Apply now »

Senior Analyst - Security Officer

Date:  May 26, 2025
Location: 

India

Office Location:  GIFT City, India

Headquartered in Tokyo, Sumitomo Mitsui Banking Corporation (SMBC) is a leading global financial institution and a core member of Sumitomo Mitsui Financial Group (SMBC Group). Built upon our rich Japanese heritage since 1876, we put our customers first and provide seamless access to, from and within the Asia Pacific region.   SMBC is one of the largest Japanese banks by assets and maintain strong credit ratings across our global integrated network.  We work closely as one SMBC Group to offer personal, corporate and investment banking services to meet the needs of our customers.

 

With sustainability embedded within our strategy and operations, we are committed to creating a society in which today’s generation can enjoy economic prosperity and well-being, and pass it on to future generations.

Scope and Dimension

  • Information Security officer for India branches
  • To perform execution of various security controls and daily tasks
  • To perform various regular periodic processes & security activities (such as system/application log monitoring, user access reviews, data collation /analysis & reporting etc)
  • Not a customer facing role, but interactions required with internal departments such as ITD and other dept end-users

Challenges

  • Timely execution of various security controls with utmost quality.
  • Strict adherence to defined security policy and procedures.
  • Following the work instructions well and ensuring no deviations.
  • To be able to learn quickly in an on-the-job training mode and understand the SMBC work culture well & adapt quickly.

Job Responsibilities

  • He /She shall be responsible for execution of various Information Security controls and processes, daily security monitoring tasks and various weekly /monthly security controls & reporting activities (such as monitoring access logs and security violations, analyzing user access requests and conducting periodic access reviews, data collation /analysis & reporting, managing various security control books and procedural documentations etc.).
  • He /She shall be responsible for execution of controls related to Regulatory & Head Office guidelines and ensuring compliance to those, conducting investigations and reporting of security incidents. He/ She shall be involved in imparting security training and awareness sessions.
  • He /She shall be responsible for execution of  IT /Cyber Security controls for the organization, and should be able to execute and improve the IT Security KRIs and appropriate reporting thereof.
  • He /She shall be responsible to perform IT Security Risk assessments of new & existing processes, projects and applications / infrastructure. 

The incumbent shall be able to continuously analyse bank’s information security program, implementation & execution of defined controls, and work towards sustained compliance to those and improvement of the same. 

Knowledge

  • Detailed understanding of IT Security and Infrastructure practices, operations, standards and frameworks.
  • Good knowledge of performing IT Security risk assessments
  • Good working knowledge in Vulnerability Assessments (VA /PT) and/or System Security Hardening and appropriate remediations
  • Good working knowledge of SIEM tools and /or other Security Monitoring Tools, and handling Security Incidents.
  • Fair understanding / Experience of working on Audits – data collation for Audits etc – would be preferred, but not mandatory.
  • Good working knowledge on MS Office tools like Excel, Powerpoint would be essential. Should be well versed with various functions and data handling techniques in Excel.

Skills

  • Ability to execute / implement Information Security Operations processes, and perform daily / weekly /monthly security controls and tasks.
  • Ability to work on routine security activities as well complex technical security projects and initiatives.
  • Proven track record in IS processes execution and enhancements.

Qualifications

  • Must have completed a Bachelor’s degree (preferably BE / B.Tech.). A Master’s degree in Information Systems will be preferred.
  • Security Certifications such as ISO27001 L.I. / CISA / CISSP will be good to have

Certifications

Security Certifications such as ISO27001 L.I. / CISA / CISSP will be good to have, but not mandatory for a contractual hire.

Apply now »