Cyber Security Consultant - SOC

Permanent contract|Bangalore|Innovation / Project / Organization

Cyber Security Consultant - SOC

  • Bangalore, India
  • Permanent contract
  • Innovation / Project / Organization

Responsibilities

  1.   JOB PURPOSE

RESG/GTS is the entity in charge of the entire IT infrastructure of Société Générale.

The RESG/GTS/SEC/SOC department, which corresponds to the Société Générale SOC (SOC SG), is in charge of operational detection, incident response and prevention activities within the scope of GTS across the businesses. The mission of the SOC is to identify, protect, detect, respond and using the security platforms for the detection/reaction and prevention and resolution of security incidents. The SG SOC consists of Cyber Defense (incident management) Cyber Tools (management of SOC tools including the SIEM), Cyber Control (Prevention and Compliance) and Governance.

This role is for a SOC L3(Consultant) will be part of the GTS Security SOC team. In this role, you will involved in supporting India and global regional needs. The objectives of the Security Department (RESG/GTS/SEC) are to manage the strategy for all RESG/GTS in terms of security, technical standards, processes and tools, and thus to cover many cross-functional functions within the company and subsidiaries across all regions.

  1.   PRINCIPAL ACCOUNTABILITIES

(List the responsibilities/duties associated with the job and the major activities associated with each responsibility. For each responsibility/duty listed, give the factors on which an individual’s performance is judged).

  • Lead and manage all high priority & Critical Security Incidents including end to end incident mgmt.
  • Support/help and guide the L1/L2 in managing complex issues/incidents
  • Lead and engage in Study/POC of Tools and technologies aligning to the security roadmap
  • Will be an expert in 1 or 2 key security technologies/tools globally and be part of the global SOC L3/Experts – Example Areas:  Threat Hunting, Forensic Analysis, IPS, EDR, DLP, etc.
  • Contribution to the risk detection management approach, consistent with the SG MITRE Matrix approach and other industry standard relevant approaches
  • Analysis support for complex investigations and improve reaction procedures/run book definitions/ enhancements
  • Support for analyses on cybersecurity technical plans, analysis approach and incident management
  •  Identify different security tools and technologies to make security operations more effective.
  • Identification of security gaps, mitigation strategy, implementation & tracking till closure
  • Work with various regional SOC and CERT teams on the security aspects an incidents where required
  • Recognized as consultant for cyber domains with internal teams and business
  • Assist functional head in building technical capabilities, strategic cyber roadmaps and team competencies based on priorities and policies of Group and GSC
  • Work as technical expert for the domain(s) and execute cyber programs of medium to complex nature and support in delivery
  • Help functional manager in identifying technical loopholes in processes and interdependencies
  • Develop holistic solutions and manage transversal cyber programs
  • Act as a consultant on key cyber topics
  • Stakeholder management and relationship building with technical counterparts

Profile required

  1.   SKILLS AND KNOWLEDGE

(State the minimum acceptable proficiency for this job which best indicates the education and/or experience requirements of this job and not the incumbent).

