I.Business OverviewThe BNP Paribas Group is one of the largest international banking networks, with a presence in 72 countries. The organisation is an international financial services group, with in excess of 202,000 employees with solid roots in Europe, a significant and growing presence in the Americas as well as a solid and fast growing business in Asia Pacific.The BNP Paribas Group is organised around two main activities: Retail Banking Services and Corporate Institutional Banking (CIB).CIB IT PlatformThe CIB IT Platform for EMEA is responsible to provide IT Services to our Clients ensuring a Digital Market evolution, in a secured and performant environment, and with a reliable quality. This function includes Global Markets Application Production, Local Territory IT Development, the Core Infrastructure environment including Datacentres, Application Production, Security, Architecture as well as elements of the Global Services organisation.II.Context and Role summaryThe Production Security Domain is part of the Corporate Institutional Banking Information Technology Operations (CIB ITO) of BNP Paribas. Within this domain, Network Security (Secprod) has a relevant role IT Security Operations is part of the IT Risk function to ensure the availability, integrity, confidentiality and audit of the data. This encompass the responsibility of the level of the infrastructure by making sure security principles are applied on the network and on the users extended right with a monitoring and control setup in place.The IT Security Operations review and assess the architecture in term of network and applications, approve and implement the rules on the firewalls, and are the security expert involved in the metier and infrastructure projectsIII.Position Key AccountabilitiesThe jobholder will be mainly in charge of maintaining and improving the level of the infrastructure with the management of the firewalls, Socks Proxies and its related components and the architecture review.Specific workflows, change requests and controls are in place for the audit and traceability purposes. His main tasks are, but not limited to:Administration of the firewalls : policies implementations, daily houseclean up, regular rules review for clean up, support for incident,Use of firewalls tools such as Tufin SecureTrack/SecureChange: optimize the usage of tool options; set regular report for daily clean up and rules usage Administration of Socks Proxies for specific internet accessesManage the workload to a reasonable levelPropose Architecture or tools improvements based on daily events noticed.Oncall duty first layer Support IT production teams on security best practiceAssessment of infrastructure and applications; make sure security model and security principles are followed on the application level, on the network level, between inter and intra DMZs.Could work on Team internalIT ProjectsBe up to date with new trend and technologies in Secur