ICT Operational Risk Manager
Encontrado en: beBee S ES - hace 4 semanas
RISK ORM (RISK Operational Risk Management) is part of the Group BNP Paribas second line of defence (2LoD). It belongs to the Risk Function (RISK) of BNP Paribas and is under the responsibility of the Group Chief Operational Risk Officer.
The department has responsibility for independently challenging and supervising the Operational Risk Management (ORM) of Group BNP Paribas activities on a worldwide scope. This is achieved by framing operational risk methodology for Group BNP Paribas, disseminating of a risk management culture across the Group, assessing the adequacy of the ORM set-up, controlling effectiveness of the Group Entities control environment, contributing to the detection, anticipation and response to risks, alerting BNP Paribas Management and RISK stakeholders on any significant risk issue and providing a consolidated view on Group Entities operational risk profile.
As the second line of defence (2LoD) for Information and Communications Technology (ICT) risks (which are operational risks), RISK ORM has the responsibility to identify the key technology risks of the Bank and to influence Businesses, Functions and technology partners to make sound risk management decisions, working with the main Businesses and Functions teams such IT Operations, Cloud, Cybersecurity, Data, Finance, etc.
ROLE AND RESPONSIBILITIES:
Integrated in the Global Iberian Centre of Excellence, the candidate will be responsible for supporting RISK ORM management in the development and implementation of the ICT risk management framework.
As ICT Operational Risk Officer, the candidate will be responsible to perform the following main missions, assessing IT risks and providing advice to the BNP Paribas business lines (BL):
Framework: to assist in the review, analysis and challenge of the ICT risk management framework and in particular the norms & standards, consistently with RISK ORM guidelines, and validate any exemption to these norms & standards, namely the ICT Risk and Control plans definition.
Risk Identification & Assessment: to challenge and verify on the first line of defence (1LoD) risk identification, ensure the consistency of potential incidents quantification, conduct independent ICT risk assessment (incident review, post mortem analysis), and validate closure of permanent control actions (controls implemented by 1LoD).
Risk Treatment & Decision: to assist in overseeing the risk treatment process (risk acceptance, risk transfer, risk remediation) performed by the BNP Paribas Entities and their Departments, jointly participate to co-decision Committees (e.g. Change Management, New Activity, New Process, Vendor, Emergent Technologies) and/or share opinion on the ICT risks exposure with RISK ORM and 1LoD Management. Oversight the action plans defined to mitigate risk and to implement the Internal Audit, Regulators and other IT/Security authorities conclusions and recommendations.
Testing: to conduct independent testing and challenge on 1LoD (IT and operations) controls and oversight/perform 2LOD tests/vulnerability scans when required.
Plan: to assist to identify the main ICT risks priorities, clarify/ define the approach to perform the work aligned with BNP Paribas framework, manage relationship with stakeholders, and ensure deliverables agreed.
Risk Reporting, Monitoring & Alert: to support BNP Paribas Management and the RISK stakeholders on incidents and crisis management (e.g. security events, data leakage); to alert on critical points for attention to be raised to RISK Management.
Awareness / Training / Animation: to assist in promoting and driving awareness on ICT risks; to assist in organising risk meetings, forums and committees with community members. QUALIFICATIONS:
Bachelor degree in Information Technology, Information Security, Business or Risk Management (or equivalent professional qualification) Industry certifications (e.g. CISA, CRISK, COBIT) or willingness to obtain the same Good level of English is essential Multilingual capability is a plus (French is preferred, other language is a plus) SKILLS: Previous experience in IT Governance, IT Administration and IT Operations is a plus Good knowledge of ICT risks, IT Control, Information Security, Business Continuity, IT operations and IT Audit and assessment methodologies and concepts Demonstrated experience in providing complex technology risk assessment in regulated sectors (preferably financial services) including technology upgrades, decommissioning and obsolescence management Excellent written and verbal communication skills Proven ability to manage issues through to resolution; skilled at making judgment calls Ability to successfully multitask and complete difficult assignments within deadlines which may have short lead times Works iteratively, delivering quickly and frequently to produce high quality documents and outputs which require little to no reworkSPECIFIC REQUIREMENTS
7+ experience specifically in technology risk assessments Team player – focus on the success of the whole team. Working well both with others, as well as individually Excellent stakeholder management skills Experience in a Technology Risk, Information Security or an ICT Assessment and audit role Motivated to pro-actively collaborate, challenge and contribute to promote a high qualified team of experts in several domains and with relevant previous experience in BNP Paribas, Finance Sector, or Consulting firms Flexibility to work in a global context and occasional travel Ability to see the stakeholder perspective, i.e. from a business and operational point of view, the most secure solution is not always workable or realistic considering costs and benefits Adapting personal approach to suit situations, individuals, groups and cultures. Is flexible in relation to getting the job done Taking accountability for their actions and be open and honest when things have gone wrong, and celebrating successes when things have gone wellCONDUCT
Be a role model, supporting and fostering a culture of good conduct Demonstrate proactivity, transparency and accountability for identifying and managing conduct risks Consider the implications of your actions on colleagues, partners and clients before making decisions, and escalate issues to your manager when unsure-
Technology Risk Manager
hace 6 días
Madrid, España Apollo Solutions A tiempo completoIT Risk Manager (Technology) **Location**: Madrid, Spain (Hybrid Working) **Base Salary**: â¬65K - â¬70K Benefits and Bonus A great opportunity of a IT Risk Manager to join a leading Banking Organisation based in Madrid, Spain. **As an IT Risk Manager, you will be responsible for**: Assisting in the review, analysis and challenge of the ICT risk...
