External Advertisement

KBC Global Services is the engine behind KBC Group – a leading bank-insurance group with over 41,000  talented employees serving more than 12 million clients across Europe.

Since 2021, we have been supporting the digital transformation of KBC Group providing software development, QA, AI and other IT solutions working on a wide range of projects combining classical IT with digital banking. 

What does the function entail in general? 

• Data Leakage Prevention (DLP) must be seen as a set of measure that can be taken to avoid or detect the loss of data.  Data loss can have several causes, but here we focus on the most challenging cause of DLP, namely, the malicious insider, meaning an internal employee tries to send data from the company to the outside world via mail.
• Outgoing email traffic will be checked during a post factum monitoring for data leaks. Based on a number of simple rules, 98% of the mails can be considerated as safe. The remaining  2 % needs a human interpretation and will be  presented to be screened.
• To maximize the privacy of the employees, the monitor will initially see only part of the mail: the sender and recipient will be masked, part of the mail body will be omitted, and all Personal Identifying Information (PII data) and GDPR sensitive info will not be visible.
• Based on this info, the monitor will have to make a first assessment and label the mail: 'false positive' if this mail contains no customer data or other confidential data or belongs to regular mail traffic of that person, 'private' if this is a private mail, and 'suspicious' if this possibly indicates a data breach.
• If part of the mail body is not clear enough to make a decision whether the mail is malicious or not,  the monitor must perform manual steps to have more info visible : the complete body of the mail, the sender and receiver and the attachments. That way, he can assign a definitive label to the mail. Remark that for the monitor, the sensitive info and PII data like name, address, telephone number... will always stay masked.
• Mails labeled as ‘malicious’ will be send to second line, for further evaluating.
   

What do we expect from you?

• We are looking for profiles who are known and used to deal with confidential data and information.
• Together with your monitor colleagues and with the support of the Belgian DLP team, we expect that the monitior is  able to make a good first estimation of the mail to be reviewed based on a process flow to follow. 
• Given the large volume of mails to be monitored, we expect the monitor to be able to make appropriate decisions throughout the day in terms of assigning a label to the mail
• Good command of English
• Higher education in Cybersecurity or knowledge and interest in the field
• Interest in the communication between the bank and the customer is a plus point. 
• The training to evaluate the mails can be done on site with some examples that will be discussed and with a process flow that will help you to label the mail correctly

Recruiter Name

Kristina Stoyanova Lapova