BNP Paribas

Computer Security Incident Response Analyst

BNP Paribas
Full Time
Junior (less than 3 years)

Job Description

Computer Security Incident Response Analyst

Location: HK-Hong Kong (HK)-Hong Kong

Position Purpose
  • The role will conduct investigation and computer forensic for all the business entities in BNPP APAC.
  • Successful candidate would be able to demonstrate significant understanding of Cyber security and have experience of assessment in large organizations with experience in financial services.


Direct Responsibilities

  • Conduct analyses related to forensic investigations, cybercrimes, and/or cyberattacks.
  • Analyzing security logs, monitoring logs, firewall logs and intrusion prevention system logs.
  • Perform threat management and protection against threats including malware, phishing, hacking and DDoS
  • Investigation and recommendations to identify gaps from the incident.
  • Manage projects related to cyber security investigation and forensic examination.
  • Review and Update Incident Management Procedure.
  • Develop and Update operational playbook e.g. DDOS, ransomware
  • Prepare investigation report and KPI indicator on security incidents.
  • Co-ordinate and liaise with global, regional and local incident response team.
  • Co-ordinate with internal security teams for incident response.
  • Assist with routine compliance and audit functions to ensure requirements are satisfied.
  • Provide input to the department’s management for enhancing the information security strategy.
  • Stay current on security industry trends, mitigation techniques, security technologies and new and evolving threats to the organization by attending conferences, networking with peers and other education opportunities. 

Contributing Responsibilities

  • Contribute to the Permanent Control framework for implementation of policies and procedures in day-to-day business activities, such as Control Plan
  • Comply with regulatory requirements and internal guidelines.
  • Contribute to the reporting of all incidents according to the Incident Management System.

Technical Skills

  • Audit
  • Compliance
  • Information Security
  • IT Security
  • Project Management