IT Risk

hace 1 mes

Madrid, España BNP Paribas Corporate & Institutional Banking A tiempo completo

BNP Paribas is an international bank with leading positions in the European market. It is present in 74 countries and employs more than 192,000 people, 146,000 of whom are in Europe. The Group holds key positions in its three main areas of activity: Domestic Markets and International Financial Services (whose retail banking and financial services network is part of Retail Banking & Services), as well as Corporate & Institutional Banking, which offers services to corporate and institutional clients. The Group supports its customers (individuals, entrepreneurs, SMEs, large companies and institutions) to help them carrying out their projects by providing financing, investment, savings and insurance services.
In Europe, the Group has four domestic markets (Belgium, France, Italy and Luxembourg) and BNP Paribas Personal Finance is number one in retail financing in Europe.
BNP Paribas is developing its integrated retail banking model in the Mediterranean countries, Turkey, Eastern Europe and has an important network on the US West Coast. In both its Corporate & Institutional Banking and International Financial Services activities, BNP Paribas has leading positions in Europe, a strong presence in the Americas and a solid and growing network in the Asia-Pacific region.

The CIB IT Platform for EMEA is responsible to provide IT Services to our Clients ensuring a Digital Market evolution, in a secured and performant environment, and with a reliable quality. This function includes Global Markets Application Production, Local Territory IT Development, the Core Infrastructure environment including Datacentres, Application Production, Security, Architecture as well as elements of the Global Services organisation.

BNP Paribas IT teams are providing infrastructure, development and production support services to all applications used worldwide by all business lines. There is a great variety of technologies and infrastructures from legacy systems to cutting edge Cloud technologies.

Within BNP Paribas Group IT, the filiere Production Security is in charge of answering operationally to the challenges of cybersecurity with an end-to-end vision and consistently across the Bank.

MISSION

We are looking for an IT Risk & Cyber Security Analyst in charge of assessing Cyber risks on the IT production perimeter for outsourced activities as well as a contribution of Cyber expertise in support of the CISO.

RESPONSIBILITIES

The main activities and missions will be:
• In charge of CISO activities related to Third Parties Risk Management on IT production perimeter:

o Step 1 - Cyber Risk Identification & Assessment:
§ Identify and assess the ICT and Cyber Security Risk of the activity in a context of an externalization.
§ Initiate the overall process which includes preliminary risk identification, analysis and evaluation.
§ Define / recommend activities that are adequate to the risk level to perform before the validation committee.
§ Identify ICT and cyber security need.

o Step 2 – IT Risk & Cyber Security Due Diligence:
§ Assess the compliance of the proposal of the service provided by the suppliers to the ICT applicable requirements for protecting BNP Paribas
§ Select the most suitable supplier among the shortlisted ones.

o Step 3 – Contract Negotiation
§ Formalize the applicable conditions to the service provided and the Supplier's commitment to implement agreed Cyber Security measures.

• Proposal and validation of evolutions in the hardening rules of the security of the products used within the Group:
o Assist product owner in writing hardening rules
o Review hardening rules published previously
o Align hardening rules with other production security teams
o Coordinate the implementation of control rules
• Review and validation of the Asset Sensitivity Cards of ITGP applications
o Analyze and assess the Asset Classification from a Security perspectives
o Review the answers of Security and IT Architecture questionnaire
o Add Key requirements from Group BNPP Security framework to comply with

Technical & Behavioral Competencies
• Expertise in computer security standards and frameworks and the main IT & security risk frameworks (NIST, CIS, ISO27001, EBIOS, etc.),
• Expertise in the main types of cybersecurity incidents and how to protect against them.
• Technical expertise in IT/Cloud infrastructures, usual products and technologies
• Critical mind, good analytical and synthesis skills.
• Rigor, curiosity, autonomy, involvement, availability and taste for teamwork.
• Ability to listen and communicate to convince, adapting to one's interlocutors.
• Ability to take a step back and formalize needs, write synthesis documents and report on work.
• Animation of transversal working groups.
• Very good command of English (written/spoken).
• French speaking will be appreciated.

REQUIREMENTS

Training:

Education Level: Master Degree or equivalent

Experience
At least 5 years

Languages
 •  English: fluent
 •  French: optional.

