IT Security Analyst at GarantiBank International N.V.

Omschrijving

GarantiBank International N.V.

GarantiBank International NV (“GBI”) is a dynamic and solid Dutch bank established in Amsterdam, the Netherlands since 1990 with offices in Dusseldorf, Kiev and Istanbul. Turkey’s largest publicly quoted firm by market capitalization, Turkiye Garanti Bankasi AS established in Istanbul is the sole shareholder of GBI.

GBI (www.garantibank.eu) is a “global boutique” bank. We are “global” because we are able to serve all value-adding and carefully selected clientele around the world. And we are “boutique” because we deliver fast, accurate, innovative, tailor-made and country-specific financial solutions in selected business lines through highly skilled and diverse human resources.

Main commercial activities of GBI are award-winning international trade finance, private banking, structured finance and corporate and commercial banking. For us, teamwork is not an option, but a must; technology is not a toy, but a necessity; diversity is not a complexity, but a strength. Supporting and coaching each other to yield the best performance is an everyday challenge at GBI. Our bankers’ added-value is highly visible as they are not grinded among thousands of other employees in hundreds of other locations.

Join us and release your potential.

Job Summary

The IT Security Analyst performs two core functions. The first is the day-to-day operations and maintenance of the in-place security solutions while the second is the identification, investigation and resolution of security breaches detected by those systems. The IT Security Analyst is expected to be fully aware of the Bank’s security goals as established by its stated policies, procedures and guidelines and to actively work towards upholding those goals. Performs any functions, within scope of authority and expertise, to provide the highest level of service and responsiveness.

Duties & Responsibilities

• Participate in the planning and design of the Bank’s security architecture in consultation with the ICT Infrastructure Department and the Information Security Department Manager


• Perform daily, weekly, and periodic security monitoring for efficient and appropriate operations.


• Maintenance and operation of ArcSight SIEM tool.


• Review logs and reports of all in-place devices. Interpret the implications of that activity and devise plans for appropriate resolution.


• Research attempts to compromise security controls.


• Develop and implement automated security monitoring procedures and reports for security reviews on IT systems and applications at the Bank. Convert current manual monitoring processes to automated reports and procedures.


• Develop recommendations for security policies and standards by performing analysis and research on a broad range of technical subjects and security concepts.


• Provide security requirements that comply with established security policy and recommend security solutions that are consistent with existing or planned architecture and regulatory requirements. Assess and verify that security controls are effectively implemented for decision-based projects.


• Register, resolve and investigate security incidents.


• Perform application control reviews, system security assessments, and vulnerability reviews.


• Oversee external vendors to report problems, sustain current levels of support, and resolve issues with purchased security software or services. Test and verify changes and updates to these vendor-supported products and tools.

Skills & Qualifications

• Knowledge of information security principles and best practices with practical experience in Information Security engineering and management, including:


• Knowledge of networking and client/server computing such as: Routing, Switching, Firewall, VPN, and DMZ security


• Practical understanding of Windows, UNIX, and advanced networking technologies.


• Should be well-versed in identity management, authentication, authorization, single sign-on, encryption, and application security architecture.


• Threat, vulnerability, and risk assessment; and


• Knowledge of widely accepted management frameworks for IT governance and information security practice (e.g., COBIT, ISO 27001/27002, etc.).

Education & Experience

• Bachelor’s degree in computer science, information systems or equivalent work experience is required.


• 3+ years Information Security experience, preferably in Banking or Financial Services.


• Desired Certifications: ArcSight Certified Integrator/Administrator (ACIA), ArcSight Certified Advanced Security Analyst (ACASA), Certified Information Systems Security Professional (CISSP), Certified Penetration Testing Specialist (CPTS)

Key Competencies Required

• Capable of working comfortably across all levels of the organization and effectively communicating security-related concepts to technical and non-technical staff and vendors;


• Possess excellent analytical, organizational and documentation skills; and


• Excellent oral and written communication skills (English) with the ability to present and discuss technical information.

Application Deadline – June 30th, 2011

Online solliciteren

U moet eerst inloggen voor dat u kan reageren op een vacature. Klik hier om in te loggen.