-
Esg Risk Manager – Management Consulting
hace 4 días
Madrid, España Paritas Recruitment - Risk A tiempo completoK Posted byManager – Risk Management & Quantitative AnalyticsA dynamic and progressive Consulting firm are seeking a bilingual ESG Risk Manager for their office in Madrid.ESG Risk Manager – Management Consulting (Madrid) A leading boutique Consulting firm is seeking an ESG Risk Manager to join their team in Madrid. You will have recent experience...
-
Operational Risk Lead
hace 2 semanas
Madrid, España Cepsa Colombia S.A. A tiempo completoAbout the business We are pursuing a transformative strategy agenda called "Positive Motion" which is all about greening our sources of revenue. Within this context Trading competencies are essential to optimize the value from both legacy hydrocarbons and the future molecule flows. It is Trading's task to maximize value by growing and leveraging the...
-
Operational Risk Lead
Encontrado en: Talent ES C2 - hace 2 semanas
Madrid, España CEPSA TRADING, S.A.U A tiempo completoAbout the business We are pursuing a transformative strategy agenda called “Positive Motion” which is all about greening our sources of revenue. Within this context Trading competencies are essential to optimize the value from both legacy hydrocarbons and the future molecule flows. It is Trading’s task to maximize value by growing and leveraging...
-
Operational Risk Lead
Encontrado en: beBee S ES - hace 2 semanas
Madrid, España Cepsa A tiempo completoAbout the business We are pursuing a transformative strategy agenda called “Positive Motion” which is all about greening our sources of revenue. Within this context Trading competencies are essential to optimize the value from both legacy hydrocarbons and the future molecule flows. It is Trading’s task to maximize value by growing and leveraging the...
-
Operational Risk Lead
Encontrado en: beBee S ES - hace 4 semanas
Madrid, España CEPSA A tiempo completoAbout the business We are pursuing a transformative strategy agenda called “Positive Motion” which is all about greening our sources of revenue. Within this context Trading competencies are essential to optimize the value from both legacy hydrocarbons and the future molecule flows. It is Trading’s task to maximize value by growing and...
-
Operational Risk Lead
Encontrado en: beBee S ES - hace 2 semanas
Madrid, España CEPSA A tiempo completoAbout the business We are pursuing a transformative strategy agenda called “Positive Motion” which is all about greening our sources of revenue. Within this context Trading competencies are essential to optimize the value from both legacy hydrocarbons and the future molecule flows. It is Trading’s task to maximize value by growing and...
-
Operational Risk Analyst
hace 2 semanas
Madrid, España Admiral Seguros A tiempo completoKey Duties & ResponsibilitiesReporting to the Head of Risk, supporting the Risk function to ensure that the Company and subsidiary entities meet the required governance and risk management Solvency II regulatory obligations.Collaboration in defining, implementing, monitoring and maintaining the AECS's system of governance and risk management...
-
Senior Operational Risk Consultant
hace 1 semana
Madrid, España MetLife A tiempo completoSenior Operational Risk Consultant Job Location: United Kingdom; Brighton Alternate Job Location: Other European countries with MetLife presence; Ireland, Portugal, Spain, France, Italy, Czech, Slovakia, Poland, and Hungary **Role Value Proposition**: MetLife’s Operational Risk Management (“ORM”) function within Global Risk Management is responsible...