Skills
•  Ability to collaborate / Teamwork
•  Analytical Ability 
 •  Ability to set up relevant performance indicators
 •  Ability to inspire others & generate people's commitment
 •  Analytical Ability

BENEFITS
• Training programs, career plans and internal mobility opportunities, national and international thanks to our presence in different countries.
• Diversity and Inclusion Committee that ensures an inclusive work environment. In recent years, several employee communities have been created to organize diversity and inclusion awareness actions (PRIDE, We Generations and MixCity).
• Corporate volunteering program (1 Million Hours 2 Help) in which employees can dedicate time out of their working hours to volunteer activities.
• Flexible compensation plan
• Hybrid telecommuting model (50%)
• 31 vacation days

Diversity and Inclusion commitment

BNP Paribas Group in Spain is an equal opportunity employer and proud to provide equal employment opportunity to all job seekers. We are actively committed to ensuring that no individual is discriminated against on the grounds of age, disability, gender reassignment, marriage or civil partnership status, pregnancy and maternity/paternity, race, religion or belief, sex or sexual orientation. Equity and diversity are at the core of our recruitment policy because we believe that they foster creativity and efficiency, which in turn increase performance and productivity. We strive to reflect the society we live in, while keeping with the image of our clients.

  • It Risk And Compliance Specialist

    hace 2 semanas

    Madrid, España Sdi Digital Group A tiempo completo

    Description As IT Risk & Compliance Specialist, your mission is to keep key IT risks away from Hitachi Energy. You are responsible for IT risk monitoring and reporting and IT risk & compliance assurance for the whole organization. You facilitate effective IT risk & compliance decisions by defining, maintaining, communicating and promoting IT risks &...

  • It Risk And Compliance Specialist

    hace 2 semanas

    Madrid, España Sdi Digital Group A tiempo completo

    Description As IT Risk & Compliance Specialist, your mission is to keep key IT risks away from Hitachi Energy. You are responsible for IT risk monitoring and reporting and IT risk & compliance assurance for the whole organization. You facilitate effective IT risk & compliance decisions by defining, maintaining, communicating and promoting IT risks &...

  • IT Risk and Compliance Specialist

    hace 4 semanas

    Madrid, España HITACHI ENERGY SERVICES SP. Z O.O. A tiempo completo

    Description : As IT Risk & Compliance Specialist, your mission is to keep key IT risks away from Hitachi Energy. You are responsible for IT risk monitoring and reporting and IT risk & compliance assurance for the whole organization. You facilitate effective IT risk & compliance decisions by defining, maintaining, communicating and promoting IT risks &...

  • IT Risk Champion Service

    hace 4 semanas

    Madrid, España Devoteam Spain A tiempo completo

    Descripción de la empresa With nearly 10K employees worldwide, we support companies in their digital transformation. We imagine and realise their ambitions through the infinite possibilities of digital platforms, to change their culture and way of working, and create value in their organisations. Present in 18 countries in Europe and the Middle East and...

  • IT Risk Officer

    hace 4 semanas

    Madrid, España Apollo Solutions A tiempo completo

    A great opportunity for a Senior IT Risk / IT Auditor with experience within Cybersecurity to join a leading bank in Madrid, Spain. This would be great for anyone with experience within IT Audit / IT Risk who also has a background in Cybersecurity within a Financial Services Organisation. **You will be part of the team responsible for**: Conducting...

  • It Risk And Compliance Specialist

    hace 3 semanas

    Madrid, España Hitachi Automotive Systems Americas, Inc. A tiempo completo

    IT Risk and Compliance Specialist page is loaded IT Risk and Compliance Specialist Apply locations Madrid, Spain time type Full time posted on Posted 2 Days Ago job requisition id R0028491 Location: Madrid, SpainJob ID: R0028491Date Posted: 2023-08-01Company Name: HITACHI ENERGY SERVICES SP. Z O.O.Profession (Job Category): General ManagementJob...

  • IT Risk Analyst

    hace 6 días

    Madrid, España Sopra Steria A tiempo completo

    En Sopra Steria trabajamos para hacer posible la transformación digital de nuestros clientes y para conseguirlo necesitamos seguir creciendo y sumando gracias a personas como tú. Con presencia en más de 26 países y con más de 47.000 colaboradores, nuestra misión es unir talento y proyectos, tratando de ayudarte a que encuentres un lugar en el que...

  • Technology Risk Manager

    hace 6 días

    Madrid, España Apollo Solutions A tiempo completo

    IT Risk Manager (Operations Technology) **Location**: Madrid, Spain (Hybrid Working) **Base Salary**: €60K - €65K Benefits and Bonus A great opportunity of a IT Risk Manager to join a leading Banking Organisation based in Madrid, Spain. **As an IT Risk Manager, you will be responsible for**: Assisting in the review, analysis and challenge of...

