ITG Cybersecurity Framework Manager
About BNP Paribas India Solutions:
Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union’s leading bank with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 10000 employees, to provide support and develop best-in-class solutions.
About BNP Paribas Group:
BNP Paribas is the European Union’s leading bank and key player in international banking. It operates in 65 countries and has nearly 185,000 employees, including more than 145,000 in Europe. The Group has key positions in its three main fields of activity: Commercial, Personal Banking & Services for the Group’s commercial & personal banking and several specialised businesses including BNP Paribas Personal Finance and Arval; Investment & Protection Services for savings, investment, and protection solutions; and Corporate & Institutional Banking, focused on corporate and institutional clients. Based on its strong diversified and integrated model, the Group helps all its clients (individuals, community associations, entrepreneurs, SMEs, corporates and institutional clients) to realize their projects through solutions spanning financing, investment, savings and protection insurance. In Europe, BNP Paribas has four domestic markets: Belgium, France, Italy, and Luxembourg. The Group is rolling out its integrated commercial & personal banking model across several Mediterranean countries, Turkey, and Eastern Europe. As a key player in international banking, the Group has leading platforms and business lines in Europe, a strong presence in the Americas as well as a solid and fast-growing business in Asia-Pacific. BNP Paribas has implemented a Corporate Social Responsibility approach in all its activities, enabling it to contribute to the construction of a sustainable future, while ensuring the Group's performance and stability.
Commitment to Diversity and Inclusion
At BNP Paribas, we passionately embrace diversity and are committed to fostering an inclusive workplace where all employees are valued, respected and can bring their authentic selves to work. We prohibit Discrimination and Harassment of any kind and our policies promote equal employment opportunity for all employees and applicants, irrespective of, but not limited to their gender, gender identity, sex, sexual orientation, ethnicity, race, colour, national origin, age, religion, social status, mental or physical disabilities, veteran status etc. As a global Bank, we truly believe that inclusion and diversity of our teams is key to our success in serving our clients and the communities we operate in.
About Business line/Function:
ITG International is a Group function established recently (2019) in ISPL with presence in Mumbai, Chennai and Bangalore. We collaborate with various business lines of the Group to provide IT Services.
BNP PARIBAS, the leading bank in the European Union and a leading international player, is seeking to complement and reinforce its existing teams in the areas of IT risk management, cybersecurity and the fight against digital fraud.
Within IT Group, Informatics Directorate of BNP Paribas, the Cybersecurity & Digital Fraud (CDF) Department's mission aims to structure, strengthen and harmonize IT risk management and cybersecurity for the overall BNP Paribas Group (approximately 30 entities) and:
- defining the vision and strategy for IT risk management and cybersecurity, and ensuring the implementation of this strategy within the Group’s operating entities
- monitoring the security of the Group's information systems
- steering the IT Continuity and Resilience strategy and methodological framework
The evolving Cyber threats landscape increases the security risk of financial sector, that leads BNP Paribas to strengthen its Cybersecurity maturity, IT risk management and Operation Resilience.
Job Title:
Cybersecurity Manager for Cyber Framework
Date:
Sep-2024
Department:
ITG
Location:
Chennai
Business Line / Function:
CDF Strategy, Framework and Tools
Reports to:
(Direct)
Grade:
(if applicable)
(Functional)
Number of Direct Reports:
~5
Directorship / Registration:
NA
Position Purpose
The Cyber Security Manager will be responsible for enhancing the Group Cyber Security Framework and managing 6~ cyber security experts based in Chennai, India. This role will report to the CDF Head of Department.
Responsibilities
Direct Responsibilities
- Liaise frequently with the team Manager based in Paris to coordinate with the Paris based persons projects
- Use and advanced level of knowledge about cyber security topics to boost the team members skills/delivery and enhance the cyber security framework
- Create, maintain and continuously improve the cyber security framework requirements/procedure (cover several cyber security topics: IoT, data security, IAM, vulnerability management, network security, AI security, etc.)
- Support the cyber security experts team including facilitating the timely delivery and participating to different workshops organized across multiple stakeholder groups
- Monitor NIST and other industry standard best practices to conduct gap analysis against our current governance and drive continuous improvement.
