IT Security Engineer
Apply NowCompany: Crédit Agricole S.A.
Location: New York, NY 10025
Description:
Vacancy details
General information
Entity
About Crdit Agricole Corporate and Investment Bank (Crdit Agricole CIB)
Crdit Agricole CIB is the corporate and investment banking arm of Crdit Agricole Group, the 10th largest banking group worldwide in terms of balance sheet size (The Banker, July 2022).
8,600 employees in more than 30 countries across Europe, the Americas, Asia-Pacific, the Middle-East and North Africa, support the Bank's clients, meeting their financial needs throughout the world.
Crdit Agricole CIB offers its large corporate and institutional clients a range of products and services in capital market activities, investment banking, structured finance, commercial banking and international trade.
The Bank is a pioneer in the area of climate finance, and is currently a market leader in this segment with a complete offer for all its clients.
For more information, please visit www.ca-cib.com
Twitter: https://twitter.com/ca_cib
LinkedIn: https://www.linkedin.com/company/credit-agricole-cib/
By working every day in the interest of society, we are a group committed to diversity and inclusion. All our positions are open to people with disabilities.
Reference
2024-92708
Publication date
17/10/2024
Job description
Business type
Types of Jobs - IT, Digital et Data
Job title
IT Security Engineer
Contract type
Permanent Contract
Job summary
Summary
The Security Engineer will be responsible for the IT Security review and assessment of the corporate desktops and servers, infrastructure applications & network in CA-CIB NY. He is also responsible for enforcing the security policy and complying with requirements of external security audits and recommendations.
Other responsibilities include monitoring of alerts for any reported anomalies and malicious activities on network and host levels as well as responding to audit findings.
Key Responsibilities
Prepare, organize, conduct & follow-up on vulnerability scans and remediation on all scopes;
Prepare, organize, review & follow-up on pentests and remediation on all scopes;
Prepare, organize, review & follow-up on Purple team exercise and its remediation projects;
Conduct annual Firewall rule review and monitor Firewall rule change management;
Provide cybersecurity expertise for all IT and IT Security projects;
Respond to internal Audit findings by developing controls and documentation packages;
Review network architecture designs;
Ensuring that all areas of CA-CIB remain in full compliance with Security directives related to IT Security management as received from Head Office and other guidelines (FFIEC, NIST);
Perform cybersecurity controls;
Support Continuous Monitoring Framework by effectively reporting the Key Risk Indicators (KRIs) and Key Control;
Evolve the Security function by continuous assessment of our risks, threats & vulnerabilities;
Maintain and update all local policies, procedures and standards;
Perform scheduled host discoveries to ensure all servers and desktops are accounted for and meet Head Office Standards in monitoring & coverage;
Ensure security monitoring tools such as AV, DLP, patch agents are registered & monitored;
Optimize all IS Security controls / processes through automation via scripts, tools and other means;
Continuous monitoring all Hosts to ensure continuous compliance to Head Office technical security standards and Server build standards;
Perform Scheduled Security Patch Assessments to validate that all servers and desktops are compliant;
Keep current in IT Security and cybersecurity industry trends;
Awareness and development of controls and detection solutions to address malware, cybersecurity and advanced persistent attacks;
Function as the Backup for IT Sec Engineering Manager;
Support IT Security and cybersecurity Awareness campaigns.
Management and Reporting
Reports to the IT Security Engineering Manager
Key Internal contacts
All GIT/SIT/ISS groups in Americas & Paris
Internal Audit team
Key External contacts
Varies per projects/incidents (IT, Business, Management, etc.)
#LI-DNI
Supplementary Information
Salary Range: $110k - $130k
Position location
Geographical area
America, United States Of America
City
NEW YORK
Candidate criteria
Minimal education level
Bachelor Degree / BSc Degree or equivalent
Academic qualification / Speciality
Required:
4 year accredited college/university BA or MS in MIS, Engineering, Computer System or Computer Science
Desired:
;Certification: CISM, CEH, CRISC
CISSP preferred
Level of minimal experience
6-10 years
Experience
Required:
Minimum 6 to 8 years experience in technical Cybersecurity engineering functions
Desired:
KALI
PYTHON coding
Required skills
IS Security industry standards, policies, best practices
Working knowledge of Windows, network, Unix, firewalls, proxies, security vulnerabilities
Team player
Top notch English communication skills written and spoken
Able to multi task
Able to work independently
Comfortable talking to different stakeholders
Self-driven and want to excel
General information
Entity
About Crdit Agricole Corporate and Investment Bank (Crdit Agricole CIB)
Crdit Agricole CIB is the corporate and investment banking arm of Crdit Agricole Group, the 10th largest banking group worldwide in terms of balance sheet size (The Banker, July 2022).
