x
Get our mobile app
Fast & easy access to Jobstore
Use App
Congratulations!
You just received a job recommendation!
check it out now
Browse Jobs
Companies
Campus Hiring
Download App
Browse Jobs
Companies
Campus Hiring
News
Download App
Employers
View All Jobs
Jobs in Singapore
Jobs in Singapore   »   Jobs in Singapore   »   Information Technology Job   »   Head of Section, IT Security Services
banner picture 1 banner picture 2 banner picture 3

Head of Section, IT Security Services

Credit Agricole Corporate And Investment Bank

Credit Agricole Corporate And Investment Bank company logo
Job Type   /   Job Level
Full-time   /   Manager
Job Location
Singapore, Singapore, Singapore
Salary Offered

Who we are

Crédit Agricole Corporate and Investment Banking (Crédit Agricole CIB) is the corporate and investment banking arm of Crédit Agricole Group, world’s 10th largest bank by total assets.

Our Singapore center (“ISAP” or “Information Systems Asia Pacific”) is the 2nd largest IT setup (after Paris Head Office)” for Crédit Agricole CIB's worldwide business. We work daily with international branches located in 30 markets by:

  • Envisioning and preparing the Bank’s futures information systems
  • Partnering and supporting core banking flagships and transverse areas in their large scale development projects.
  • Providing premium In-house Banking applications

This unique positioning empowers us to bring our core banking business a sustainable competitive advantage on the market.

We seek innovative and agile people sharing our mindset to support ambitious and forthcoming technological challenges.

ISAP/ITS Department Overview

ISAP IT Production Centre is an offshore delivery center managing IT Operations (RUN) for Paris, London and Asia. With over 250 people, it constitutes one of two main hubs for CA-CIB IT production teams. This setup is operated in partnership with a Service Provider, who provides most resources on site.

ISAP IT Production Centre is split in 4 departments covering the following aspects:

  • INFRA: core infrastructure- systems and network services
  • APS: application technical support
  • Middleware: Data services and Middleware services
  • End-user & Transverse: End-user Services and Transversal activities, including Control Tower, Global Operations Center and Data Security Services.

Position

The Head of Section for Data Security Services manages the RUN team and the related activities to data and endpoint security. He/She is the main point of contact for the service provider and the internal clients in the bank. He/She manages the budget for the scope. He/She is also responsible for the transition of the new services from other regions to Singapore and manages the project/transition. The role is a techno-managerial role and will have to be involved in DLP policy/rule modifications as well. He/She works with continuous improvement principles. He/She is equivalent to the Subject Matter Expert on the technologieswithin data and endpoint security.

Data Security Services team in Singapore is responsible for day-to-day operational services on the infrastructure of Europe (mainly France, UK, and Russia) remotely from Singapore. France infrastructure represents approximately 90% of the worldwide production activities of CA-CIB.

Team works in Asia and Europe time zones and flexible rotational shift is based on the nature of duties.

The operational support of the team covers the following technical scope:

  • Endpoint Security technologies – Anti-virus management, Host Intrusion Prevention System etc.
  • Data Leak Prevention systems. - Email Prevent, Web Prevent, Endpoint Protect,
  • Encryption Solutions: Disk Encryption, File and Folder encryption,
  • Database Audit Monitoring solutions
  • Email and Web Phishing Prevention solutions.
  • Vulnerability Management
  • Idendiity Access Management

Detailed Job Responsibilities

The Manager has a wide spectrum of responsibilities and actions.

