About BNP Paribas Group:
BNP Paribas is a top-ranking bank in Europe with an international profile. It operates in 71 countries and has almost 199 000 employees. The Group ranks highly in its three core areas of activity: Domestic Markets and International Financial Services (whose retail banking networks and financial services are grouped together under Retail Banking & Services) and Corporate & Institutional Banking, centred on corporate and institutional clients. The Group helps all of its clients (retail, associations, businesses, SMEs, large corporates and institutional) to implement their projects by providing them with services in financing, investment, savings and protection. In its Corporate & Institutional Banking and International Financial Services activities, BNP Paribas enjoys leading positions in Europe, a strong presence in the Americas and has a solid and fast-growing network in the Asia/Pacific region.
About BNP Paribas India Solutions:
Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, a leading bank in Europe with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 6000 employees, to provide support and develop best-in-class solutions.
About Businessline/Function :
For 150 years, BNP Paribas Wealth Management has been committed to protecting clients’ wealth, developing it, and eventually passing it on to their loved ones. We deliver tailor-made experience, with outstanding attention to detail and expertise from precise local knowledge to the global know-how that we access from the Group. Our goal is to create a new wealth management experience fit for a world where digital interactions have come to enhance human ones. Wealth Management Investment Solution Hub (WMIS Hub) provides a global IT solution for BNP Paribas Wealth Management where we develop, maintain and evolve IT applications which fits to the specific needs of BNP Paribas Wealth Management business users.
IT Security Engineer
Business Line / Function:
Number of Direct Reports:
Directorship / Registration:
Role of Wealth Management Cybersecurity Security Officer, being understood this role includes delegations from APAC WM CISO.
Participate to IT project security reviews conducted both on a global and APAC basis across all platforms. This requires the incumbent to foster close working relationships with other business areas and IT Development/Production teams.
The incumbent will work hand in hand with the IT Dev, Prod teams and the business, as an enabler and a facilitator.
o Ensure the protection of WM business data with an adequate security level of WM assets based on review processes
o Ensure the coordination with other IT security or other actors in the region or globally
o Assist for a Risk Treatment for any APAC WM issue, based on the processes
o Identify the IT security risks in advance, record and follow-up them
o Define and contribute to processes from cybersecurity perspective
o Periodic reporting of security status to IT Security Domain Head
o Ensure the regular reporting for management follow-up
- Production Security
o Ensure the effectiveness and success of vulnerability management process
o Ensure the compliance level of the production environment and integrate to reporting
- IT security compliance (delegation on WM APAC scope)
o Ensure the alignment with the Group and WM GAIM security policies, for both project and production assets
o Ensure the compliance with regulatory bodies requirements, including for APAC (HKMA, MAS), EU (GDPR), Switzerland (FINMA)
o Leveraging on a deep knowledge of Security standards such as NIST, CIS,ISO2700x , ensure the compliance with the IT security requirements
o Ensure the compliance with the Third-party Technology risks and the Cloud security
o Identify the process gaps and provide solutions
- Coordination with IT Security actors
o Alignment on the objectives and means, contribution to the different global reporting (WM Cybersecurity Committee, Application Security Dashboard…)
o Coordination and control of security activities performed by APAC Business Information Security and Production Security teams, including production security review, user security awareness for the WM scope.
o Coordination with the global security teams concerning integration of WM assets within production sites
o Keeping abreast of initiatives by the IT Security community within the Group and other IT Security stakeholders within the Group
Technical & Behavioral Competencies
Essential Technical Knowledge
Network protocols and network connectivity concepts; Firewall and Internet technologies
Secure application design and architecture principles – including DevSecOps tools and practices (CI/CD)
Secure access control mechanisms: Encryption and Key Management techniques
Technical proficiency in various Operating Systems (Linux, AIX, Windows, AS400) and Databases (Oracle, MSSQL, PostGreSQL, MongDB
Knowledge of understanding digital transformation and mobile technologies and Cloud (Containers Docker, Kubernetes).
Knowledge of emerging technologies (NFT, encryption)
Knowledge in technologies like OAuth, Single Sign On, API based approach, TDD, BDD
Knowledge of standard IT Security concepts and methodologies
Deep understanding of cybersecurity threats and remediation options
IT Security Risk Assessment and Risk Management
Essential Banking Knowledge
Banking Knowledge and understanding of Wealth Management specificities
International and APAC banking regulations
Essential Personal Skills
Communication skills – Ability to interact throughout oral and written communication skills
Provide leadership to various stakeholders in proactive manner
Ability to provide an accurate reporting to the Management
Must be motivated, and able to work independently as well as part of a team
Must demonstrate ethical responsibility, maturity, and discretion
Specific Qualifications (if required)
- 5 to 8 years' experience in information security
- Management or leadership experience
- Experience in evaluation and design of technical architectures and processes
- Functional as well as technical knowledge of the common technical frameworks and solutions
- Knowledge of the Norms and Standards of the banking and cybersecurity industry
Other Value-added Competencies
- Advanced IT security certifications may be advantageous (such as CEH, ISO 270001:2013 ,CSK…).
- Operational Risk and Permanent Control
Behavioural Skills: (Please select up to 4 skills)
Creativity & Innovation / Problem solving
Communication skills - oral & written
Ability to deliver / Results driven
Transversal Skills: (Please select up to 5 skills)
Ability to develop and adapt a process
Ability to understand, explain and support change
Ability to manage a project
Ability to set up relevant performance indicators
Bachelor Degree or equivalent
At least 5 years
Other/Specific Qualifications (if required)
Other Value-added Competencies
- Advanced IT security certifications may be advantageous (such as CEH, ISO 270001:2013 ,CSK…)..
- Operational Risk and Permanent Control
Découvrez les métiers de BNP Paribas : IT, Tech et Data
Au-delà d’être un groupe financier, BNP Paribas est aussi une entreprise technologique. Les systèmes d’information, la data et les outils sont au cœur de notre ADN et offrent de nombreuses opportunités professionnelles !En savoir plus
Pourquoi je candidaterais ?
Pour quelles raisons je rejoindrais BNP Paribas et pas une autre entreprise ?
Parce que je souhaite...
Et si on vous disait que travailler dans notre Groupe, ce n’est pas ce que vous croyez ? Chez BNP Paribas, on exerce une multitude de métiers qui évoluent en permanence pour être en phase avec les attentes des clientes et clients comme de la société. Au travers d’actions du quotidien ou de grands projets, exercer l’un de nos métiers, c’est s’engager pour agir durablement.
Se sentir bien dans son job, c’est avant tout venir travailler comme on est. C’est aussi avoir les moyens d’un bon équilibre entre sa vie professionnelle et sa vie personnelle. Deux engagements majeurs pour BNP Paribas.
Chez BNP Paribas, le développement de vos compétences est essentiel, pour vous comme pour nous. Et cela vous servira pour toute votre vie professionnelle.