8,600 employees in more than 30 countries across Europe, the Americas, Asia-Pacific, the Middle-East and North Africa, support the Bank's clients, meeting their financial needs throughout the world.
Crdit Agricole CIB offers its large corporate and institutional clients a range of products and services in capital market activities, investment banking, structured finance, commercial banking and international trade.
The Bank is a pioneer in the area of climate finance, and is currently a market leader in this segment with a complete offer for all its clients.
For more information, please visit www.ca-cib.com
Twitter: https://twitter.com/ca_cib
LinkedIn: https://www.linkedin.com/company/credit-agricole-cib/
By working every day in the interest of society, we are a group committed to diversity and inclusion. All our positions are open to people with disabilities.
Reference
2024-92708
Publication date
17/10/2024
Job description
Business type
Types of Jobs - IT, Digital et Data
Job title
IT Security Engineer
Contract type
Permanent Contract
Job summary
Summary
The Security Engineer will be responsible for the IT Security review and assessment of the corporate desktops and servers, infrastructure applications & network in CA-CIB NY. He is also responsible for enforcing the security policy and complying with requirements of external security audits and recommendations.
Other responsibilities include monitoring of alerts for any reported anomalies and malicious activities on network and host levels as well as responding to audit findings.
Key Responsibilities
Prepare, organize, conduct & follow-up on vulnerability scans and remediation on all scopes;
Prepare, organize, review & follow-up on pentests and remediation on all scopes;
Prepare, organize, review & follow-up on Purple team exercise and its remediation projects;
Conduct annual Firewall rule review and monitor Firewall rule change management;
Provide cybersecurity expertise for all IT and IT Security projects;
Respond to internal Audit findings by developing controls and documentation packages;
Review network architecture designs;
Ensuring that all areas of CA-CIB remain in full compliance with Security directives related to IT Security management as received from Head Office and other guidelines (FFIEC, NIST);
Perform cybersecurity controls;
Support Continuous Monitoring Framework by effectively reporting the Key Risk Indicators (KRIs) and Key Control;
Evolve the Security function by continuous assessment of our risks, threats & vulnerabilities;
Maintain and update all local policies, procedures and standards;
Perform scheduled host discoveries to ensure all servers and desktops are accounted for and meet Head Office Standards in monitoring & coverage;
Ensure security monitoring tools such as AV, DLP, patch agents are registered & monitored;
Optimize all IS Security controls / processes through automation via scripts, tools and other means;
Continuous monitoring all Hosts to ensure continuous compliance to Head Office technical security standards and Server build standards;
Perform Scheduled Security Patch Assessments to validate that all servers and desktops are compliant;
Keep current in IT Security and cybersecurity industry trends;
Awareness and development of controls and detection solutions to address malware, cybersecurity and advanced persistent attacks;
Function as the Backup for IT Sec Engineering Manager;
Support IT Security and cybersecurity Awareness campaigns.
Management and Reporting
Reports to the IT Security Engineering Manager
Key Internal contacts
All GIT/SIT/ISS groups in Americas & Paris
Internal Audit team
Key External contacts
Varies per projects/incidents (IT, Business, Management, etc.)
#LI-DNI
Supplementary Information
Salary Range: $110k - $130k
Position location
Geographical area
America, United States Of America
City
NEW YORK
Candidate criteria
Minimal education level
Bachelor Degree / BSc Degree or equivalent
Academic qualification / Speciality
Required:
4 year accredited college/university BA or MS in MIS, Engineering, Computer System or Computer Science
Desired:
;Certification: CISM, CEH, CRISC
CISSP preferred
Level of minimal experience
6-10 years
Experience
Required:
Minimum 6 to 8 years experience in technical Cybersecurity engineering functions
Desired:
KALI
PYTHON coding
Required skills
IS Security industry standards, policies, best practices
Working knowledge of Windows, network, Unix, firewalls, proxies, security vulnerabilities
Team player
Top notch English communication skills written and spoken
Able to multi task
Able to work independently
Comfortable talking to different stakeholders
Self-driven and want to excel