- Collaborate across stakeholder groups (2LOD, experts, entities CISOs/ITROs & cybersecurity managers, etc.) to gather their needs and incorporate their feedback on cyber governance.
- Work effectively within existing organisational policies, procedures, and security and legal constraints
- Regularly report to the management on status updates including progress and challenges.
Contributing Responsibilities
- Contribute to the definition of new cyber security requirements (or review of existing) regarding 28 cyber topics (data security, cloud, IAM, asset management, etc..) applicable to all Group entities
- Hosting and animation of workshops to share and discuss these new cyber security requirements with worldwide Group experts, CISOs, ITROs
- Administration of sharing spaces that host these cyber security requirements (Teams, Sharepoint, etc...)
- Contribute to the definition/review of patterns (grouping) of these cyber security requirements, applicable to all group entities according to level of risk exposure, all within the group cyber security program
- Contribute to the evolution of these patterns (inclusion of new cyber security requirements) as notable group programs progress (such as Zero trust, DLP, etc...)
- Contribute to the definition of evidences to provide in front of each cyber security requirement
- Regularly discuss, share and challenge BNP PARIBAS entities' on applicable patterns
- Contribute to the evolution of the Group cybersecurity program (cybersecurity requirements, evidences and their assessment) within the Group GRC IT Tool
Technical & Behavioral Competencies
- Between 7- and 12-years’ experience or more in cyber security field, at least 2 years’ experience as cybersecurity manager
- Proven experience with cross-cultural & international working environment and managing large and working with geographically dispersed teams
- Advanced communication skills (strong writing, editing, presenting)
- Ability to articulate technical concepts to non-technical stakeholders
- In-depth understanding of cybersecurity standard frameworks such as NIST, ISO27002, etc.
- Demonstrate a positive motivated attitude. Rigorous and an eye for detail.
- Excellent organization and project management skills - organising, planning and effectively implementing projects and tasks
- Ability to prioritize and multi-task with flexibility and adaptability
- Proven ability to lead, develop and motivate teams, ability to work in a collaborative environment with international team members
- Ability to lead through accountability with delegated responsibilities and to manage conflicting priorities and multiple tasks
- Strong knowledge and understanding of current trends of cybersecurity
- Industry certifications are preferred, but not required: CISSP, CISM, CRISC, CISA, etc.
Skills Referential
Behavioural Skills:
Ability to synthetize / simplify
Active listening
Ability to share / pass on knowledge
Communication skills - oral & written
Transversal Skills:
Ability to anticipate business / strategic evolution
Ability to set up relevant performance indicators
Ability to manage a project
Ability to understand, explain and support change
Ability to manage / facilitate a meeting, seminar, committee, training…
Education Level:
Bachelor Degree or equivalent
Experience Level
At least 7 years
Other/Specific Qualification
- MS OFFICE PACK MICROSOFT WORD (Proficient)
- MS OFFICE PACK MICROSOFT EXCEL (Proficient)
Découvrez les métiers de BNP Paribas : IT, Tech et Data
Au-delà d’être un groupe financier, BNP Paribas est aussi une entreprise technologique. Les systèmes d’information, la data et les outils sont au cœur de notre ADN et offrent de nombreuses opportunités professionnelles !
En savoir plusPourquoi je candidaterais ?
Pour quelles raisons je rejoindrais BNP Paribas et pas une autre entreprise ?
Parce que je souhaite...
-
Et si on vous disait que travailler dans notre Groupe, ce n’est pas ce que vous croyez ? Chez BNP Paribas, on exerce une multitude de métiers qui évoluent en permanence pour être en phase avec les attentes des clientes et clients comme de la société. Au travers d’actions du quotidien ou de grands projets, exercer l’un de nos métiers, c’est s’engager pour agir durablement.
-
Se sentir bien dans son job, c’est avant tout venir travailler comme on est. C’est aussi avoir les moyens d’un bon équilibre entre sa vie professionnelle et sa vie personnelle. Deux engagements majeurs pour BNP Paribas.
-
Chez BNP Paribas, le développement de vos compétences est essentiel, pour vous comme pour nous. Et cela vous servira pour toute votre vie professionnelle.