About BNP Paribas India Solutions:
Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union’s leading bank with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 10000 employees, to provide support and develop best-in-class solutions.
About BNP Paribas Group:
BNP Paribas is the European Union’s leading bank and key player in international banking. It operates in 65 countries and has nearly 185,000 employees, including more than 145,000 in Europe. The Group has key positions in its three main fields of activity: Commercial, Personal Banking & Services for the Group’s commercial & personal banking and several specialised businesses including BNP Paribas Personal Finance and Arval; Investment & Protection Services for savings, investment, and protection solutions; and Corporate & Institutional Banking, focused on corporate and institutional clients. Based on its strong diversified and integrated model, the Group helps all its clients (individuals, community associations, entrepreneurs, SMEs, corporates and institutional clients) to realize their projects through solutions spanning financing, investment, savings and protection insurance. In Europe, BNP Paribas has four domestic markets: Belgium, France, Italy, and Luxembourg. The Group is rolling out its integrated commercial & personal banking model across several Mediterranean countries, Turkey, and Eastern Europe. As a key player in international banking, the Group has leading platforms and business lines in Europe, a strong presence in the Americas as well as a solid and fast-growing business in Asia-Pacific. BNP Paribas has implemented a Corporate Social Responsibility approach in all its activities, enabling it to contribute to the construction of a sustainable future, while ensuring the Group's performance and stability
Commitment to Diversity and Inclusion
At BNP Paribas, we passionately embrace diversity and are committed to fostering an inclusive workplace where all employees are valued, respected and can bring their authentic selves to work. We prohibit Discrimination and Harassment of any kind and our policies promote equal employment opportunity for all employees and applicants, irrespective of, but not limited to their gender, gender identity, sex, sexual orientation, ethnicity, race, colour, national origin, age, religion, social status, mental or physical disabilities, veteran status etc. As a global Bank, we truly believe that inclusion and diversity of our teams is key to our success in serving our clients and the communities we operate in.
About Business line/Function:
India Info Sec domains consists of India IT Security, Business and IT Continuity and Offshoring activities such as Identity Access Management, Application Security, Data Leakage, Security Monitoring Centre (SMC) and Third Party Security Review
Job Title:
Cyber Security Expert
Date:
Department:
India Info Security
Location:
Chennai
Business Line / Function:
CIB ITO
Reports to:
(Direct)
APAC - Cyber Security Correspondent
Grade:
(if applicable)
Na
(Functional)
NA
Number of Direct Reports:
Na
Directorship / Registration:
NA
Position Purpose
CIB2S ASIA IT Security & IT Continuity Regional Officer
IT Security correspondent in charge of applying CIB2S and Group IT Security policy and achieve the following actions, he/her reports functionally to Chief IT Security Officer for this role:
Responsibilities
IT Security correspondent – India Info Sec
IT Security Responsibilities
• Participate and contribute to 2S Application ITSVC and ITPAR.
• Security approvals like CRB, DPNP, Tufin, Firewall review, SNOW etc.
• Be the contact point (Local Business & IT) for any 2S security-related consultation.
• Include security rules into IT projects.
• Work closely with IT Application Team on Application Security Review in ASH.
• Portal (ASR and ASCR) Review and track for closure on Compliance end.
• Conduct Risk Assessments and ensure Application Security Files are up-to-date for assets under the responsibility of the location.
• Raise end users and developers’ awareness: Survey, trainings.
Business CISO Responsibilities
• Ensure 2S Cyber Security governance is managed as per Group Cyber Security policy.
• IT Security Questionnaire from Client and Regulators to be answered as per Guideline and policy of BNP Paribas. • Participate and Contribute to ISAE 3402 Audit and track the action items for closure.
• Participate and contribute in Local, Client, Regulatory and IG Audit.
• Be the contact point for any security-related activities and Risk assessment and collecting data and evidence for impacts analysis & dashboard records.
IT Continuity Responsibilities
• Ensure Disaster Recovery (DRP) tests are performed and adapted for local applications.
• Ensure local coordination with other teams in case DRP is activated on centrally hosted applications.
• Participate and Contribute to IT Continuity Call with ITIP and IT Application team and regular update of status in IT Continuity Portal.
Contributing Responsibilities
• Contribute to DDQ and RFI on IT Security topic for 2S APAC regional client Services team.
• Monitor Production security dashboard and reporting.
Output/ Measurable Deliverable:
1. Chair monthly Governance meeting with all stakeholders.
2. Contribute to Quarterly 2S APAC BAM meetings.
3. Contribute to Quarterly HK Committee meetings from IT security topics.
4. Client DDQ and RFI summaries and response archive.
5. Conduct IT Continuity Steerco meetings.
6. Contribute to Local and Global CRB meetings.
Technical & Behavioral Competencies
Technical:
▪ Exposure to Securities Service Business and Applications.
▪ Strong focus on IT Security and Risk Management.
▪ Risk Assessment and Business analysis exposure Stakeholder management across geographies
▪ Vendor Management experience
Behavioral:
▪ Effective communicator
▪ Excellent presentation skills
▪ Analytical ability
Specific Qualifications (if required)
BE, B-Tech & MBA in IT
Cyber Security certification – Added Advantage
10+ years of experience in relevant profile
