Department Overview
ISAP IT Production Centre is an offshore delivery center managing IT Operations (RUN) for Paris, London and Asia. With over 250 people, it constitutes one of two main hubs for the company's IT production teams. This setup is operated in partnership with a Service Provider, who provides most resources on site.
ISAP IT Production Centre is split in 4 departments covering the following aspects:
- INFRA: core infrastructure- systems and network services
- APS: application technical support
- Middleware: Data services and Middleware services
- End-user & Transverse: End-user Services and Transversal activities, including Control Tower, Global Operations Center and Data Security Services.
Position
Data Security Expert is a technical expert role within the Data Security Services team and will be responsible for managing, administration and supporting the Data Security and Endpoint Security technologies for the bank.
Person will be the technical point of contact for the Run team and the related activities to data security and will be the last level of escalation for the Security specialists in the team. He/She is also responsible for the technical transition and validation of Security services from other regions to Singapore. He/She will be involved in projects and POC’s that may involve security services. He/She works with continuous improvement principles. He/She is equivalent to the Subject Matter Expert on the technologies within data security.
Data Security Services team in Singapore is responsible for day-to-day operational services on the infrastructure of Europe (mainly France and UK) and Asia remotely from Singapore. France infrastructure represents approximately 80% of the worldwide production activities of the company in Singapore.
Team works in Europe time zones and this role will be aligned primarily to Paris working hours. Flexible rotations are followed based on the nature of duties.
The operational support of the team covers the following technical scope:
- Endpoint Security technologies – Anti-virus management, Host Intrusion Prevention System etc.
- Data Leak Prevention systems. - Email Prevent, Web Prevent, Endpoint Protect,
- Encryption Solutions: Disk Encryption, File and Folder encryption,
- Database Audit Monitoring solutions
- Email and Web Phishing Prevention solutions.
- Vulnerability Management
Responsibilities
The Expert has a wide spectrum of responsibilities and actions. Person will be responsible for following (but not limited to) responsibilities in day-to-day work:
As the Expert of the team, he/she:
- act as the last level of escalation for the team members
- own Incident, Problem and change management process for the team
- assigns technical tasks and manages delegation
- animates the team to encourage collaboration and sharing of practices
- participates to recruitment process for the team
As the Expert of his/her scope of activity, he/she:
- Is actively involved in incident management (fault investigation, resolution escalations of all monitoring alerts and user initiated problem calls/tickets) and request management
- Is the final technical approver for any changes into Data Security systems and is accountable for any technical changes in the environment from a RUN/BAU perspective
- Is involved in projects like End of Life, New Builds, migrations and technical upgrades of the solution managed by the team
- Participates in global Infra events (like Power down and DR Tests)
- Ensures activity is performed in compliance with norms, standards, processes and procedures
- Gathering required evidence using multiple forensic tools to investigate any data leak incident, conducting interrogation if required, case closure and reporting
- Ensures documentation is up to date and relevant for use
- Lead the continuous improvement initiatives
- Responsible to drive and deliver root cause for any high severity issues
- Focus on automation and optimum use of the team to improve efficiency
- Maintain appropriate knowledge to ensure to be fully qualified to undertake the role.
- Complete all mandatory training as required to attain and maintain competence
- Comply with all applicable legal, regulatory and internal Compliance requirements, including, but not limited to, the Singapore Compliance manual and Compliance policies and procedures as issued from time to time; Financial Security requirements, including, but not limited to, the prevention of Financial Crime and Fraud including reporting obligations to the Money Laundering Reporting Officer.
Qualifications and Profile
Functional
- 5 - 7 years of IT Security experience in administration and management of IT Security technologies primarily Endpoint Protection, Email Security and DLP, Data Classification and other endpoint & data security solutions;
- Knowledge of different domains of IT Security;
- Working & hands-on experience in administering the IT Security Solutions;
- Must have experience in working in similar Production setup in Run (Operations) mode;
- Ability to apply risk based approach while working on assigned responsibilities;
- Experience in defining, implementing, and enforcing enterprise-level IT security policies for endpoint and data security solutions;
- Must have working experience in managing endpoint security solution for a Large enterprise level environment, working experience in financial organization is preferred;
- Excellent in analytical, communication and documentation skills;
- Ability to organize work and be able to priories work as per the needs of Production Operation’s needs;
- Must have strong understanding of ITIL processes and comfortable working in process oriented environment;
- Ability to work independently and as well as a part of team and is able to work under minimal supervision;
- Should have time management skills and able to manage work in fast moving environment;
- Excellent written and oral English language skills;
- Knowledge of French language is preferred.
Technical
- Hands-on experience on Symantec Data Loss Prevention (DLP);
- Highly proficient overall security solutions like, Endpoint Protection, Email Security and Vulnerability Management;
- Deployment, integration and administration experience of various components of Symantec DLP:
- Symantec Endpoint Protect
- Symantec Web Prevent
- Symantec Email Prevent
- Symantec Enforce
- Good to have experience in defining, designing and configuring DLP Policies as per the business requirements;
- Deploy, upgrade and troubleshooting knowledge on Symantec DLP solution;
- Deploy, Upgrade and troubleshoot on DAM Solutions like IMPERVA or Guardium
- Expertise knowledge in Email Security Solutions
- Hands-on to Expertise knowledge in MS Defender for endpoint and or Cloud.
- Scripting knowledge (Phyton, Regular Expression, Powershell) is desirable;
- Professional Certifications:
- CISSP certified is highly preferred
- Symantec Certified Expert: Administration of Data Loss Prevention (any version) is highly preferred.
- Must be experienced to cover the scope as mentioned in the SKILLS MATRIX section of this document.
Technical skills
- Symantec Data Loss Prevention Administration (DLP Policy/Rules creation expertise): Good to have
- Database Access Monitoring: Good to have
- Symantec Endpoint Protection (Anti-Virus): Good to have
- Microsoft Defender Suite: Good to have
- Email Security: Knowledge
- Python, Regular Expression, Powershell: Knowledge
General skills
- Ability to prioritize effectively: Must to have
- Ability to work autonomously: Must to have
- Ability to work successfully in a team: Must to have
- Adaptability to changing environments: Must to have
- Inter-personal skills: Must to have
Management skills
- Ability to deal with issues, time management: Critical
- Manage escalated incidents: Critical
- Capacity to cooperate / work across discipline: Critical
- Capacity to develop others: Desired
Language skills
- English
- Critical
- French
- Good to have
Work Schedule
- Required to work on Paris and/or New York and/or Asia time zone*, i.e. 2pm to 11pm/4pm to 1am (summer season) or 3pm to 12am/ 5pm to 2am (winter season), or in accordance to the planned time schedule as required. If necessary, you may also be required to start work earlier or to extend working hours.
- May be required to be available for on-call support during non-business hours and/or on weekends. Allowance is claimable for such hours.
Education Requirements
At least a Bachelor’s degree in any of these faculties:
- Computer Science
- Information Technology
- Programming & Systems Analysis
- Science (Computer Studies)
Next Step
Prepare your updated resume and expected package.
Simply click on 'Apply here' or email to [email protected] to drop your resume
All shortlisted candidates will be contacted.
Prasant Sirohi
EA License Number: 91C2918
Registration Number: R22106307