Location
Bangalore | India
Job description
JOB SCOPE
Role : Cybersecurity Consultant
The Cyber/Cloud Security and Risk Officer (CSRO) aims to contribute to the steering of strategy in terms of public cloud security, technical standards, processes, tools and risk management.
JOB REQUIREMENTS
Experience : 10 yrs +
- Defines, publishes and maintains processes for Security Governances, Risk and Compliance (GRC) for public cloud (AWS and Azure)
- Define cyber controls for public cloud platform, whilst adhering to a centralized methodology
- Updating and documenting security controls as an accountable part of the public cloud expertise team (e.g.: code security audit)
- Recommending changes to policies or procedures based on new threats or vulnerabilities identified
- Build and enforce hardening checklist comprises of industrys best practices for public cloud
- Provide design time review and guidance to teams building and deploying solution to public/private/hybrid cloud. (Security by Design)
- Conduct risk analysis and define/monitor associated mitigation/remediation plans
- Validate and communicate on the hardening of services and assess the maturity of application/service/infra against the defined security framework
- Carry out monitoring and propose functional improvements within the scope of intervention (security framework, risk analysis....),
- Collecting evidence and performing technical and functional acceptance tests in the context of infrastructure and service hardening projects,
- Conducting vulnerabilities scans with automated tools (SAST/DAST etc) to identify potential security issues
- Support/advise the operational security teams (Operation Security Manager),
- Security code review on all the developed infra components.
- Expected Deliverables
- Service/Application/Infra maturity reports (assessment report). Assessment against defined maturity model
- Risk analysis file
- Blueprint and/or technical notes, Services/Infrastructures security compliance reports based on the controls defined and specified (ex: vulnerability management, code audit,).
ABOUT THE CLIENT/BENEFITS
- Société Générale is one of the main French banks and one of the oldest.
- The three pillars of Societe Generale, at the heart of the development of the relationship banking model, are:
- Retail networks in France (Societe Generale, Crédit du Nord and Boursorama)
- International retail networks (BHFM)
- Corporate and Investment Banking (SG CIB) which manages Corporate Banking and Fixed Income, Structured Finance, Debt, Forex on the one hand, and Equity and Advisory activities on the other .
- In support of the development of its three pillars, the Group's two other business lines are:
- Specialized Financial Services & Insurance
- Private Banking, Asset Management and Investor Services
Disclaimer: The job advertisement listed above is verified by Jobs2Grab.com for a present or future talent requirement from our client employer. This could be for developing their talent pipeline within their portfolio specialisation areas. Job2Grab.com holds no responsibility for any obsolete advertisements that it has no control of managing those postings. Please contact our client employer's talent acquisition team or visit their direct careersite for any clarification if needed. If you are a client employer and wish to have this job unlisted, please login to your employer account to terminate the job posting or you may contact our support team.
Job tags
Salary