Cyber Defense Security Logging & Monitoring Specialist

Mission Context:

Do you want to shape the future of banking today? At BNP Paribas Fortis, the leading bank in the country, our team transforms challenges into opportunities, providing clients with innovative solutions tailored to their needs. Our Centre of Expertise (COE) Security department supports IT and Business in making informed information security risk decisions and implementing a robust information security management system.

The purpose of the Cyber Defense team is to prepare for and respond to unauthorized cyber activities by providing the following services:

• Proactive Services: Support and intelligence to prepare and secure bank systems against cyber-attacks, ensuring the collection, assessment, and sharing of threat information.

• Reactive Services: Activated by a request, incident, or event identified by an intrusion detection system or reported by humans.

To support these services, BNP Paribas Fortis is seeking a Security Logging & Monitoring Specialist.

Role Overview:

Your Future Role:

The Security Logging & Monitoring Specialist represents various stakeholders and the internal client’s voice, identifying their expectations, preferences, and aversions, and translating these into business requirements. The Specialist ensures the engineering team thoroughly understands the products and monitors progress. The role includes defining stories, prioritizing the backlog, and organizing the execution of operational priorities while maintaining the conceptual and technical integrity of features/user stories. The Specialist also plays a significant role in quality assurance and is empowered to judge the finalization of stories.

Key Responsibilities:

• Translate the Cyber Defense vision and strategy into a target operating model and processes for Security Logging & Monitoring capabilities.

• Effectively communicate the target operating model and processes to key stakeholders and Cyber Defense team members.

• Incorporate stakeholder input into the product roadmap and negotiate priorities based on value to BNP Paribas Fortis.

• Collaborate daily with stakeholders and IT teams to clarify requirements, remove roadblocks, and ensure alignment around Security Logging & Monitoring capabilities.

• Ensure delivery of the Security Logging & Monitoring yearly roadmap by partnering with delivery teams, removing barriers, and resolving issues quickly and efficiently.

• Set quality standards for delivery, develop test plans, monitor user story acceptance criteria, review deliverables, provide feedback, and improve team processes.

• Lead problem resolution to ensure prompt and efficient service.

• Manage Security Logging & Monitoring key performance indicators (KPIs).

Applicative Security Logging & Monitoring:

• Understand banking applications (API, Payments) and their business context.

• Translate a complex applicative ecosystem, distributed across many layers and devices, into effective detection conditions (events, log sources, detection logic).

• Improve and maintain the applicative use case creation and maintenance methodology, considering the relationships among all actors involved locally and in the BNPP Group.

Language Requirements:

• Dutch: Good spoken (preferable)

• French: Good spoken (mandatory)

• English: Fluent spoken & written (mandatory)

Education:

Bachelor’s or Master’s degree or equivalent by experience.

Technical Experience (Mandatory):

• At least 5 years of experience in information security, preferably 7 years.

• Strong knowledge of IT security technology and processes (secure networking, web infrastructure, system security, SOC tooling, etc.).

• Experience building SOC-related frameworks: target operating models, roles, processes.

• Experience with processes in a SOC or CSIRT environment.

• Experience setting best practices and quality controls over SOC processes.

• Knowledge of the applicative security ecosystem.

Preferable:

• Knowledge of the architecture of banking applications.

• Knowledge of log aggregation, SIEM solutions, and Digital Analytics Platforms such as Splunk, ArcSight, ELK, etc.

• Knowledge of Web Application Security Development (OWASP).