Job Description

About BNP Paribas:

BNP Paribas is a leading bank in Europe with an international reach. It has a presence in 72 countries, with more than 202,600 employees, of which almost 155,000 in Europe. The Group has key positions in its three main activities: Domestic Markets and International Financial Services (whose retail-banking networks and financial services are covered by Retail Banking & Services) and Corporate & Institutional Banking, which serves two client franchises: corporate clients and institutional investors. The Group helps all its clients (individuals, community associations, entrepreneurs, SMEs, corporates and institutional clients) to realize their projects through solutions spanning financing, investment, savings and protection insurance.

In Europe, the Group has four domestic markets (Belgium, France, Italy and Luxembourg) and BNP Paribas Personal Finance is the European leader in consumer lending.

BNP Paribas is rolling out its integrated retail-banking model in Mediterranean countries, in Turkey, in Eastern Europe and a large network in the western part of the United States. In its Corporate & Institutional Banking and International Financial Services activities, BNP Paribas also enjoys top positions in Europe, a strong presence in the Americas as well as a solid and fast-growing business in Asia-Pacific.

www.cib.bnpparibas.com

Business Overview:

The Cyber Threat Intelligence (CTI) Team specializes in the collection and analysis of information pertaining to the cyber threat landscape and assesses potential impact to the Firm. Cyber Threat Intelligence, obtained from internal and external sources, is collected, shared, analyzed, and leveraged across the firm's infrastructure.

The Cyber Threat Intelligence (CTI) Team aims to support and enhance the BNP Paribas Americas security posture by providing situational awareness and a thorough understanding of the cyber threat landscape through the delivery of timely and actionable intelligence. The team regularly produces intelligence analysis for its defined stakeholders and contributes to detection efforts, preventative security controls and response to cyber events. By combining technical expertise with a thorough understanding of the geopolitical and strategic threat landscape, the team ensures depth and breadth of coverage of cyber threats and events, and contextualizes them to help determine their relevance to the Firm.

Candidate Success Factors:

Candidates will be measured on the following four performance drivers which will dictate how individual impact is considered on the Americas platform:

* Results and Impact
* Leadership and Collaboration
* Client, Customer and Stakeholder Focus
* Compliance Culture and Conduct

Responsibilities:

* Coordinate and collaborate with Cyber Threat Intelligence and Incident Response Teams in other regions, and entities.
* Establish and maintain strategic relationships with local and federal government agencies as well as industry organizations to establish information sharing capabilities.
* Triage tactical, technical reporting in real time to determine its accuracy and identify threats of potential interest.
* Monitor cyber threat intelligence from multiple sources for actionable indicators/information.
* Evaluate threat intelligence for credibility, relevance, and exposure.
* Maintain and correlate detailed threat actor profiles/groups on adversaries of interest/relevance to the firm, covering tactics, techniques and procedures (TTPs), intent, goals and strategic objectives that could support defensive mitigation and hardening efforts.
* Produce Security Alerts, bulletins, technical notifications and vulnerability notes, in a brief and human readable form, regarding current vulnerabilities, exploits, and other security issues.
* Perform other cyber intelligence-related duties, as assigned and respond to ad-hoc requests as required.
* Maintain knowledge of the threat landscape by monitoring internal and external intelligence sources to assist in the creation of quarterly threat landscape briefings.
* Participate in the development of the threat modeling processes and methodologies that will fully test the firm's resiliency to attacks across businesses, platforms and applications.
* Track actor groups (nation-state, criminal, hacktivist and terrorist), incidents and campaigns.

Minimum Required Qualifications

* Strong problem solving and analytical skills, verbal and written communication skills.
* Excellent interpersonal skills and the ability to work effectively with others as a team.
* Ability to work independently and effectively managing and prioritizing multiple tasks.
* Solid understanding of IT security concepts with an emphasis on Security and Risk Assessment.
* Knowledge and experience with law and regulations surrounding the financial services sector.
* Advanced user of Microsoft Excel, Microsoft Word and Microsoft PowerPoint.
* Excellent understanding of networking concepts and Information Security, including emerging threats and attack methodologies.
* Excellent written and verbal communication skills.
* Demonstrable understanding of Information Technology principles, including software, hardware, and networking.
* A broad understanding of all areas of banking and the threats faced by the financial sector.
* Understanding of the Threat Intelligence Lifecycle.
* Experience working with the Kill Chain, Diamond Model of Intrusion, Advanced Persistent Threat, Third Party Risks, Cybercrime, Hacktivism, Cyber Fraud, Malware and Ransomware, Mobile Threats, Social Engineering, Insider Threats, Incident Response, Threat Intelligence, and Host & Network-based security and similar frameworks and concepts.

Preferred Qualifications:

* Bachelor degree in Computer Science or Engineering (relevant concentration preferred) with 5-10+ years of experience preferably within an intelligence function in the financial sector; Familiarity with intelligence cycle; or a Graduate Degree (Masters) in MIS.
* Information Security certifications (e.g., CISSP, CISA, CISM, SANS coursework).
* SharePoint administration and document management.
* Understanding of the Tactics, Techniques, and Procedures of cyber threat actors.
* Understanding of geo-political dynamics and how they affect the wider cyber threat landscape.
* Experience working with the Kill Chain, Diamond Model of Intrusion, Advanced Persistent Threat, Third Party Risks, Cybercrime, Hacktivism, Cyber Fraud, Malware and Ransomware, Mobile Threats, Social Engineering, Insider Threats, Incident Response, Threat Intelligence, and Host & Network-based security and similar frameworks and concepts.
* Excellent writing and presentation skills to communicate findings and recommendations to different audiences and stakeholders.
* Experience conducting intelligence investigations and familiarity with investigative tools, including Threat Intelligence Platforms (TIPs).
* Established relationships or experience with industry organizations.

FINRA Registrations Required:

N/A

BNP Paribas is committed to providing a work environment that fosters diversity, inclusion, and equal employment opportunity without regard to race, color, gender, age, creed, sex, religion, national origin, disability (physical or mental), marital status, citizenship, ancestry, sexual orientation, gender identity and gender expression, or any other legally protected status.