As the manager of his/her team, he/she:

  • assigns the tasks and manages delegation,
  • sets and reviews the work organization according to activity’s requirements and people’s needs and validates the schedules,
  • animates the team to encourage collaboration and sharing of practices,
  • has a role in supporting people development,
  • participates to recruitment process for the team,
  • Vendor relation management

As the manager of his/her team, he/she:

  • Meets stakeholders on a regular basis to discuss improvement plans, action plans, evolving threats and changing risks, and provide feedback on policies, standards, procedures, guidelines. ISS leads security for GIT and is the main entry point for internal clients outside of GIT (Business Lines, BCP, LGL, and Compliance for security topics).
  • The service includes, but is not limited to, incident management (fault investigation, resolution escalations of all monitoring alerts and user initiated problem calls/tickets) and request management, but also global projects like End of Life, New Builds, migrations and upgrades etc., participation in global Infra events (like Power down and DR Tests)
  • ensures activity is performed in compliance with norms, standards, processes and procedures,
  • gathering required evidence using multiple forensic tools to investigate any data leak incident, conducting interrogation if required, case closure and reporting,
  • Reporting and auditing
  • monitors operational KPI and ensure tickets are closed within SLA,
  • ensures documentation is up to date and relevant for use,
  • implements cross-functions activities including continuous improvement initiatives,
  • estimates the yearly budget, sets monthly forecasts and follows up BAU/Project monthly balance.

As an experienced professional in Security domain, he/she:

  • supports his/her team or experts’ diagnosis when technical issues raise in his/her scope of expertise,
  • is aware of the global IT structure so that he/she anticipates interrelationships within the organization,
  • manage L0/L1/L2/L3 activities which involve direct relationships with end users and L3 activities (architecture, design, project management, etc.)
  • provide oversight to all Data Security activities to ensure adequate performance, efficiency, and availability,
  • engage with technical peer, Service managers, Architect and project teams on technology roadmap and projects, especially with GIT architecture security team.
  • ensures the IT Production activities regarding his/her perimeter are performed correctly by the team, complying with defined norms, standards, processes and procedures,
  • has to make sure that the defined KPI is met on a day-to-day basis for Incident, request, problem, change management etc.
  • has to monitor and push for improvements in the team’s productivity,
  • be available and able to drive/manage any complex or high severity incidents that occur within the scope of their role,
  • engage in Projects and project deliveries,
  • drive and deliver root cause for any high severity issues,
  • has to be responsible for providing direction, proactive and reactive support services to maintain the availability and reliability of systems infrastructure in accordance to the SLA,
  • Is involved in security incident diagnosis or investigations to help provide evidence or facts during diagnosis or investigation.
  • Manage requests from stakeholders on data security tools to provide extracts, reports or information when required

As the first point of contact for the Service Provider, he/she:

  • manages the daily relationship with the Service Provider and escalates when needed,
  • follows up Provider KPI and related actions,
  • coach and develop partner resources to meet the objectives,

As the first point of contact for internal Clients, he/she:

  • manages the daily relationship with internal Clients including planning, requests clarification, risks mitigation and service quality
  • prepares client feedback for the monthly review.
  • serve as point of escalation on major incidents
  • have to maintain a smooth relation with partners, vendors and global clients/teams

As a member of ISAP/ITS, he/she:

  • facilitates collaboration and spread of information from and to the team,
  • participates to the department’s activities including brainstorming, team building and other team or transversal actions,
  • fosters innovation mindset,
  • contributes to ISAP/ITS global branding and communication
  • manage budget (once a year) and forecast (monthly)
  • focus on automation and optimum use of the team to improve efficiency
  • Maintain appropriate knowledge to ensure to be fully qualified to undertake the role.
  • Complete all mandatory training as required to attain and maintain competence
  • Comply with all applicable legal, regulatory and internal Compliance requirements, including, but not limited to, the Singapore Compliance manual and Compliance policies and procedures as issued from time to time; Financial Security requirements, including, but not limited to, the prevention of Financial Crime and Fraud including reporting obligations to the Money Laundering Reporting Officer.

Work Schedule

  • Work Timing is flexible and is scheduled to manage the operations within business hours of Asia and Emea timezone.
  • Role may have to attend and lead any critical issues escalated outside of working hours, when operational needs.
✱   This job post has expired   ✱

Sharing is Caring

Know others who would be interested in this job?
© 2024 Jobstore. All rights reserved.