Analyst, Cyber Security-2400005111

Role Responsibilities 

Job Summary

Cyber Security Incident Management Operations:

• Monitor, detect & respond to any potential security threats and risks to the organisation, using the available technology toolset
• Correlate and consolidate the alerts, reports, anomalies and other intelligence sources, put the threat/risk in context, and determine event/incident urgency and priority, and initiate an appropriate response
• Continuously improve the accuracy and relevance of the Bank’s detection tools and capabilities to keep pace with changing environments and regulatory/compliance requirements
• Adhere to the defined security monitoring processes and procedures, and initiate improvements to them, driving maturity and relevance
• Track and report the remediation of cybersecurity threats and risks, and provide domain expertise during remediation to the appropriate support groups
• Track and document cybersecurity incidents from initial detection through final resolution
• Operate within established standard operating procedures to handle security incidents
• Research trends and countermeasures in computer/network vulnerabilities, exploits, and malicious activity
• Support senior incident handlers during cybersecurity incident response activities
• Perform root cause analyses and present findings to relevant stakeholders for remediation
• Work closely with the other support groups to assess risk and provide recommendations for improving the Bank’s security posture

Regulatory & Business Conduct: 

• Display exemplary conduct and live by the Group’s Values and Code of Conduct. 
• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
• Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.

Key Stakeholders

• As designated in this global coverage role

Other Responsibilities:

• Work within a 24x7 shift model
• Provide after-hours rotational coverage when required

Responsibilities

Strategy

• Monitor, detect & respond to any potential security threats across the Bank to ensure all events are acted on in a timely manner.

Business

• Support senior incident handlers during cybersecurity incident response activities.
• Work closely with the other support groups to assess risk and provide recommendations for improving the Bank’s security posture.
• Identify opportunities to improve detection and response capabilities of the team
• Work with content engineering team to monitor and tune alerts.
• Conduct research on attack patterns, techniques, and develop creative solutions to detect/prevent adversarial tools, techniques and procedures.
• Collaborate with key stakeholders to continuously enhance playbooks as new products, logs, and capabilities are introduced to the organization.
• Collaborate with key stakeholders in improving the Bank’s detection posture.

Processes

• Ensure adherence to all internal and external policies, procedures and regulations.

Risk Management

• Be aware of, identify and escalate all risk issues and concentrations in accordance to the firm’s Group Information and Cyber Security Policy. Where appropriate, direct remedial action and/or ensure adequate reporting to Risk Committees. 

Governance

• Promote an environment where compliance with internal control functions and the external regulatory framework is a central priority of the service. 

Regulatory & Business Conduct 

• Display exemplary conduct and live by the Group’s Values and Code of Conduct. 
• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
• Lead to achieve the outcomes set out in the Bank’s Conduct Principles: [Fair Outcomes for Clients; Effective Financial Markets; Financial Crime Compliance; The Right Environment.] * 
• Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.
  

Key stakeholders

• Tech, Transform and Ops
• Cyber Security 
• Cyber Defence & Ops Technology
• Cyber Defence Centre
• Security Monitoring & Analytics
• Group Threat Management

Other Responsibilities

• Embed Here for good and Group’s brand and values; Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures; Multiple functions (double hats); 

Our Ideal Candidate

• Diploma or higher educational qualification in Engineering, Computer Science/Information Technology or an equivalent qualification in a relevant discipline
• The following certifications are desirable but not mandatory: EC Council Certified Ethical Hacker (CEH), EC Council Certified Security Analyst (ECSA), SANS GIAC Certified Incident Handler (GCIH), CERT Certified Computer Security Incident Handler (CSIH), Axelos Information Technology Infrastructure Library (ITIL) v3 Foundation

Role specific Competencies

• Well-versed in Cybersecurity Incident Analysis and Response and Cybersecurity Defensive Operations (Blue Team)
• Strong understanding of core Enterprise Information Technology and Computer Networking concepts (Desktop/Laptop, Mobile Device, Server, Network Device, LAN and WAN)
• Basic knowledge of selected IT Service Management (ITSM) processes (Event Management, Incident Management, Change Management, Service Assets and Configuration Management, Service Level Management)
• Exposure to Security Information and Event Management solutions, preferably Splunk ES. User Behaviour Analytics (UBA) exposure is desirable
• Exposure to Endpoint Security and/or Endpoint Detection and Response tools, preferably Symantec
• Demonstrated ability to work with a diverse, geographically-dispersed team

About Standard Chartered 

We're an international bank, nimble enough to act, big enough