Main Purpose Statement

The role's primary purpose is to plan, coordinate and implement security measures for information systems to regulate access to computer data files and prevent unauthorised modification, destruction, or disclosure of information. This involves ensuring the appropriate frameworks and standards are implemented and monitored across these disciplines.

The CISO is expected to follow the BNPP PF IT Charter and align with the POD/POE operating model as defined in the IT Governance Office: Procedures Deployment Key Responsibilities

• Responsibility for the appropriate and robust IT security coverage concerning Information security, Information systems security, and Business Continuity
• Drive the deployment of the relevant security policies, processes and the management of any incidents
• Ensure the identification of any security risks, their mitigation and follow-up
• Monitor the overall health of the security system, handle any alerts and management of any security-related issues and incidents
• Develop and enhance the security posture and maturity
• Ensure appropriate reporting for areas of coverage
• Liaise with internal and external auditors concerning any audits for the area and ensure follow-up about any findings and recommendations
• Collaboration with internal stakeholders regarding advising of subject matter and driving training and awareness to the various teams
• Stay abreast of developments in the market/ BNP Paribas to ensure best practices that support the business and IT in its strategic objectives
• Ensure integration with BNP Paribas Personal Finance and Group requirements as appropriate

Key competencies

• Business acumen
• Risk awareness
• Solution-orientated with strong analytical and problem-solving skills
• Expert attention to detail – high quality and accuracy of output
• Deadline-driven and able to work under pressure
• Ability to excel in a fast-paced, changing environment
• Strong communication skills and ability to interact at all levels
• Ability to influence and persuade
• Project co-ordination
• Systems Thinker
• Analytical
• Ability to influence technical experts 

Qualifications, Skills and Experience

• Bachelor’s degree or relevant certificate
• Ten years’ experience in an IT environment
• Demonstrable experience in IT Risk and Security
• Experience in the Financial Services industry advantageous