IT Risk Coordinator - AVP
Responsible for the Risk activities associated to the South America IT & Cyber perimeter with the mission to lead the implementation of the Risk & Awareness framework established by the Group, its entities and by the regulators. To act as the first line of defense ensuring the coordination of Shadow Light IT, Risk Cards, Historical Incidents, KRI/RAS and ICT Awareness; contributing to the enhancement & resilience of the IT platform.
Main responsibilities:
- Formulate the RISK framework in strong collaboration with GRC North America, including processes and tools standardization whenever possible.
- Implement Group/CIB policies & procedures on all perimeters under her management.
- Shadow Light IT
- Ensure SLIT minimum annual inventory review
- Actionable and feasible action plans to decrease/avoid high risk situations
- Challenge the inputs from OPCs
- Risk
- Identify root causes of IT & Cyber risks and potentially adverse events from an IT & Cyber risk perspective; evaluate risks considering their likelihood of occurrence and IT/business impacted; identify and monitor mitigation measures put in place on Risk Cards; challenge the risk measured in the risk cards.
- Maintain an up-to-date IT Risk Register with minimum annual review of risks
- Provide a consolidated view of IT & Cyber risks.
- Historical Incidents
- Ensure registration of HIs from Brazil including appropriate description, root cause analysis, action plans, impacts, etc.
- Ensure timely registration and closure of all HIs managed by GRC
- KRI/RAS
- Maintain KRI framework up to date ensuring proper reporting
- Implement & maintain Group/CIB mandatory RAS at country level
- ICT Awareness
- Raise ICT awareness among employees and ensure their involvement in IT Risk Management
- Promote exchanges and training offers related to ICT Risk
- Work in strong collaboration with Information Security to develop cyber awareness campaign
- Management & Transversal
- Lead the analyst of GRC (definition of objectives, escalation, good activities balance, etc)
- Ensure reporting to CIO, CCCO and IT Production heads: provide regular reporting, maintain IT risk mapping, provide support on decision making processes.
- Contribute to various exercises and reviews on controlling and assessing IT & Cyber Risks: provide inputs to audits, contribute to IT & Cyber Risk Management Committee and other relevant committees. Report alerts and suggest corrective measures.
Position Requirements:
- Experience in Banking Industry.
- Bachelor/Advanced degree in Computer Science and/or Finance (MS, MBA, etc.) preferred.
- Proficiency in IT Risk and Cyber Security & Risk Analysis, anticipation, Monitoring and Opinion
- Exceptional analytical abilities and attention to detail
- Ability to recognize and evaluate deviations from good business practices, policies and procedures.
- Strong organization and teamwork skills.
- Excellent communication (verbal and written) and presentation skills to develop and deliver informative progress reports, proposals, and presentations.
- A self-starter with the ability to prioritize multiple objectives, work under time pressure / constraints, and take ownership for completing assigned tasks.
- Advanced English and Portuguese (speak, read and write).
Why join BNP Paribas?
BNP Paribas is an international bank with leading positions in the European market. It is present in more than 60 countries and employs nearly 178,000 people. The Group occupies key positions in its three main areas of operation: Domestic Markets and International Financial Services (whose retail banking and financial services network is part of Retail Banking & Services), as well as Corporate & Institutional Banking, which offers services to corporate and institutional clients.
Our presence in Brazil
BNP Paribas has been officially operating in Brazil since 1996. Since 2010, when the Securities Services area began operating, the Brazilian unit has the largest number of business lines in Latin America, making it one of the Group's largest operations in emerging markets. Today, in Brazil, the Group is present with the areas of Corporate and Institutional Banking, Asset Management, Insurance (Cardif) and Fleet Management (Arval).
Currently, the BNP Paribas Group has around 1400 employees in the country. In Brazil, it is among the largest international investment banks in total assets (R$ 112.5 billion, Jun/23, Prudential Conglomerate, Central Bank), offering a diversity of products and multiple solutions to its clients.
BNP Paribas is committed to providing a work environment that fosters diversity, inclusion, and equal employment opportunity without regard to race, color, gender, age, creed, sex, religion, national origin, disability (physical or mental), marital status, citizenship, ancestry, sexual orientation, gender identity and gender expression, or any other legally protected status.
