Pause
Lecture
Moteur de recherche d'offres d'emploi Crédit Agricole CIB

Computer Security Incident Response Specialist (CSIRT Specialist 43418)


Vacancy details

General information

Entity

About Crédit Agricole Corporate and Investment Bank (Crédit Agricole CIB)

Crédit Agricole CIB is the corporate and investment banking arm of Credit Agricole Group, the 12th largest banking group worldwide in terms of tier 1 capital (The Banker, July 2021). Nearly 8,600 employees across Europe, the Americas, Asia-Pacific, the Middle East and Africa support the Bank's clients, meeting their financial needs throughout the world. Crédit Agricole CIB offers its large corporate and institutional clients a range of products and services in capital markets activities, investment banking, structured finance, commercial banking and international trade. The Bank is a pioneer in the area of climate finance, and is currently a market leader in this segment with a complete offer for all its clients.


For more information, please visit www.ca-cib.com

Twitter: https://twitter.com/ca_cib
LinkedIn: https://www.linkedin.com/company/credit-agricole-cib/
  

Reference

2022-63963  

Update date

07/07/2022

Job description

Business type

Types of Jobs - Information systems / IT Project management

Job title

Computer Security Incident Response Specialist (CSIRT Specialist 43418)

Contract type

Permanent Contract

Expected start date

08/03/2022

Management position

No

Job summary

Position
Computer Security Incident Response Team Specialist (L2) (CSIRT Specialist)
CSIRT Specialist is an individual member technical role within the Asia Information System Security (ISS) Team, reporting into IT Security Officer, Singapore and functionally aligned to Group’s ISS CSIRT team in Head Office, France.
ASIA ISS team oversees and supervise the Information System Security related matters in the region, including cybersecurity monitoring (SOC), incident response (CSIRT) and responding to each country's regulation proactively.
The ASIA ISS CSIRT oversees detection, control and reporting of cyber incidents when it occurs and work closely with IT Operations team to recover and restore the systems that are affected by the security incident.
In this role, CSIRT Specialist will be responsible for responding, managing and coordination of end to end Security Incident Management Lifecycle: Incident Identification, Triage, Containment, Eradication, Recovery and Lesson Learnt. Person will be technical point of contact to respond and drive the security incidents response in the region.


Job Responsibilities
The role has a wide spectrum of responsibilities and will be responsible for following activities (but not limited to) in day-to-day work:

  • Identifying and detecting Incidents and taking immediate action on security incidents including (and not limited to) DoS attacks, malware attacks, phishing attacks, web attacks;
  • End to end ownership in driving and coordinating Security Incident Response and Resolution activities;
  • Responding to Security Threats and Intelligence alerts & notifications from Group CERT, Regional Regulators and authorized Threat Intelligence groups and ensuring appropriate preventive and detective actions are coordinated and deployed in liaison with IT Operations teams as per the defined approach and in timely manner;
  • Owning end to end coordination, communications and deployment of action plans for Threat Advisories or lesson learnt from Security Incidents;
  • Prepare detailed Incident Post-mortem report and Executive Summary to document the Security Incident chronology, root cause, remediation and lesson learnt;
  • Creating and updating the incident response plan (IRP) and playbooks and ensuring periodical review of playbooks to ensure the relevancy of response actions in current context, including updated information of all stakeholders involved;
  • Collaborate with other Geo’s CSIRT team members on security matters and act as a backup to manage security incident and other security activities in scope as needed;
    Periodic review of security measures of Networks (Switches. Routers, Firewall, IPS, etc.) and Systems (Win*,*NIX, etc.) in support of management of vulnerabilities;
  • Support and integrate with incident response, threat intelligence, and overall security strategy as needed;
  • Complete all mandatory trainings as required to attain and maintain competence;
    Comply with all applicable legal, regulatory and internal

Position location

Geographical area

Asia, Singapore

City

Singapour

Candidate criteria

Minimal education level

Bachelor Degree / BSc Degree or equivalent

Academic qualification / Speciality

Bachelor degree and above 

Level of minimal experience

6-10 years