SIEM Specialist, Information and Cyber Security (ICS)

Summary about this job

Detail information about job SIEM Specialist, Information and Cyber Security (ICS). Terms and conditions vacancy

• Do you have a strong understanding of IT security concepts?
• Build, create, integrate and maintain SIEM processes
• Grow your career within this collaborative and highly passionate team!

At BNZ, we're at the forefront of developments that will change the way people think about banking. As we embark on our transformation programme, an accelerated period of change is underway, and our CSOC team is key to supporting the security of BNZ's business information and systems.

Our Cyber Security Operations Centre (CSOC) is looking for a talented and passionate Security Information and Event Management (SIEM) Specialist to manage Security Intelligence and Security Information and Event Management (SIEM) and CSOC ecosystems. This is a rare opportunity to join a highly passionate and well established team in a fast-paced environment with loads of fantastic development opportunities.

Our Information and Cyber Security (ICS) department provide a wide range of critical services for BNZ that relate to the protection of our most valuable asset - our customer data. This role plays a significant part in our service offering. As the SIEM Specialist, you will build, create, integrate and maintain SIEM processes, monitoring, alerting and manage configuration, accounts, log sources and updates.

Some of the things you'll be doing:

• Develop and maintain processes for acquiring and integrating data sources within the CSOC intelligence ecosystem
• Build and maintain critical incident escalation rules, alerts and automation for rapid response
• Implement continuous enhancements and automation of threat intelligence into the ecosystem to provide context for incident alerts and rapid triage
• Monitor the health and performance of SIEM system and CSOC intelligence ecosystem and create early warning alerts and operations procedures for response
• Coach and mentor CSOC team members and maintain succession plans to eliminate 'key person' risk for SIEM
• Manage ingestion of logs, flows and security and network events and tagging of critical systems to provide a focused risk based priority and response for incidents
• Interpret, investigate, escalate and report on critical security incidents

What we're looking for:

• Experience in information technology across a wide range of technical functions
• Proven working knowledge and administration of security technologies such as IPS, IDS, DLP, vulnerability scanning, antivirus, advanced threat analytics and machine learning and encryption technologies
• Expert in administering and monitoring and setting logging patterns for variety of operating systems, databases and applications
• Strong understanding of IT security concepts, attack life-cycles and offensive response to threats
• Security monitoring operator experience, defining and building correlation rules and integrating sources to enrich and provide context to alerts
• Ability to script, code and develop solutions in languages such as Java/ JavaScript, Python, PHP, PowerShell, HTML)

Experience in the following will be highly desirable:

• Experience working in a financial institution
• In-depth experience in SIEM management, workflow and investigations
• Integration of systems using API technologies
• Enterprise Security Incident Event Management (SIEM) advanced concepts
• UNIX, AIX and Solaris, Linux, Windows Server operating systems, security operations centre/ information protection centre/ computer incident response centre
• Mentoring/ training of others

We're committed to creating an energising workplace for our people and offer a variety of different flexible working arrangements to enable us to be our best inside and outside of work, while still delivering for our customers. Talk to us about how we can make this role work for you.

Some of our other benefits include:

• great staff banking benefits
• generous leave entitlements - including flexible sick leave and domestic leave
• option to purchase an additional one to two weeks annual leave
• discretionary performance incentive schemes
• flexible working options.

Next steps

We're reimagining banking and the way we hire great talent. If you're invited to complete a digital interview as the next stage of your application we'd love you to embrace it. Digital interviews allow more people the opportunity to demonstrate their abilities to the hiring manager in a new and innovative way giving you a better chance of securing your dream role. Relax, be yourself and don't worry, we all feel a bit awkward in front of the camera.

If you would like to know more about Life at BNZ and how you can help re imagine banking for our customers, please visit www.bnz.careers.co.nz or click the 'apply now' button to submit your confidential application.

Applications close Monday, 30 July 2018.