Standard Chartered

Responsibilities

• Provide threat research, detection content development & technical expertise to the Security Monitoring & Analytics (SMA) Service Line.
• Support the SMA Service Line and contribute to SMA’s Threat Use Case Lifecycle in designing and implementing detection use cases.
• Develop detection methods and security content for current and emerging threats.
• Contribute to building SMA’s knowledge base on threat research.
• Identify opportunities to improve orchestration, data enrichment and triage capabilities for SOAR.
• Work closely with content engineering team to monitor and tune alerts.
• Lead the weekly threat use case forum meetings to support ongoing detection development and enhancements.
• Conduct research on attack patterns, techniques, and develop creative solutions to detect/prevent adversarial tools, techniques and procedures.
• Collaborate with the Purple Team to enhance the use case efficacy testing through adversary simulation capabilities.
• Collaborate with key stakeholders to continuously enhance threat use cases as new products, logs, and capabilities are introduced to the organization.
• Collaborate with key stakeholders in improving the bank’s detection posture.
• Contribute to automation initiatives that enhance operational effectiveness.
• Contribute to automation initiatives on cloud platforms (AWS/Azure).
• Ensure adherence to all internal and external policies, procedures and regulations.
• Accountable for running, supporting and maintaining various threat use case governance processes.
• Accountable for enhancing the threat use case lifecycle.
• Assist and provide expert advice on the best practices in adoption, expansion and implementation of Splunk and its related components.
• Provide stakeholder and peer leadership in cross-functional projects and initiatives.

Requirements

• Diploma or bachelor’s degree in engineering, Computer Science / Information Technology or its equivalent is preferred.
• 5 years of relevant industry experience in cyber security.
• Good knowledge of Splunk Search Processing Language (SPL) for rule and content development for alerting, metrics, and/or reporting.
• Good knowledge of Microsoft Defender platform for rule and content development for alerting, metrics, and/or reporting.
• Good understanding of security threats across multiple platforms/environments (e.g., Windows/*nix/Cloud/Mainframe).
• Good knowledge of Cloud and Container security and in developing security content to detect threats across these (various cloud and container) platforms and/or technologies.
• Good Scripting Knowledge (bash / Python / SQL DB’s / API’s).
• Experience with attacks and mitigation methods, with experience working in two or more of the following:
• Network protocols and secure network design;
• Operating system internals and hardening (e.g. Windows, Linux, OS X, Android);
• Web application and browser security;
• Security assessments and penetration testing;
• Authentication and access control;
• Applied cryptography and security protocols;
• Security monitoring and intrusion detection;
• Incident response and forensics;
• Development of security tools, automation or frameworks.

Nice to have:

• Developer or DevOps experience in AWS and/or Azure.
• Previous experience in Linux/Windows administration & automation.
• Previous experience as DevOps or DevSecOps is highly beneficial.
• Previous experience in Splunk App development is highly beneficial.
• Relevant industry certifications (e.g., OSCP, OSCE, GREM, GPEN, GFNA, GCFA).

You will be offered

• Career development in a fast-growing company with a clear business strategy.
• Opportunity to expand international experience and build global professional relations.
• Competitive benefits package (incl. health & life insurance, pension plan, meal & sports cards).
• 3 days of paid volunteering leave our employees can use to support the cause of their choice.
• Convenient location (next to Rondo Daszyńskiego) with subway, tram and bus lines.
• Comfortable office space with chillout areas, free coffee/tea & fruit supply.
• Contribution to building our newest Global Business Services centre.
• 26 days of leave per year for all the employees.

About Standard Chartered 

We're an international bank, nimble enough to act, big enough for impact. For more than 160 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents. And we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion. Together we:

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do,
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well,
• Be better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term.

Visit our careers website www.sc.com/careers