Saltar al contenido

Información general

Nº de ref.
12355999
País
Portugal
Región
Lisboa
Ciudad
LISBON
Tipo de contrato
Indefinido
Grupo profesional
F06 - IT

Descripción

About the job

  • BNP Paribas Wealth Management is a leading global private bank and the largest private bank in the Eurozone with more than €408 billion worth of assets under management as of September 2023. Present in three hubs in Europe, Asia and the Middle East, it employs over 6,800 professionals who support High-Net-Worth and Ultra-High-Net-Worth individuals in protecting, growing and passing on their assets. The bank aims at building a sustainable future by combining its deep expertise and reach with its clients’ influence and desire for impact
  • BNP Paribas Wealth Management is looking for manager in Lisbon responsible for the management of ICT risks across all WM Sites as well as ensuring the cyber security for EMEA region. Acting as Global ITRO, you will be in charge to enforce Group’s IT risk strategy relying on worldwide IT risk team. You will be also appointed as CISO and responsible for the cyber security on WM EMEA region. You will report to the Global Head of IT Risk, IT Continuity and Cyber Security

Your Main Activities Are

  • Animate the IT Risk & Cyber Security function
    • Acting as leader, establish the adequate governance to structure and orchestrate the activities of the team
    • Develop the skills of the team and manage the required recruitments in line with WM IT Risk & Cyber security strategy
    • Be the referent on IT risk topics within Wealth Management and toward the Group
    • Lead the IT Risk & Cybersecurity governance with your counterpart (BGL, Switzerland, CIB)
    • Ensure that WM IT Risk & Cyber Security framework is defined and enforced in accordance with Group IT rand regulatory requirements
    • Prepare, organise, and conduct regular IT Risk awareness for WM IT and non-IT end-users
    • Prepare, organise, and co-animate the WM IT Risk & Cyber security committees
    • Participate to IT Risk & Cyber Security committees of WM IT internal Providers
  • Manage and supervise IT Risk
    • Analyse, classify and consolidate IT risks and perform regular review of WM IT Risk Register
    • Execute Group IT Risk Cartography exercises (RCSA, RISK ID, Risk Profile, OR&C Report, among others)
    • Ensure that major risks are well assessed and validated by proper stakeholders (WM CEO, WM COOs, WM CISO/ICRO/ITRO, business risk owner)
    • Assess the IT risks related to intra-Group providers and external vendors according to Group Third Party Technology Risk Management (TPTRM) framework and coordinate this activity with relevant stakeholders (RISK ORM, Outsourcing coordinator, Procurement, among others)
    • Maintain IT Risk dashboard and coordinate the collection of Key Risk Indicators (KRI)
    • Define roadmap and execute Group IT Controls
    • Coordinate the audit and regulatory requests and monitor the implementation of IT recommendations
    • Formalise Historical & Potential incidents
    • Collect and assess risk related to Shadow & Light IT situations
    • Ensure reporting of IT Risk management to RISK ORM, WM CIO, WM CISO & WMIS CTO
  • Manage the Cyber Security for the EMEA region
    • Ensure the response to Cyber incidents in connection with the Group & Local/territory CSIRTs
    • Assist and manage cyber crises and ensure that regular exercises are conducted in accordance with WMIS and Group IT Risk & Cyber security frameworks
    • Contribute to WM IT Risk & Cyber Security and WM IT Transformation programs
    • Leveraging on IT Security standards such as NIST, CIS, ISO2700x, ensure the compliance with the Group IT Cyber security requirements
    • Oversee the IT production security and control the IT security through the activity of the WM IT teams (developers, administrators, users, among others) in order to secure WM customer personal data and WM IT assets
    • Control the IT security activities performed by Group IT providers and impacting WM activities in Europe and middle east locations
    • Assess the cyber security risk of Third Parties and ensure security clauses are included in WMIS contract documents
    • Assist the WM CISO on the Cyber Security budget preparation and reporting

Profile and Skills to Success

  • Bachelor’s Degree in Information Technology or Computer Science
  • At least 5 years of Experience in Information Technology Risk and Cyber Security field
  • At least 2 years of Experience as Manager
  • IT Knowledge (Business/IT relationship)
  • Fluent in English
  • Critical Thinking
  • Ability to synthetize
  • Ability to anticipate business/strategic evolution
  • Personal Impact/Ability to influence
  • Ability to inspire others & generate people's commitment
  • Ability to deliver/ Results Driven
  • Ability to do rigorous analysis
  • Certification (s): CISM, CISA, CRISK, CISSP, CRISC, CEH, CCSK, CCSP, ISO2700x, ISO31000 or EBIOS

#LI-Hybrid

Why joining BNP Paribas? 

  • Leading banking institution

Leading player in banking and financial services in Europe, BNP Paribas operates in 64 countries and has nearly 178,000 employees, including more than 144,000 in Europe 

  • International reach 

The Group holds key positions in several areas of banking and financial services that are structured around three operating divisions: 

 

  1. Corporate & Institutional Banking (CIB) connects companies needing financing and institutional clients looking for investment opportunities division that offers tailored financial solutions for corporate and institutional clients.

 

  1. Commercial, Personal Banking & Services (CPBS) brings together all our commercial banks and several specialised businesses

 

  1. Investment & Protection Services (IPS) combines a unique continuum of products and services across protection, saving, investment and real estate including specialised businesses offering a wide range of savings, investment and protection services

 

  • Our presence in Portugal

In Portugal since 1985, BNP Paribas today has more than 9.220 employees, distributed across the Group's 10 business entities established in the country. Its presence also extends to 11 centres of expertise providing value-added services to various countries where the BNP Paribas Group also operates.

 

  • Diversity and Inclusion commitment 

BNP Paribas ´ambition is to cultivate an open and responsive environment for all that encourages collaboration and interaction. We demonstrate our commitment by actively contributing to the Group’s Diversity and Inclusion strategy and goals, in line with the United Nations Sustainable Development Goals. As part of our local Corporate and Social Responsibility – Diversity & Inclusion strategy, BNP Paribas Portugal is committed to:

  • Promote a fair and unbiased recruitment process and offer professional development opportunities to all employees
  • Celebrate diversity and advocate for inclusion, both externally and internally, encouraging employee’s participation, creating space for different voices to be heard.

To foster the effort of BNP Paribas Portugal, multiple initiatives and events take place throughout the year where our people can find out more on the importance of diversity inclusion at the workplace and in our society.

 

  • Remote Working Conditions

At BNP Paribas, we embrace a Smart Working framework based on trust, autonomy and collaboration. Within this framework, eligible employees can benefit from flexible remote working options adapted to our hybrid working environment. To ensure a comfortable and efficient working setup, eligible employees are provided with both office and home equipment, are entitled to an equipment allowance and can benefit from exclusive partnerships to purchase additional items at reduced prices. 

 

  • Commitment towards work/life balance

Supporting employees in a hybrid way of working while providing them with the means to maintain a work-life balance is an essential dimension of our Smart Working program. At BNP Paribas, we care about our employees’ wellbeing and promote a culture of good integration between work and personal life. 

 

To find out more on why you should join BNP Paribas please read our Employee Value Proposition and our Career path page.

 

* Please note that only applications submitted in English will be considered. 

* In case you are selected for this role, further documentation will be requested to support your hiring process.