Control and Recertification Firewall rules with French

• The mission is to ensure a secure resilient and compliant production environment by protecting critical systems data and operations from internal and external cyber threats.
• To achieve this it provides the following security services:
• Identity Management: Responsible for managing the identities and access rights of employees and partners to the banks systems and data.
• Supervision & Control: Responsible for monitoring and analyzing signals generated by various security devices and providing adequate responses in case of cyber incidents.
• Vulnerability Management & Follow-up: Responsible for detecting vulnerabilities and technical non compliance as well as organizing and monitoring the deployment of remediation activities.
• Network Filtering: Responsible for implementing traffic filtering policies via WAF Firewall Proxy and DDOS security devices for critical systems.
• Data Protection & Encryption: Responsible for maintaining an inventory of encryption keys and certificates protecting data detecting security events on the network and ensuring security compliance of IT implementations.

Qualifications :

• As a member of the team responsible for Firewall Rules Control & Recertification the key responsibilities of the Operational Security Engineer Filtering are:
• Monthly Compliance: Review all newly implemented firewall rules and verify their compliance with previously validated requests using Local or Group tools (e.g. Tufin DSO).
• Annual Recertification: Perform annual recertification of all BGL or Group firewall flows impacting a BGL asset.
• Security Policy Implementation: Verify proper implementation of security policies as defined by the Group (e.g. prohibited protocols).
• Reporting: Perform monthly follow-up and reporting of all deviations.
• Produce a monthly dashboard tracking the mission and ensuring 100% completion of compliance review and annual recertification each year.
• Collaboration with Business Security Stakeholders: Act as the liaison between business entity security teams security production teams and Risk Management teams (CISO/ITRM).
• Operational Maintenance of Filtering Security Solutions
• Serve as the point of contact and reference for technical and security teams regarding flow validation.
• Ensure consistency of the control process in alignment with Group ProdSec processes.
• Ensure achievement of action plan objectives within scope (control coverage rates recertification of prohibited protocols etc.).
• Formalize the necessary procedural framework supporting operational process execution.
• Compliance Control & Adherence to Security Standards
• Verify compliance of technical/application flows implemented on security solutions (Conformity Validation & Annual FW Rule Review).
• Raise alerts in case of non compliance with standards.
• Set up dashboards required for operational mission monitoring.
• Organize rule review and recertification meetings as described in the Firewall Request Management procedure.
• Present results to the IT Security Committee.
• MAIN INTERACTIONS: Intra ProdSec (BGL and Group) primarily Filtering teams Intra BGL (Technical Teams Vendors Solution Integrators Global IT Production) ITRM Agile Production Support Technical Architects Tribes Telecom & Workspace teams

• Technical Skills:
• Incident Management / Ticketing Tools:
• Proficient in ServiceNow
• Good knowledge of JIRA
• Ability to document and manage incident lifecycles in ServiceNow

• Frameworks / Certifications:
• NIST / CIS
• ISO 27001

• Tools / Technologies:
• Firewalls: Checkpoint Fortinet Palo Alto (Change management on network layers 600 clusters & standalone)
• Micro-segmentation solutions such as Illumio (30k VEN agents on VMs)
• Consulting and support (projects audits etc.)

• Environment:
• Linux
• Windows
• IBM Cloud

• Methodologies:
• Proficiency in Agile methodologies (Scrum Kanban)
• DevOps mindset

• Language Skills
• Fluent French
• Good written and spoken English

Additional Information :

Benefits:

          Full access to foreign language learning platform

          Personalized access to tech learning platforms

          Tailored workshops and trainings to sustain your growth

          Medical Insurance

          Meal tickets

          Monthly budget to allocate on flexible benefit platform

          Access to 7 Card services

          Wellbeing activities and gatherings

Contract: 7 months mission

Remote Work :

No

Employment Type :

Full-time