-
Technology Risk
hace 2 semanas
Madrid, España Sdi Digital Group A tiempo completoRole is open for a Risk and Control Advisor within International Health Technology. This is a critical role as the Risk and Control team look to strengthen its support for the Technology teams across Europe, North America, Middle East, and Asia. The Operational Risk Advisor core activities consist of : Develop, maintain, and update risk and control framework...
-
Quantitative Market Risk Manager
hace 2 semanas
Madrid, España Cepsa Colombia S.A. A tiempo completoWe are pursuing a transformative strategy agenda called "Positive Motion" which is all about greening our sources of revenue. Within this context Trading competencies are essential to optimize the value from both legacy hydrocarbons and the future molecule flows. It is Trading's task to maximize value by growing and leveraging the platform. We are actively...
-
Quantitative Market Risk Manager
hace 2 semanas
Madrid, España Cepsa Colombia S.A. A tiempo completoAbout the business We are pursuing a transformative strategy agenda called "Positive Motion" which is all about greening our sources of revenue. Within this context Trading competencies are essential to optimize the value from both legacy hydrocarbons and the future molecule flows. It is Trading's task to maximize value by growing and leveraging the...
-
Esg Project Manager Risk Hub
hace 6 días
Madrid, España BNP Paribas A tiempo completo**Your day-to-day activity**: Environmental, Social and Governance (ESG) risks drivers are a major challenge for BNP Paribas, which has launched an ambitious plan to integrate them within the Group risk management framework. As part of the BNP Paribas Group's Sustainable Finance program - resulting in the RISK 2025 strategic plan -, within the Regulatory...
-
Technology Risk
Encontrado en: Talent ES C2 - hace 1 semana
Madrid, España The Cigna Group A tiempo completoRole is open for a Risk and Control Advisor within International Health Technology. This is a critical role as the Risk and Control team look to strengthen its support for the Technology teams across Europe, North America, Middle East, and Asia.The Operational Risk Advisor core activities consist of:Develop, maintain, and update risk and control...
-
Quantitative Market Risk Manager
Encontrado en: Talent ES C2 - hace 2 semanas
Madrid, España CEPSA TRADING, S.A.U A tiempo completoAbout the business We are pursuing a transformative strategy agenda called “Positive Motion” which is all about greening our sources of revenue. Within this context Trading competencies are essential to optimize the value from both legacy hydrocarbons and the future molecule flows. It is Trading’s task to maximize value by growing and leveraging...
-
Credit Analyst Risk Esg
hace 1 semana
Madrid, España BNP Paribas A tiempo completo**Mission** Environmental, Social and Governance (ESG) topics are areas of rapid and significant change, increasingly shaping how business is conducted, regulated, measured and reported on. From a risk management perspective, BNP Paribas considers that ESG factors are risk drivers that may have potential impacts on existing risks such as credit,...
-
Credit Analyst Risk Esg
hace 1 semana
Madrid, España BNP Paribas A tiempo completo**Mission** Environmental, Social and Governance (ESG) topics are areas of rapid and significant change, increasingly shaping how business is conducted, regulated, measured and reported on. From a risk management perspective, BNP Paribas considers that ESG factors are risk drivers that may have potential impacts on existing risks such as credit,...
-
Project Manager Risk Hub
hace 2 días
Madrid, España BNP Paribas A tiempo completo**RISK Consulting & Transformation** is supporting RISK in its strategic projects and its transformation efforts. The team is organised in three practices: - Credit and Regulatory - Data, Simulation & Models - Transformation Through its deep understanding of RISK organization and processes, the team contributes to projects around four main areas: -...
-
Project Manager Risk Hub
hace 1 día
Madrid, España BNP Paribas A tiempo completo**RISK Consulting & Transformation** is supporting RISK in its strategic projects and its transformation efforts. The team is organised in three practices: - Credit and Regulatory - Data, Simulation & Models - Transformation Through its deep understanding of RISK organization and processes, the team contributes to projects around four main areas: -...
-
Operational Excellence
Encontrado en: beBee S ES - hace 1 día
Madrid, España GrabJobs Teletrabajo Freelance A tiempo completoDescripciónPrecisamos profesional con experiência en empresas multinacionales del sector industrial. Vacantes1FORMACIÓN:- Título universitario, con enfoque en negocios o disciplina técnica; o una combinación equivalente de experiência y educación. - Valorable: Formación Six Sigma Green Belt, siguiendo ISO 13053-1 (metodología DMAIC). -...