  • Advanced knowledge of cybersecurity concepts: must have an in-depth understanding of cybersecurity concepts, such as threat intelligence, incident response, vulnerability assessment, and risk management.
  • Advanced knowledge of networking: must be proficient in using security technologies and tools, such as SIEM, IDS/IPS, EDR, and vulnerability scanners, should have a strong understanding of TCP/IP, DNS, HTTP, SMTP, and other networking protocols, and be able to analyze network traffic to identify security threats.
  • Expertise in security technologies: Should have experience working with security technologies such as firewalls, intrusion detection/prevention systems, SIEMs (Security Information and Event Management), and endpoint detection and response (EDR) tools. Knowledge of SIEM products (e.g. Splunk and RSA NetWitness)
  • Proficiency in threat hunting: Should have advanced skills in threat hunting and be able to identify, investigate, and resolve advanced persistent threats (APTs). Must be skilled in threat hunting techniques and be able to proactively search for new and emerging threats that may not be detected by traditional security tools.
  • Familiarity with cloud security: Should have knowledge of cloud security technologies, including cloud access security brokers (CASBs), cloud workload protection platforms (CWPPs), and cloud security posture management (CSPM) tools.
  • Strong analytical and problem-solving skills: Must be able to analyze large volumes of data and identify patterns and anomalies that may indicate a security threat. They should also be able to develop and implement solutions to mitigate risks and prevent future incidents.
  • Advanced incident response skills: Should have advanced skills in incident response, including triage, investigation, containment, eradication, and recovery. They should be able to perform memory analysis, malware analysis, and forensic investigations.
  • Knowledge of compliance regulations: Should be familiar with compliance regulations such as PCI DSS, HIPAA, and GDPR, and be able to ensure their organization is meeting these requirements.
  • Scripting and automation skills: Should have experience with scripting languages such as Python and PowerShell, and be able to automate repetitive tasks to increase efficiency.
  • Collaboration and communication: Should be able to work collaboratively with other security team members, as well as other departments within the organization. Must have strong communication skills to interact effectively with stakeholders, including senior management, technical staff, and external partners. They should be able to articulate concepts in a clear and concise manner to both technical and non-technical audiences.
  • Knowledge on security framework (MITRE ATT&CK, NIST)
  • Experience in managing and responding to internal & external SOC audits
  • Knowledge of the global architecture of a network, and the security of its components (routers, switches, ...)
  • Knowledge of attack procedures and malicious code (exploits, attack vectors, phishing, ...)
  • Bachelor's degree in Computer Science, Information Systems, or related field. Masters’ degree in relevant domain is a plus.
  • 12+ years of experience working with security teams in lead roles in SOC etc.
  • Relevant security certifications, such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), and/or GCIH (GIAC Certified Incident Handler), GSOC (GIAC Security Operations Certified), GSOM (GIAC Security operations manager certification)
    • Functional Expertise - Keeps up to date with emerging technology, business, and market trends
    • Technical Skills - Demonstrates strong technical skills required for the role, pays attention to detail, takes initiative to broaden his/her knowledge and demonstrates appropriate analytical skills
    • Drive and Motivation - Successfully handles multiple tasks, takes initiative to improve his/her own performance, works intensely towards extremely challenging goals and persists in the face of obstacles or setbacks
    • Client and Business Focus - Effectively handles difficult requests, builds trusting, long-term relationships with clients, helps the client to identify/define needs and manages client/business expectations
    • Teamwork – Gives evidence of being a strong team player, collaborates with others within and across teams, encourages other team members to participate and contribute and acknowledges others' contributions. Ability to work effectively both independently and in a team environment.
    • Communication Skills - Excellent written and verbal communication skills. Communicates what is relevant and important in a clear and concise manner and shares information/new ideas with others
    • Judgement and Problem solving - Thinks ahead, anticipates questions, plans for contingencies, finds alternative solutions, and identifies clear objectives.  Sees the big picture and effectively analyses complex issues. Strong analytical and problem-solving skills.
    • Creativity/Innovation - Looks for new ways to improve current processes and develop creative solutions that are grounded and have practical value

Influencing Outcomes - Presents sound, persuasive rationale for ideas or opinions.  Takes a position on issues and influences others' opinions and presents persuasive recommendations

Why join us


We are committed to creating a diverse environment and are proud to be an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

Business insight


At Société Générale, we are convinced that people are drivers of change, and that the world of tomorrow
will be shaped by all their initiatives, from the smallest to the most ambitious.
Whether you’re joining us for a period of months, years or your entire career, together we can have a positive impact on the future. Creating, daring, innovating and taking action are part of our DNA.
If you too want to be directly involved, grow in a stimulating and caring environment, feel useful on a daily basis and develop or strengthen your expertise, you will feel right at home with us!
Still hesitating?
You should know that our employees can dedicate several days per year to solidarity actions during their working hours, including sponsoring people struggling with their orientation or professional integration, participating in the financial education of young apprentices and sharing their skills with charities. There are many ways to get involved.

We are an equal opportunities employer and we are proud to make diversity a strength for our company. Societe Generale is committed to recognizing and promoting all talents, regardless of their beliefs, age, disability, parental status, ethnic origin, nationality, gender identity, sexual orientation, membership of a political, religious, trade union or minority organisation, or any other characteristic that could be subject to discrimination.

Reference: 23000XVX
Entity: SG Global Solution Centre
Starting date: immediate
Publication date: 2024/01/01
Share