Cyber Security Analyst

Open Flows management

• Collect requests using emails or a specific tool,
• Check pre-required information compliance, (IP address scopes, ports, …),
• Challenge information with requestors if necessary,
• Proceed with validation,
• Contribute to Follow-up and Reports.

Impulse ticket Management

• Collect requests using GBSU internal tool,
• Check if pre-required information is present,
• Challenge information with requestors, if necessary,
• Proceed with validation,
• Contribute to Follow-up and Reports.

Validation of Risk Exception and Security requests

• Validate requests (Firewall opening, Proxy, File transfer etc.) requests and with respect to application and IT security architecture and suggest recommendations to improve on process of validation
• Build a database of firewall route per applications
• Review of Risk Exceptions related to architecture, vulnerabilities, remote access etc. and suggest action/mitigation plan in accepting the risk

Controls and activities

• Control executions related to the processes and identify new needs in terms of controls and develop them, if any.
• Strong adherence to SOPs and process requirement.
• Involve and deliver with all kinds of requirement pertaining to support the extended team in Paris.
• SOP creation for new activities, transition and in boarding of new activities with minimal support from extended team and to initiate the process by being a self-starter.

Technical Skills

• IT and Application Security knowledge is mandatory.
• Good knowledge of Excel

Functional Skills

• Investment banking – Understanding for Application Security perspective,
• Application Security risk analysis, Controls related to Application Security and Reporting,
• Application Security activities’ coordination. (CIA and RACI concepts),
• Application Risk assessment with Application Owners and Managers.
• Knowledge of technical aspects of the Security Assessment processes is an added advantage,
• Knowledge of French Language (Proficient Level) is advantageous on the job, but not mandatory.

Relevant and total years of Experience

• 2+ years in the IT environment
• Application Security Domain experience will help in the quick integration and execution of job described.

We are committed to creating a diverse environment and are proud to be an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

At Société Générale, we are convinced that people are drivers of change, and that the world of tomorrow will be shaped by all their initiatives, from the smallest to the most ambitious. Whether you’re joining us for a period of months, years or your entire career, together we can have a positive impact on the future. Creating, daring, innovating, and taking action are part of our DNA. If you too want to be directly involved, grow in a stimulating and caring environment, feel useful on a daily basis and develop or strengthen your expertise, you will feel right at home with us!

Still hesitating? 
You should know that our employees can dedicate several days per year to solidarity actions during their working hours, including sponsoring people struggling with their orientation or professional integration, participating in the financial education of young apprentices, and sharing their skills with charities. There are many ways to get involved.

We are committed to support accelerating our Group’s ESG strategy by implementing ESG principles in all our activities and policies. They are translated in our business activity (ESG assessment, reporting, project management or IT activities), our work environment and in our responsible practices for environment protection.