Cybersecurity Analyst (Identity & Access Management) (20906000720256080)(2)

Job Title : Cybersecurity Analyst (Identity & Access Management)

Position type : Full time

Place of work : Bangkok, Silom

Salary : Negotiable

Working conditions : Normal working hours

Department/Function : Technologies & Operations

Reporting to Title : Head of Operational Security

The company and the mission:

BRED IT (Thailand) Ltd.is a wholly owned subsidiary of the French bank BRED Banque Populaire based out of Paris (BPCE Group).

BRED IT was established in 2008 with the objective to become the IT hub for BRED Group Commercial Banks in South East Asia, Pacific Ocean, and the Horn of Africa areas.

In parallel, BRED IT has expanded its activities since 2011 to also provide remote IT services to Paris Headquarters.

Today, with more than 200 employees, BRED IT fully supports Banque Franco Lao in Laos, BRED Bank Cambodia, BRED Bank Vanuatu, BRED Bank Solomon Islands, BRED Bank Fiji and Banque pour le commerce et l’industrie Mer Rouge (BCIMR) in Djibouti:

BRED IT hosts and manages all layers of BRED International Banks Information Systems: From Infrastructures to Applications (Core Banking, Internet/Mobile Banking, E-Payments…), on a 24x7 basis.

Half of the activity is currently performed for BRED Headquarters, with a focus on Projects (built with Java, COBOL, PHP, DataStage) and Production/Devops.

We are a unique company, thanks to our identity and our history: We place our expertise at the service of BRED Group and develop our activities with an entrepreneurial structure.

By putting BRED group best interests first, it allows us to deliver tailor-made solutions with high value-added.

Main Objectives and Activities

Within the Technologies & Operations department, you will join the Operational Security team to become a key player for the Identity & Access Management (IAM) activities within the BRED International area. Your work will consist in:

• Coordinating and following up the access rights review campaigns with all the BRED International entities.
• Maintaining, improving, and participating in the existing Identity & Access Management activities and workflows (e.g., provisioning process, de-provisioning process, definition of access profiles, and access reviews).
• Monitoring and auditing access controls and user activities.
• Conducting training and awareness programs on IAM best practices, for all the BRED International entities.
• Collaborating with other teams and departments to integrate IAM solutions and best practices withing their existing systems.
• Participating in the deployment of the new Identity & Access Management software solution for the BRED International area, in tight collaboration with all the BRED International entities and BRED HQ.

As part of the Operational Security team, you will also be involved on:

• Preventing, detecting, and responding to cyber threats, identifying areas of concern, and developing action plans to address them.
• Assessing and improving the overall security of the BRED International entities’ Information System (e.g., vulnerability management, systems hardening).
• Participating in compliance-related topics (e.g., regular campaigns to control compliance with BRED Group Information Systems Security Policies).
• Conceptualizing new projects, acting as a gatekeeper for the integrity of the digital architecture and its connection to the site infrastructure.

Education

• Bachelor’s degree (BSc.) in Computer Science, Information Technology, or related field.

Language skills

• Very Good Command of English (both speaking and writing) is mandatory.
• Knowledge of a French language would be a plus.

Experience and Skills

• A minimum of 2 years of experience in the IT or cybersecurity field, working on projects involving multiple stakeholders. An experience in the Banking industry would be a plus.
• An experience in a cybersecurity governance-related position (e.g., risk analyst, compliance analyst, GRC specialist) would be highly regarded.
• An experience managing Identity & Access Management solutions, specifically Sailpoint Identity IQ, would be highly regarded.
• Strong analytical and interpersonal skills are expected, with the ability to synthesize and communicate with non-specialists, regularly.
• The candidate is expected to be highly energetic, proactive, curious, and persistent.
• The candidate is expected to have strong writing and formalization skills.
• A certification such as CISA, CISM, or CISSP would be a plus.

Technical Skills Required

• The candidate is expected to have a good understanding of the Identity & Access Management activities (provisioning, de-provisioning, access review, definition of access profiles) and concepts (e.g., access control models, identity lifecycle, federated identities, SSO).
• The candidate is expected to have a general understanding of security and risk management, asset security, and security assessment concepts.
• The candidate is expected to have strong writing and formalization skills.
• The candidate is expected to be proficient with the Microsoft Office suite, particularly Excel and PowerBI.

What we offer:

• Attractive compensation (includes fixed and performance bonus)
• Hybrid working mode with 2 days work from home per week with flexible working hours
• Additional 10 days of work from anywhere per year
• Work from home allowance for you to buy equipment to facilitate working at home
• Standby and Overtime allowance for Level 2 support employees who are required to work on a 24x7 basis
• Annual leave from 14-25 days
• Provident Fund with competitive company contribution rates starting from 6% up to 12%
• Medical insurance and life insurance covering employee and dependent; spouse and child or children from your first day
• Outpatient Department (OPD) coverage of 2,500THB per visit for 31 visits per year.
• In Patient Department (IPD) coverage.
• Dental Care coverage of 4,000THB per year.
• Eye Care coverage of 5,000THB per year.
• Employee Assistance Program (EAP) providing mental support for colleagues to release stress and alleviate employee life problems.
• Learning and Development benefits.
• Staff wellness program and Monthly activities.
• Annual Health checkup benefits