Cybersecurity Incident Response Officer

Description

Arval IT is an international IT organization, with a workforce of around 1 000 internal and external professionals located in several countries (France, UK, Netherlands and other). As part of our sourcing strategy, we are expanding our nearshoring capabilities by establishing a new IT Hub in Poland, within an existing business operations shared service center (Arval Competence Center Warsaw, ACCW). This IT hub plays a strategic role in the development of digital expertise, and internalization of key competencies currently handled by external partners. 

Arval Competence Center Warsaw is the latest initiative of the BNP Paribas group, which aims to develop competences and business services. Currently, ACCW employs over 90 people who, every day, in various languages, help Arval Group entities to efficiently serve Clients and Partners. In ACCW, solutions are being created that aim to streamline the customer and supplier verification processes. The center specializes, among others, in credit analyses and KYC analyses, and also performs tasks in the field of HR data administration and internal control. 

Duties - Responsibilities

We are looking for a skilled Security Engineer to take part in the activities of the Computer Security Incident Response Team (CSIRT)

Activities

THE COLLABORATOR WILL BE INVOLVED IN SOME OR ALL OF THE FOLLOWING ACTIVITIES 

In a team of 7 people, you will participate in the following activities:  

• Incident handling and responses
• Investigations, including performing digital forensics
• Data leak protection
• Phishing identification
• Threat hunting campaigns
• Cyber threat intelligence production
• Vulnerability management

Expertise and skills

BEHAVIOURAL SKILLS                                                                Level

• Ability to collaborate / Teamwork                                                                                         - Expert
• Creativity & Innovation / Problem Solving                                                                          - Expert
• Adaptability                                                                                                                           - Expert
• Ability to Deliver / Results Driven                                                                                        - Expert

CORE COMPETENCES AND EDUCATION

• Preferably an MSc in Information Security
• Fluent in English (written & verbal). Fluent in French would be a plus
• Autonomy and capacity to deliver within a given timeframe
• Good organizational and analytical skills
• Good interpersonal and communication skills, capacity to effectively as a team player
• Ability to function effectively in a matrix structure
• Holding one or several of the following certifications would be a plus: GREM, GCFA, Blue Team Level 1 (BTL1), Blue Team Level 2 (BTL2), Certified Red Team Expert (CRTE) or Certified Red Team Professional (CRTP)

OVERALL WORK EXPERIENCE IN THE FIELD

•     Proven record as an incident handler or CTI analyst

•     Proven experience in the field of digital forensics

•     Proven experience using service now

•     Proven experience using EDR (Tanium), Antivirus (Trellix), SIEM (Elastic Search), and security tools (Netcraft, Virustotal, Ghidra, Symantec DLP)

•     Detailed technical knowledge of tactics, techniques, and procedures leveraged by attackers

•     Interest in all aspects of security research and development

Poste-type and Location

Arval Department: ACCW IT 

BNP Paribas Job type: Incident Response Officer

Location: based in the local country/regions (Poland)