About the role
In this critical role, you will provide rapid response and containment capability to address critical cyber incidents so that the interests of People First Bank and its members are protected from compromised data or services. You will play a distinct cybersecurity role by combining proactive threat hunting with reactive incident management. You will remain informed on global trends and threats so that you can apply relevant context for the People First Bank attack surface.
Specifically, this will include:
1. Managing the suite of technical playbooks to ensure they align to the risk scenarios of the bank.
2. Manage our incident response tabletop exercise calendar of events to ensure the bank is match fit and ready for any scenario posed.
3. Identifying threats and vulnerabilities associated with the bank's information assets.
4. Collaborating with internal stakeholders to develop, implement and maintain strong security policies, procedures and capabilities.
5. Detecting threats and anomalies by monitoring, investigating, researching alerts and assessing intelligence to trigger the response process.
6. Triaging security events, responding promptly to contain and mitigate threats minimising the impact to information assets.
7. Role modelling security practices and be an evangelist for security and risk management practices.
8. Technically mentoring, guiding and supporting other members of the cyber security team
9. Leading proactive intelligence-led threat hunting efforts to identify potential threats, vulnerabilities, and misconfigurations, leveraging internal and vendor-provided information and threat hunting capabilities.
10. Leading Incident Response activities by taking immediate action to contain the impact of a cyber incidents.
11. Providing high level oversight and guidance to Incident Response personnel either internal or via MDR vendor/s ensuring effective response to security events and incidents.
12. Participation in a 24x7 on-call roster via rotation basis.
About you
You are a self-motivated, driven and well experience Cyber Security professional and you are at your best when you are managing challenging priorities in a fast-moving environment. Additionally, we seek:
13. Solid experience within Cyber Security or Information Technology domains with some experience maintaining enterprise cyber technologies/platforms such as CrowdStrike, Qualys, Microsoft Defender, Okta, Splunk, Delinea.
14. Knowledge and experience with frameworks such as: MITRE ATT&CK, D3FEND, Cyber Kill Chain.
15. Experience with SIEMs, Microsoft Azure/Defender, Vulnerability Management Tooling, Sophisticated EDR/XDR Technologies, Threat Intelligence Sources and Services.
16. Knowledge and experience with Threat Intelligence and Incident Response lifecycles and governing frameworks.
17. Experience analysing, gathering intelligence on, and reporting on threat actors, security incidents, and global cyber threat trends.
18. Proven proficiency in business writing with a demonstrated ability to articulate sophisticated cyber threats to non-technical parties.
19. Experience managing and responding to cyber incidents; establishment of war rooms, articulation of severity (risk and impact), effective communication with stakeholders, authoring and socialising incident response briefing documents.
Knowledge of scripting or query language knowledge (particularly Python, PowerShell, SPL or KQL) will be your advantage in this role as will experience working within the financial services industry.
Benefits of working for us
We believe the little extras can make a big difference in supporting your success. That's why we offer great incentives and benefits including:
Extensive range of financial and lifestyle benefits, including (but not limited to):
20. paid parental leave and special leave provisions.
21. Flexibility and hybrid working arrangements.
22. Employee banking benefits and discounted insurances.
23. Career development opportunities, and ongoing training, coaching and support.
24. A dedicated Employee Assistance Program for you and your family to access in times of need.
25. Paid volunteering days and access to a diverse range of community and charitable initiatives.