Information Security Specialist

Job Description

About Standard Chartered We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East.To us, good performance is about much more than turning a profit. Its about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good.Were committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation. This in turn helps us to provide better support to our broad client base. RESPONSIBILITIESStrategy:

• Understand project approach to technical deployments for critical cyber security services including Infra DDoS Protection, Application Layer Security, TLS/SSL Certificates, Web Resilience & DNS Protection.
• Regularly assist team members with maintenance, tuning, and implementation of Web Application Firewall, Content Delivery Network & other application layer security configurations as needed.
• To work effectively under pressure to prioritize project and BAU tasks per need/criticality.
• Lead hands-on implementation processes across multiple leading-edge technologies
• Documents solution requirements given business and technical objectives
• Defines, creates, and maintains WAF, CDN and DDoS Configurations.
• Serves as a primary responder as part of Major Incident Management taking ownership on resuming services.
• Perform root cause analysis and troubleshooting effort for production deployment
• Perform security design reviews with development and product teams
• Create and foster a security culture in cloud operations and development
• Test and evaluate 3 rd party security technologies and tools
• Define and implement security monitoring and response procedures
• Produce and present security reports and roadmaps for management
• Participate in the Security Audits and Assessments.
• To quickly grasp the network design, application/infrastructure security concepts, techniques, technologies, and tools

Processes:Responsible to deliver the Banks Secure Web Browsing Service specific process Web FilteringRegulatory & Business Conduct:

• Display exemplary conduct and live by the Group s Values and Code of Conduct.
• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.

Key Stakeholders:Technology Services End User Services; Core Infra Services Networks; Second Line and Third Line of DefenceOther Responsibilities:

• Functions as a liaison between the Bank and Vendor Technical Support teams as part of Incident and Problem Management
• Competent in reporting issues, anomalies and problems through proper channels (i.e., Incident, Problem Management from technical support)
• Able to analyse Packet capture (Wireshark, tcp dump) to identify the Network level issues
• Performs other duties relevant to deployment and security operations as assigned
• Assist with Security Automation and tools around it, including but not limited to AWS Lambda, RunDeck, Jenkins, Terraform, Ansible, etc
• Assist security program development, security architecture, security tools and technology
• Assist with the shaping and delivering of cutting-edge service offerings using industry-leading tools
• Should be able to adjust and work with diverse skilled team members.
• Provide contributions as assigned to any/all departmental projects, as assigned by management.
• Creation and regular maintenance of client impacting security issues & administrative/maintenance tasks.
• Participate in planning and coordinating installations, upgrade, migration and configuration.
• To contribute developing and maintaining optimal network performance, enforcing security measures and establishing good working relationship with the senior management and clients to facilitate a long-term technological direction and vision.
• Take part in red-team and offensive security exercises where applicable
• Support and deliver upon assigned security projects
• Architect, deploy and maintain proactive security tools including, but not limited to: Web Application Firewalls, DDoS Protection, Bot Mitigation (web applications), API Protection and custom tools
• Participate in Security Incident On-call rotation

QUALIFICATIONS:

• Bachelor s Degree in Computer Science, IT / Information Systems.
• Overall 6 years of combined IT and Info Security work experience with a broad range of exposure to Information Security Systems
• 4+ Years experience in Network Security related technologies (WAF,IDS/IPS, Firewalls)
• 2+ Years experience in Web Application Firewalls, DNS Security, DDoS Protection
• 1+ Years experience in log correlation SIEM solutions like Splunk
• Hands on experience with Security Automation and tools around it including but not limited to AWS Lambda, RunDeck, Jenkins, Terraform, Ansible etc

Apply now to join the Bank for those with big career ambitions.To view information on our benefits including our flexible working please visit our career pages .,

Keyskills :
information securitylinux networkingtroubleshooting web application firewallmajor incident management environmental impact assess