Information Security


About BNP Paribas Group:

BNP Paribas is a top-ranking bank in Europe with an international profile. It operates in 71 countries and has almost 199 000 employees. The Group ranks highly in its three core areas of activity: Domestic Markets and International Financial Services (whose retail banking networks and financial services are grouped together under Retail Banking & Services) and Corporate & Institutional Banking, centred on corporate and institutional clients. The Group helps all of its clients (retail, associations, businesses, SMEs, large corporates and institutional) to implement their projects by providing them with services in financing, investment, savings and protection. In its Corporate & Institutional Banking and International Financial Services activities, BNP Paribas enjoys leading positions in Europe, a strong presence in the Americas and has a solid and fast-growing network in the Asia/Pacific region.

About BNP Paribas India Solutions:

Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, a leading bank in Europe with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 6000 employees, to provide support and develop best-in-class solutions.

About Business line/Function : Information Security and BCM

Information security and BCM team are responsible to perform the security assessment of all new/existing infrastructure and application projects. Also, responsible to assess business continuity requirement of each team and project based on the criticality and streamline the process to achieve the requirement.

Job Title:

N/A

Date:

Nov 2020

Department:

APAC SecRM Support

Location:

Mumbai

Business Line / Function:

Information Security and BCM

Reports to:

(Direct)

Deepak Mishra

Grade:

(if applicable)

(Functional)

Number of Direct Reports:

Directorship / Registration:

NA

Position Purpose

The role is perform the security risk management and application security review of the BNPP applications. Candidate will closely work with APAC BUIT and IT infrastructure team to review the security controls which are applied to secure the IT infrastructure or application and its corresponding data

Responsibilities

Direct Responsibilities

  • Perform security risk management and monitoring for the new/existing IT infrastructure or application
  • Perform application  architecture and firewall rules review
  • Liaise with the respective application or asset owner to perform the application security review
  • Understand the security policies and procedures to recommend the remediation action plan for any identified risk or gap in the security implementation of IT infrastructure or application
  • Provide and discuss security posture report weekly or monthly in the steerco meetings and update the required actions to the respective stakeholders
  • Follow-up with the risk requester or owner for the closure or further actions

Contributing Responsibilities

  • Extended knowledge of IT infrastructure & network and application (Web, Client-Server, payment systems) security reviews
  • Provide consultation and recommendations on application security controls for the central region

Technical & Behavioral Competencies

  • Good communication skills
  • Must have knowledge of risk assessment and management
  • Good understanding of the IT infrastructure and application architecture
  • Should have worked on IT infrastructure and application controls review
  • Fair understanding of the authentication and access management controls
  • Good understanding of Data Security and controls associated with it
  • Should have IT audit or risk management background
  • Good knowledge of IT security (defense in depth)

Specific Qualifications (if required)

  • Any technical certification (CEH/ISO27001/CISA) will be a value addition

Skills Referential

Behavioural Skills: (Please select up to 4 skills)

Ability to collaborate / Teamwork

Communication skills - oral & written

Ability to deliver / Results driven

Organizational skills

Transversal Skills: (Please select up to 5 skills)

Ability to understand, explain and support change

Analytical Ability

Ability to develop others & improve their skills

Ability to develop and adapt a process

Ability to set up relevant performance indicators

Education Level:

Bachelor Degree or equivalent

Experience Level

At least 3 years

Other/Specific Qualifications (if required)

               

Technical & Behavioral Competencies

- Good communication skills

- Must have knowledge of risk assessment and management

- Good understanding of the IT infrastructure and application architecture

- Should have worked on IT infrastructure and application controls review

- Fair understanding of the authentication and access management controls - Good understanding of Data Security and controls associated with it

- Should have IT audit or risk management background - Good knowledge of IT security (defense in depth)

Skills Referential Behavioural Skills:

- Ability to collaborate / Teamwork Communication skills

- oral & written Ability to deliver / Results driven

- Organizational skills

Transversal Skills:

Ability to understand, explain and support change

- Analytical Ability

- Ability to develop others & improve their skills

- Ability to develop and adapt a process

- Ability to set up relevant performance indicators

Education Level:

- Bachelor Degree or equivalent

- Any technical certification (ISO27001/CISA/CRISC) will be a value addition

Experience Level

- At least 3 years

Primary Location
IN-MH-Mumbai
Job Type
Standard / Permanent
Job
INFORMATION TECHNOLOGY
Education Level
Bachelor Degree or equivalent (>= 3 years)
Experience Level
At least 3 years
Schedule
Full-time
Reference
INF140921

Découvrez les métiers de BNP Paribas : IT, Tech et Data

Au-delà d’être un groupe financier, BNP Paribas est aussi une entreprise technologique. Les systèmes d’information, la data et les outils sont au cœur de notre ADN et offrent de nombreuses opportunités professionnelles !

En savoir plus

Pourquoi je candidaterais ?

Pour quelles raisons je rejoindrais BNP Paribas et pas une autre entreprise ?

Parce que je souhaite...

  • Et si on vous disait que travailler dans notre Groupe, ce n’est pas ce que vous croyez ? Chez BNP Paribas, on exerce une multitude de métiers qui évoluent en permanence pour être en phase avec les attentes des clientes et clients comme de la société.

  • Se sentir bien dans son job, c’est avant tout venir travailler comme on est.  C’est aussi avoir les moyens d’un bon équilibre entre sa vie professionnelle et sa vie personnelle. Deux engagements majeurs pour BNP Paribas.

  • Chez BNP Paribas, le développement de vos compétences est essentiel, pour vous comme pour nous. Et cela vous servira pour toute votre vie professionnelle.

En savoir plus