Established in 1963 as a Swiss bank, bcp.bank segments its activities into two well-established core businesses: Commodity Trade Finance and Wealth Management. These are reinforced by our expert Treasury services. bcp.bank enjoys a solid reputation as a high-quality service provider in all of its banking fields. Founded under Swiss Banking Law and Regulations, bcp.bank is supervised by FINMA, the Swiss financial markets supervisory authority. Headquartered in Geneva, bcp.bank also operates a branch in Luxembourg and a representative office in Dubai. More information can be found at https://www.bcp.bank.
To strengthen our Information Technology division, we are currently looking for an
Information Security Analyst
TASKS AND RESPONSIBILITIES
The role of the “Information Security Analyst” is to provide support to the Head of IT Security in the below main tasks:
Monitor and maintain the Bank's IT security systems and tools.
Ensure complete follow up of the IT security dashboard in accordance with the internal policies and directives.
Monitor potential IT threats and risks and implement appropriate mitigation.
Use detection tools to spot suspicious activity on networks and systems.
Analyse results of penetration tests to identify potential weaknesses in the systems, propose patches and measures to reinforce security.
Analyse IT security incidents, identify root causes and ensure implementation of remediation measures.
Provide regular training to the staff members on IT Security awareness.
Participate in the preparation and execution of Business Continuity Recovery tests.
Draft documentation & procedures and detailed reports on IT incidents and security measures.
Advanced studies in Computer science / Cyber security (Master EPF or Uni, Bachelor HES or equivalent).
At least 4 years of proven experience in IT security in the banking or financial sector.
Good knowledge of cybersecurity reference standards (MITRE ATT&CK and CIS Controls) and methods for analyzing attacks and security exploits (rule and signature creation, loC, RegEx).
Certifications in IT Security (CISSP, CISM, ISO 27001 Lead implementer, ISO 27005 Risk management, etc…) are an asset.
Experience in using endpoint detection and response solution, vulnerability scanners and other security tools.
In-depth knowledge of security protocols, environment, applications and standards.
Very good technical knowledge of Network (TCP/IP), Active Directory & Systems (ESX VMware / Windows).
Good experience & knowledge of the "best IT security practices" and operational security.
Very good understanding of cybersecurity threats, vulnerabilities and cyber-attack kill chain.
Good command of security practices in networking and Cloud.
Analytical and rigorous mindset, excellent organizational skills and ability to work under minimum supervision.
Strong capacity to withstand stress.
Service and team oriented
Good communication and interpersonal skills.
Fluency in French and excellent level of oral and written English.
Starting date: Immediate
Activity rate: 100%
Please send your complete application file (cover letter, CV, work certificates and diplomas).
Kindly note that with no answer from us within 3 weeks, you can consider that your candidacy was not selected for this position. Thank you for your understanding.