issues quickly and efficiently.
  • Set quality standards for delivery, develop test plans, monitor user story acceptance criteria, review deliverables, provide feedback, and improve team processes.
  • Lead problem resolution to ensure prompt and efficient service.
  • Manage Security Logging & Monitoring key performance indicators (KPIs).

Applicative Security Logging & Monitoring:

  • Understand banking applications (API, Payments) and their business context.
  • Translate a complex applicative ecosystem, distributed across many layers and devices, into effective detection conditions (events, log sources, detection logic).
  • Improve and maintain the applicative use case creation and maintenance methodology, considering the relationships among all actors involved locally and in the BNPP Group.

Language Requirements:

  • Dutch: Good spoken (preferable)
  • French: Good spoken (mandatory)
  • English: Fluent spoken & written (mandatory)

Education: Bachelor/Master's degree or equivalent by experience.

Required Experience/Knowledge:

Technical Experience (Mandatory):

  • At least 5 years of experience in information security, preferably 7 years.
  • Strong knowledge of IT security technology and processes (secure networking, web infrastructure, system security, SOC tooling, etc.).
  • Experience building SOC-related frameworks: target operating models, roles, processes.
  • Experience with processes in a SOC or CSIRT environment.
  • Experience setting best practices and quality controls over SOC processes.
  • Knowledge of the applicative security ecosystem.

Preferable:

  • Knowledge of the architecture of banking applications.
  • Knowledge of log aggregation, SIEM solutions, and Digital Analytics Platforms such as Splunk, ArcSight, ELK, etc.
  • Knowledge of Web Application Security Development (OWASP).

Soft Skills:

  • Passion for Cyber Security
  • Team player
  • Self-starter with a proactive attitude
  • Good communicator
  • Excellent internal client-facing skills
  • Strong analytical skills
  • Autonomy, commitment, and perseverance
  • Attention to detail while seeing the bigger picture
  • Ability to learn on-the-job and share knowledge
  • Solid sense of integrity and alignment with the mission
  • Desire for continuous improvement of Cyber Defense capabilities