Job Title: Cyber Security Analyst Location: Pune About Barclays Barclays is a British universal bank. We are diversified by business, by different types of customers and clients, and by geography. Our businesses include consumer banking and payments operations around the world, as well as a top-tier, full service, global corporate and investment bank, all of which are supported by our service company which provides technology, operations and functional services across the Group. Risk and Control Objective Take ownership for managing risk and strengthening controls in relation to the work you do. Working Flexibly We're committed to providing a supportive and inclusive culture and environment for you to work in. This environment recognises and supports ways to balance your personal needs, alongside the professional needs of our business. Providing the opportunity for all our employees, globally to work flexibly empowers each of us to work in a way that suits our lives as well as enabling us to better service our customers' and clients' needs. Whether you have family commitments or you're a carer, or whether you need study time or wish to pursue personal interests, our approach to working flexibly is designed to help you balance your life. If you would like some flexibility, then please discuss this with the hiring manager, and your request will be reviewed subject to business needs Hybrid Working Structured Hybrid Role At Barclays, we offer a hybrid working experience that blends the positives of working alongside colleagues at our onsite locations, together with working from home. We have a structured approach where colleagues work at an onsite location on fixed, 'anchor', days of the week, for a minimum of two days a week or more, as set by the business area (or nearest equivalent if working part-time hours). Please discuss the working pattern requirements for the role you are applying for with the hiring manager. Please note that as we continue to embed our hybrid working environment, we remain in a test and learn phase, which means that working arrangements may be subject to change on reasonable notice to ensure we meet the needs of our business. Introduction To Support The CISO Leadership Team In Ensuring That GTIS Is Compliant With Provisioning And Sustaining a Secure Operating Environment As Outlined In Security Standards Manage health of vulnerability compliance indicators and ensure that remediation activity is undertaken to address any areas of non-compliance identified Working with Platform leads, drive identified initiatives to enhance process and tooling to improve GTIS compliance with the Vulnerability Management standard and speed of vulnerability remediation To assist with the management of Vulnerability Management controls, attending all appropriate governance meetings and producing regular coverage / control effectiveness reports. Support the adoption and execution of the Bank's Vulnerability Management processes within GTIS and ensure consistent adoption and adherence to CSO standards and policies. Participate in relevant CSO, GTIS and Controls forums and contribute to standards Support the assessment of risk decisions relating to Vulnerability Management controls. Provide timely, accurate and clear advice based on evidence and accurate data What will you be doing Maintain control posture & control remediation for ensuring that GTIS Operates a Secure environment Ensure oversight of control effectiveness of all related Vulnerability Management controls within GTIS to the required control level Identify any GTIS control gaps or deficiencies and ensure these are addressed within an acceptable time frame Align GTIS remediation initiatives and monitor these to ensure improvements to control posture Educate teams across GTIS on the control requirement and procedures to be adopted Undertake ongoing risk assessment, review, acceptance of GTIS controls for adhering to Vulnerability Management Standards Review relevant GTIS vulnerability control issues and assess implications and agree risk treatment within GTIS including identification of plans to address risk Ensure that all issues relating to the Vulnerability Management standard are addressed in a timely manner and monitor overall level of open issues Provide input to Control requirements and Standards assessment for Vulnerability Management Participate in CSO Standards Committees /Forums and provide input to control requirements Provide feedback on the impact of changes to standards and controls Based on changes to Standards, identify remediation requirements within GTIS and ensure these are planned and executed Stakeholder relationships Act as the interface within GTIS on issues relating to Vulnerability Management and provide the required clarification and interface back into CSO team Build positive relationships and liaise collaboratively across teams to achieve security objectives Security program and Security Requirements Contribute to the delivery of GTIS components for all related Security improvement programs for improving Vulnerability Management processes and controls Collaborate with CSO on security projects to impacting Vulnerability Management Audit & Regulatory assessments Support the assessment of GTIS environments and acts as a point of reference to audit, completion of regulatory assessment or questionnaires relating to Vulnerability Management Education & Awareness Champion ongoing awareness on Security and understanding of Security Strategy within GTIS Ensure control requirements for Vulnerability Management are understood Act as a positive influencer on CSO objectives within GTIS What We're Looking For Expertise Demonstrable technical support experience of one or more of the following. Microsoft Desktop / Server, UNIX/LINUX, Database, Networks, Middleware Ability to analyse large volumes of data and identify trends and potential problems. Identify, evaluate, assess the impact of issues/improvements and make recommendations for their resolution. Drive agreed resolutions to completion. Knowledge Understanding of cyber security threats and the tools used to detect vulnerable infrastructure. Understanding of methods used to remediate identified vulnerabilities and tools to deploy remediation payloads. Working knowledge of Vulnerability Management Security standards, controls and best practice for their implementation. Broad understanding of Infrastructure Services strategy and business direction Knowledge of Cloud security would be a benefit but not essential Any Graduate Skills That Will Help You In The Role Demonstrable technical support experience of one or more of the following. Microsoft Desktop / Server, UNIX/LINUX, Database, Networks, Middleware. Data analysis and reporting. Excellent communication skills. Excellent organisational skills. Technical Risk and Risk Management Understanding of cyber security threats and the tools used to mitigate / remediate these The candidate will preferably be educated to a degree level or above in an Information Security related discipline. CISA, CISM, CISSP, ISO27001 or equivalent. Ability to work in a constantly changing and fast paced environment Where will you be working Pune Be More at Barclays At Barclays, each day is about being more - as a professional, and as a person. 'Be More @ Barclays' represents our core promise to all current and future employees. It's the characteristic that we want to be associated with as an employer, and at the heart of every employee experience. We empower our colleagues to Be More Globally Connected, working on international projects that improve the way millions of customers handle their finances. Be More Inspired by working alongside the most talented people in the industry, and delivering imaginative new solutions that are redefining the future of finance. Be More Impactful by having the opportunity to work on cutting-edge projects, and Be More Valued for who you are. Interested and want to know more about Barclays Visit home.barclays/who-we-are/ for more details. Purpose, Values and Mindset We deploy finance responsibly to support people and businesses, acting with empathy and integrity, championing innovation and sustainability, for the common good and the long term. Our values underpin everything we do: Respect, Integrity, Service, Excellence and Stewardship. Respect We harness the power of diversity and inclusion in our business, trust those we work with, and value everyone's contribution. Integrity We operate with honesty, transparency and fairness in all we do. Service We act with empathy and humility, putting the people and businesses we serve at the centre of what we do. Excellence We champion innovation, and use our energy, expertise and resources to make a positive difference. Stewardship We prize sustainability, and are passionate about leaving things better than we found them. Our Mindset shapes how we take action, living by our Values, driven by our Purpose, always with our customers and clients at the heart of what we do; our Mindset is to Empower, Challenge and Drive. Empower Trust and support each other to deliver. Make decisions with those closest to the topic. Include diverse perspectives. Celebrate success and learn from failure. Challenge Question whether things can be done better. Use insights based on data to inform decisions. Be curious about how we can adapt and improve. Speak up and be open to alternative viewpoints. Drive Focus on outcomes. Deliver with pace. Be passionate and ambitious about what we do. Take personal responsibility. Actively build collaborative relationships to get things done.