  • Head of IT Risk

    hace 4 semanas

    Madrid, España Allfunds Bank A tiempo completo

    **Location**: - Madrid_ Type of job vacancy: - Permanent Employee_ No. Job vacancies: - 1_ **About us** Looking for your next challenge? Allfunds (AMS:ALLFG) is a fast-paced, dynamic, Wealthtech leader with 16 offices around the globe and our employees are the best at what they do. We have a relentless passion for quality and a drive to keep ahead of...

  • Senior IT Compliance and Risk Officer

    hace 4 semanas

    Madrid, España SIX A tiempo completo

    What You Will Do being the single point of contact for IT GRC topics and take a coordinator and interface role including training and awareness for line management, SME, projects and GRC initiatives support the operational teams in actively identifying, manage and reporting risks plan and mange IT audits and assessments together with the operational teams...

  • IT Risk Senior Assessor

    hace 6 días

    Madrid, España BNP Paribas A tiempo completo

    BNP Paribas is an international bank with leading positions in the European market. It is present in 74 countries and employs more than 192,000 people, 146,000 of whom are in Europe. The Group holds key positions in its three main areas of activity: Domestic Markets and International Financial Services (whose retail banking and financial services network is...

  • IT Risk

    hace 4 semanas

    Madrid, España BNP Paribas A tiempo completo

    BNP Paribas is an international bank with leading positions in the European market. It is present in 74 countries and employs more than 192,000 people, 146,000 of whom are in Europe. The Group holds key positions in its three main areas of activity: Domestic Markets and International Financial Services (whose retail banking and financial services network is...

  • Risk Analyst

    hace 2 semanas

    Madrid, España Hitachi Vantara Corporation A tiempo completo

    Description As a Risk Analyst, you will be responsible for supporting a Hitachi Energy Enterprise Risk Manager inmanaging cross-organizational risk themes through-out its life cycle, coordinating with other risk functionsand improving organizational resilience. This position reports to the Hitachi Energy Enterprise Risk Manager. Your responsibilities:...

  • Information Security

    hace 3 semanas

    Madrid, España Verisure A tiempo completo

    Do you want to have an impact every day by making people safe - and bringing them peace of mind? Interested in being part of a dedicated, passionate team which believes that security is a human right? Looking to join a company where innovation and technology are at the heart of its solutions?   What we look for Highly motivated individuals with...

  • Information Security

    hace 3 semanas

    Madrid, España Verisure Sàrl A tiempo completo

    Do you want to have an impact every day by making people safe - and bringing them peace of mind? Interested in being part of a dedicated, passionate team which believes that security is a human right? Looking to join a company where innovation and technology are at the heart of its solutions?   What we look for Highly motivated individuals with...

  • Risk Analyst

    hace 3 semanas

    Madrid, España HITACHI ENERGY ITALY S.P.A. A tiempo completo

    Description : As a Risk Analyst, you will be responsible for supporting a Hitachi Energy Enterprise Risk Manager in managing cross-organizational risk themes through-out its life cycle, coordinating with other risk functions and improving organizational resilience. This position reports to the Hitachi Energy Enterprise Risk Manager. Your...

  • Incident & Risk Manager

    hace 4 semanas

    Madrid, España Equifax A tiempo completo

    We are looking for an experienced Incident & Risk Manager who will be leading our Incident and Risk operation. **What you’ll do** - Liaising with internal teams to identity, analyze and execute an appropriate response to business indents. - Ensure that actions and findings are tracked and documented during and after an incident. - Brief and engage...

  • Incident & Risk Manager

    hace 4 días

    Madrid, España Equifax, Inc. A tiempo completo

    We are looking for an experienced Incident & Risk Manager who will be leading our Incident and Risk operation. What you'll do Liaising with internal teams to identity, analyze and execute an appropriate response to business indents. Ensure that actions and findings are tracked and documented during and after an incident. Brief and engage stakeholders...

  • Risk Esg Analyst

    hace 4 semanas

    Madrid, España BNP Paribas A tiempo completo

    **GROUP BNP PARIBAS** "BNP Paribas is an international bank with leading positions in the European market. It is present in 74 countries and employs more than 192,000 people, 146,000 of whom are in Europe. The Group holds key positions in its three main areas of activity: Domestic Markets and International Financial Services (whose retail banking and...

  • IT Audit Manager

    hace 6 días

    Madrid, España Apollo Solutions A tiempo completo

    **Job Title: IT Risk Manager - Cyber & Payment Systems** **Salary: €70K - €80K + Benefits** **Hybrid** **As an IT Risk Manager, you will be responsible for**: - Lead independent testing engagements with accountability and responsibility to ensure that the engagement team delivers within agreed timelines. - Improving the effectiveness of the IT Control...