Engineer Operations - Active Defense Center
Apply NowCompany: Commerzbank AG
Location: New York, NY 10025
Description:
Functional Title: Engineer Operations - Active Defense Center
Corporate Title: Vice President
Overtime Eligible (Y/N) N
Department: Technology Foundations, New York
Reports To: (Position) Head of Technology Foundations, New York
Management Responsibilities: (Y/N) N
Position Summary:
The Active Defense Center is responsible for the early and effective detection and prevention of attacks on the bank's data integrity and information security in the exciting environment of Cyber Security. We achieve this together with our 2 existing ADC location in Singapore and Frankfurt together with a first level provided by CGSS in Kuala Lumpur (Follow the Sun). We are responsible for the detection and proactive defense against cyber-attack scenarios and actively define and manage the implementation and configuration of appropriate security measures and security related technology.
Essential Duties and Responsibilities:
In the Cluster Cyber Defense & Bases Services we are the Commerzbank's 1st Line of Defense to protect the bank against Cyber Threats and potential Cyber Attacks. Together with the 2 already existing Security Operations Centers in Frankfurt and Singapore the new team in New York will ensure a follow the sun coverage to react to security incidents and potential Cyber threats.
Candidate will need to work together with the existing two AVPs on the team maintaining the day to day follow the sun support.
Experience leading incident response and forensic investigative initiatives
Maintain engineering and security documentation.
In addition to generating and processing reports, your tasks include analyzing and defending against malware, Suspicious Internet access, Intruder Detection, attacks (DDoS, Brute Force, Phishing, etc.) and Threat Hunting.
In addition, you are a driver in the team to meet the ever-increasing demands of cyber-attack defense, perform complex analyzes and ensure the optimization/further development/automation of the tools used.
You also work together with GS-TF, GRM-CRIS and Threat Analysis/CERT.
You are characterized by high level of flexibility and commitment.
The role also includes the participation and/or management of task forces to respond to cyber threats.
Miscellaneous responsibilities as required.
Experience /Qualifications/Education:
Minimum of Bachelors degree or equivalent training with a focus on information security
Expert on cyber-attack scenarios, information security, defense
Experience with at least some of the relevant tools and applications (SIEM (preferrable Chronicle) IDS/IPS, malware analysis, Web Application Firewalls, EDR)
Expert in infrastructure architecture and systems in the bank (firewall, proxy, logging, MS-Defender, Symantec, MS Exchange, Cloud, Active Directory etc.)
Expert in Unix, Windows, MS Office applications and SharePoint
Experience in scripting (Python, Power Shell) round off your profile
Strong analytical solution and customer-oriented thinking and action
Decision-making, conflict and integration skills, thinking outside the box
Outstanding communication skills in English
Disclaimer:
The above statements are intended to describe the general nature and level of work being performed by people assigned to this position. This document is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities required by the incumbents. Job responsibilities are subject to change, with or without notice. All employees may be required to perform duties outside of their normal responsibilities at any time at the Firm's total discretion.
This document does not constitute a contract of employment with you of any kind, express or implied for any duration, or with respect to any of its stated or omitted terms. As described in the Firm's employee handbook, the Firm reserves the right to terminate your employment with or without cause, notice or reason at any time at its sole discretion.
Corporate Title: Vice President
Overtime Eligible (Y/N) N
Department: Technology Foundations, New York
Reports To: (Position) Head of Technology Foundations, New York
Management Responsibilities: (Y/N) N
Position Summary:
The Active Defense Center is responsible for the early and effective detection and prevention of attacks on the bank's data integrity and information security in the exciting environment of Cyber Security. We achieve this together with our 2 existing ADC location in Singapore and Frankfurt together with a first level provided by CGSS in Kuala Lumpur (Follow the Sun). We are responsible for the detection and proactive defense against cyber-attack scenarios and actively define and manage the implementation and configuration of appropriate security measures and security related technology.
Essential Duties and Responsibilities:
In the Cluster Cyber Defense & Bases Services we are the Commerzbank's 1st Line of Defense to protect the bank against Cyber Threats and potential Cyber Attacks. Together with the 2 already existing Security Operations Centers in Frankfurt and Singapore the new team in New York will ensure a follow the sun coverage to react to security incidents and potential Cyber threats.
Candidate will need to work together with the existing two AVPs on the team maintaining the day to day follow the sun support.
Experience leading incident response and forensic investigative initiatives
Maintain engineering and security documentation.
In addition to generating and processing reports, your tasks include analyzing and defending against malware, Suspicious Internet access, Intruder Detection, attacks (DDoS, Brute Force, Phishing, etc.) and Threat Hunting.
In addition, you are a driver in the team to meet the ever-increasing demands of cyber-attack defense, perform complex analyzes and ensure the optimization/further development/automation of the tools used.
You also work together with GS-TF, GRM-CRIS and Threat Analysis/CERT.
You are characterized by high level of flexibility and commitment.
The role also includes the participation and/or management of task forces to respond to cyber threats.
Miscellaneous responsibilities as required.
Experience /Qualifications/Education:
Minimum of Bachelors degree or equivalent training with a focus on information security
Expert on cyber-attack scenarios, information security, defense
Experience with at least some of the relevant tools and applications (SIEM (preferrable Chronicle) IDS/IPS, malware analysis, Web Application Firewalls, EDR)
Expert in infrastructure architecture and systems in the bank (firewall, proxy, logging, MS-Defender, Symantec, MS Exchange, Cloud, Active Directory etc.)
Expert in Unix, Windows, MS Office applications and SharePoint
Experience in scripting (Python, Power Shell) round off your profile
Strong analytical solution and customer-oriented thinking and action
Decision-making, conflict and integration skills, thinking outside the box
Outstanding communication skills in English
Disclaimer:
The above statements are intended to describe the general nature and level of work being performed by people assigned to this position. This document is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities required by the incumbents. Job responsibilities are subject to change, with or without notice. All employees may be required to perform duties outside of their normal responsibilities at any time at the Firm's total discretion.
This document does not constitute a contract of employment with you of any kind, express or implied for any duration, or with respect to any of its stated or omitted terms. As described in the Firm's employee handbook, the Firm reserves the right to terminate your employment with or without cause, notice or reason at any time at its sole discretion.