Job Description

In a changing world, unprecedented challenges require unmatched talent. Join one of Montreal\'s Top Employers in 2023. We are a dynamic and growing organization having its main establishment located in downtown Montreal and part of a leading international banking institution fully committed to building a more sustainable future. Note that the position may be in the Canadian Branch of BNP Paribas or in one of its subsidiaries based in Montreal.

The position at a glance

The Production CSIRT Analyst Level III position will provide security expertise to the 24x7 Security Operation Center (SOC). The primary purpose of this position is to help coordinate and report on cyber incidents impacting the banks critical assets by detecting, preventing, and responding to cyber threats against our group\xe2\x80\x99s infrastructure. It provides critical support to the firm-wide cybersecurity program via partnerships in the region within our diverse lines of business and also externally with client, partners and regulators.

As a Production Security Analyst, you are not only responsible for hands-on real-time monitoring, analysis, and resolution of identified security incidents, but you will also be responsible to continual development and improvement of the 24x7 Security Operation Center (SOC) capabilities as the first line of defense to identify potential information security incidents.

In detail

Responsibilities include but are not limited to:

• Provide analysis and trending of security log data from many heterogeneous security devices
• Responsible for use-case development and validation
• Provide Incident Response (IR) support or escalation when analysis confirms actionable incident. Provide threat and vulnerability analysis as well a security advisory service.
• Develop threat hunting program and capabilities
• Analyze and respond to previously undisclosed software and hardware vulnerabilities
• Investigate, document and report on information security issues and emerging trends
• Perform threat hunting to identify potential adversaries within the network
• Perform forensics analysis on compromised systems to identify the extent and nature of the compromise and provide recommendations on remediation steps.
• Provide support and /or research any security related questions or incidents.
• Perform tasks independently with some oversight
• Integrate and share information with other analysts and other teams.
• Monitor bank sources of potential security incidents, health alerts with monitored solutions and requests for information. This includes the monitoring of real-time channels or dashboards, periodic reports, email inboxes, helpdesk or other ticketing system, telephone calls, chat sessions
• Follow incident-specific procedures to perform triage of potential security incidents to validate and determine needed mitigation and maintain said procedures up to date.
• Escalate potential security incidents to Level IV engineers, implements countermeasures in response to others, and recommend operational improvements
• Keep accurate incident notes in case management system
• Maintaining awareness of the bank\xe2\x80\x99s technology architecture, known weaknesses, the architecture of the security solutions used for monitoring, imminent and pervasive threats as identified by client threat intelligence, and recent security incidents
• Continuously improve the service by identifying and correcting issues or gaps in knowledge (analysis procedures, plays, client network models), false positive tuning, identifying, and recommending new or updated tools, content, countermeasures, scripts.
• Serve as a subject matter expert in at least one security-related area (e.g., specific malware solution, python programming, etc.)
• Actively seek self-improvement through continuous learning and pursuing advancement to a Level IV Analyst
• Adhere to internal operational security and other BNP Paribas policies
• Perform light project work as assigned

Qualifications

The strengths and skills that will help you succeed

• Knowledge or 3-5 years of experience with the following technologies: SIEM, ELK, IDS/IPS, network- and host- based firewalls, data leakage protection (DLP)
• Direct experience with anti-virus software, endpoint detection response (EDR), firewalls and content filtering
• Experience or demonstrable knowledge in Incident response, log analysis and PCAP analysis
• Good level of knowledge in network fundamentals, for example, OSI Stack, TCP/IP, DNS, HTTP(S), SMTP
• Good level of understanding in the approach threat actors take to attacking a network, phishing, port scanning, web application attacks, DDoS, lateral movement
• Knowledge in Windows and/or Linux operating systems, how to investigate them for signs of compromise
• Passion to learn and to contribute to the ongoing development of the team
• Knowledge of the English language is required

Skills/Behaviors Preferred:

• Foundational level of scripting knowledge
• Ability to demonstrate the right approach to investigating alerts and/or indicators and document your findings in a manner that both peer and executive level colleagues can understand
• Appreciation of the wider roles of interconnecting Cyber Security teams and collaboration with each of those (i.e., Forensics / Threat Intelligence / Penetration Testing / Vulnerability Management / "Purple Teaming" etc.)
• Ability to handle fluctuating workloads, conflicting priorities, and concurrent activities
• Analytical skills
• Strategic vision
• Rigor & Accuracy
• Flexibility
• Communication skills
• Collaboration
• Self-driven

What\xe2\x80\x99s in it for you

In addition to competitive compensation, we offer flexible benefits including a family and spouse insurance program, a defined contribution pension plan and paid days for volunteering. Hybrid work arrangements, such as remote working up to 50% and flexible working hours are available for most positions. BNP Paribas provides excellent training and personal development programs, as well as opportunities for career development within the company and internationally.

To find out more about our range of benefits,

What you need to know

• We will review candidates as they apply, so don\xe2\x80\x99t wait to submit your application;
• If you are selected to participate in the recruitment process, please inform Human Resources of any accommodations you may require. BNP Paribas will work with you to ensure that you are able to participate fully in the process;
• You must be legally eligible to work in the Greater Montreal area and, if applicable, hold a valid work or study permit. Physical presence in BNP Paribas\xe2\x80\x99 office(s) is an essential function of this position;
• Given the vast majority of our clients, both internal and external, are based outside of Quebec and Canada, specific language requirements may apply. These will be clearly mentioned in the qualifications of the position;

Diversity, Equity and Inclusion (DE&I) at the heart of our commitments

At BNP Paribas all employees are on an equal footing allowing us to create a work environment that values and respects people for their talents, skills and competences.

BNP Paribas recruits, employs, trains, compensates and promotes regardless of race, religion, colour, national origin, sex, disability, age, and other protected status (Employment Equity Act and Canadian Human Right Act).

To learn more about our DE&I commitments,

About us

BNP Paribas is the top bank in the European Union and a major international banking establishment. Present in 65 countries, with more than 190,000 employees, the bank holds key positions in several areas of banking and financial services.

BNP Paribas\xe2\x80\x99 mission is to contribute to a responsible and sustainable economy by financing and advising its clients according to the highest ethical standards, while striving to respond to essential concerns in terms of the environment, regional development and social inclusion.

Since 1961, BNP Paribas has supported large Canadian companies and institutions in their business development by offering a full range of specialized financial services and investment products.

With over 1,200 employees, BNP Paribas in Canada continues to attract experts from diverse fields as well as ambitious young talent from around the world. We are proud to offer our employees a rewarding and international workplace where they can build their professional careers by honing their skills, meeting challenges and enriching their knowledge of the financial industry.

Our certifications and partnerships

• Montreal Top Employer 2023
• Canada\'s Best Diversity Employer 2023
• Women in Governance \xe2\x80\x93 Parity certified - Gold certification
• CCDI Consulting Inc. (Canadian Center for Diversity and Inclusion)
• Pride at Work Canada
• Rainbow Accreditation issued by Canada\xe2\x80\x99s LGBT+ Chamber of Commerce (CGLCC)
• ROSEPH \xe2\x80\x93 Grouping of specialized organizations for the employment of persons with disabilities
• IndigenousWorks
• Part of Les Affaires top 300 companies in Quebec

Do you want to discover other BNP Paribas offers in Canada?

Click here:

** Only selected applications that meet the requirements of the role will be contacted **

BNP Paribas