Nous recherchons un

Sr. Associate (APAC Third Party Risk Management - Assessor)

Postuler REF: FUN000659

About BNP Paribas Group:

BNP Paribas is a top-ranking bank in Europe with an international profile. It operates in 71 countries and has almost 199 000 employees. The Group ranks highly in its three core areas of activity: Domestic Markets and International Financial Services (whose retail banking networks and financial services are grouped together under Retail Banking & Services) and Corporate & Institutional Banking, centred on corporate and institutional clients. The Group helps all of its clients (retail, associations, businesses, SMEs, large corporates and institutional) to implement their projects by providing them with services in financing, investment, savings and protection. In its Corporate & Institutional Banking and International Financial Services activities, BNP Paribas enjoys leading positions in Europe, a strong presence in the Americas and has a solid and fast-growing network in the Asia/Pacific region.

About BNP Paribas India Solutions:

Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, a leading bank in Europe with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 6000 employees, to provide support and develop best-in-class solutions.

About Businessline/Function :

The Third Party Risk Management Team is responsible for identifying and assessing risks relating to Information Security, Business Continuity and Physical Security arising out of the Third Parties providing services to BNP Paribas. This includes policy, governance, risk management, reporting and ownership of the lifecycle of Security Risk Assessment of the Third Parties.

Job Title:

Sr. Associate (APAC Third Party Risk Management)

Date:

22 Jan 2021

Department:

Procurement CoE

Location:

Mumbai

Business Line / Function:

Procurement

Reports to:

(Direct)

Manager, APAC Third Party Risk Management team.

Grade:

(if applicable)

(Functional)

Number of Direct Reports:

NA

Directorship / Registration:

NA

 

Position Purpose

This role will be responsible for performing security assessments of vendors, service providers and 3rd party companies that provides services to BNP Paribas entities across APAC. The  assessment require candidate to identify and evaluate potential/recognized risks related to operational, business administration, and third party endeavors, engaging business areas to raise awareness and recommend measures to prevent loss and mitigate exposure, and developing analytics and reporting for senior management. The idea candidate is expected to be actively involved in the day to day operations of this team.

Responsibilities

Direct Responsibilities

 

·         Review services provided by vendor and define scope of assessment based on a questionnaire

·         Perform remote security assessments or work with 3rd party provider who will be performing the review

·         Define appropriate risk levels and corrective actions

·         Report on assessment outcomes, risk level and associated recommendations

·         Input corrective action plans into system

·         Follow up on corrective action plans and review evidence for closure

·         Provide metrics on a regular basis (KPI / KRI)

·         Periodically reach out to vendors hosting our data regarding current threats to ensure they are taking necessary steps to reduce exposure.

·         Perform periodic follow up of outstanding Action Plans with external suppliers as well as internal Relationship Managers.

·         Update/ document relevant TPRM policies and procedures.

·         Identifying and reporting/ escalating potential areas of risk/ non-responses to stakeholders and Sr. Management.

 

Contributing Responsibilities

·         Perform reconciliations (excel based) between the Third Party Risk Management tool database and other systems/ data sources at BNPP (includes: vendor payment system, management consulting system, Affiliates, Business Impact Analysis)

·         Periodically updating the setup data in the Third Party Risk Management tool in order to be aligned with BNPP Group policies.

·         Adhoc uploads of suppliers/ program enrollments/ etc. to the Third Party Risk Management tool (need only basis).

Technical & Behavioral Competencies

·         Experience performing IT audits or IT security risk assessments

·         Effective verbal and written communication skills, with demonstrated ability to pass messages in a clear and concise manner.

·         Proficiency in Microsoft Word, PowerPoint, Project

·         Very strong work ethic and ability to deal with confidential information

·         Experience with a multicultural environment

·         Ability to coordinate actions from several different teams

·         Strong problem-solving and analytical skills

·         Candidate must be able to evaluate the services provided by vendors

·         The ability to identify risks and develop appropriate responses

·         Organizational skills to timely review vendor performances and risks

·         Demonstrate excellent relationship management and conflict management capabilities in order to guide the client/vendor relationship through such experience.

Specific Qualifications (if required)

Skills Referential

Behavioural Skills:

Organizational skills

Ability to deliver / Results driven

Ability to collaborate / Teamwork

Communication skills - oral & written

Transversal Skills:

Analytical Ability

Ability to develop others & improve their skills

Ability to manage / facilitate a meeting, seminar, committee, training…

Choose an item.

Education Level:

Bachelor Degree or equivalent

Experience Level

At least 3 years

             

Technical & Behavioral Competencies

·         Experience performing IT audits or IT security risk assessments

·         Effective verbal and written communication skills, with demonstrated ability to pass messages in a clear and concise manner.

·         Proficiency in Microsoft Word, PowerPoint, Project

·         Very strong work ethic and ability to deal with confidential information

·         Experience with a multicultural environment

·         Ability to coordinate actions from several different teams

·         Strong problem-solving and analytical skills

·         Candidate must be able to evaluate the services provided by vendors

·         The ability to identify risks and develop appropriate responses

·         Organizational skills to timely review vendor performances and risks

·         Demonstrate excellent relationship management and conflict management capabilities in order to guide the client/vendor relationship through such experience.


Primary Location: IN-MH-MumbaiJob Type: Standard / PermanentJob: PROCUREMENT OR SECURITY OR FACILITIES MANAGEMENTEducation Level: Bachelor Degree or equivalent (>= 3 years)Experience Level: At least 3 yearsSchedule: Full-time Reference: FUN000659