GCS: Network Security Cyber Requirements Analyst
- Polska
- Stała
- Pełny etat
- Supports Control Owners: Collaboration with key risk stakeholders in the elaboration of network control processes and requirements to align with the risk appetite of the bank. Ensuring requirements can be measured against key indicators and with respective threshold settings.
- Supports NSEC Capability Leads: elaboration and maintenance of the Control requirements and domain standards, validation and definition activities to ensure consistency and traceability across the control and aligned to adopted industry best practice, Cyber Security Frameworks and Cyber Standards.
- Supports GB/Fs/Markets/CTO: educating and understanding of the Control requirements and domain standards that is necessary for Control compliance in-line with the risk appetite of the bank.
- Contributes to/authors/owns capability related network security including but not limited to the elaboration and maintenance of Control requirements and domain standards. Ensuring their traceability down to the technology configuration definition.
- Knowledge: Build and Knowledge Share with the Service Delivery team, and other customer fora, for them to be able to self-serve answers and build FAQs.
- Act as security subject matter expert (SME) for security of network services such as DDI (DNS, DHCP, IPAM) & NTP
- Act as security subject matter expert (SME) for security of network management tooling & platforms including monitoring, alerting & configuration management
- Define and maintain secure baseline configurations for network services & foundational network infrastructure devices
- Experience working with and securing DDI products in large environments
- Experience working with and securing resilient network layer encryption services
- Experience working with and securing network management products and solutions
- A background in information systems, technology, architecture, design, and service delivery of defense-in-depth capabilities.
- Understanding and knowledge of common industry cyber security frameworks, standards and methodologies
- Experience working within integrated networked on-prem and Cloud environments with Third party and SaaS connectivity and that require cloud use-cases for web/mobile and enterprise companies.
- Experienced in supporting a network capability, technology or platform.
- Extensive knowledge of core networking concepts
- Competitive salary
- Annual performance-based bonus
- Additional bonuses for recognition awards
- Multisport card
- Private medical care
- Life insurance
- One-time reimbursement of home office set-up (up to 800 PLN).
- Corporate parties & events
- CSR initiatives
- Nursery discounts
- Financial support with trainings and education
- Social fund
- Flexible working hours
- Free parking
- Online behavioural test (for external candidates only)
- Telephone screen (for external candidates only)
- Zoom interview with the hiring manager