DE LA ACTIVIDAD DEPARTAMENTO
Describir brevemente la
actividad del departamento
The Data Management Risk
team, is part of the Group RISK ICT (Information and Communications
Technology), directly under the Group Chief Cyber & Technology Risk Officer,
among others, the is responsible for:
Driving the data management risk agenda through the
development and oversight of the execution of data management frameworks
across the Group.
Develop and implement the second line of defence
data management control plans.
Data governance and support around the tools used by
the RISK ORC ICT teams.
Business analysis for the configuration of group
tools where the RISK ORC ICT are identified as playing this role.
Strategic management of the ICT technology landscape
within RISK ORC ICT.
Liaising with the Chief Data Office (CDO) and Data
Protection Office (DPO) networks/teams to deliver the data management
Perform independent reviews of data management risks
Advise on data management aspects of Group large digital
DESCRIPCION PUESTO (Tareas a realizar/Responsabilidades)
The Data Management Risk
team plays an integral role in managing data management risks across the
Group BNP Paribas. Integrated in the Global Iberian Centre of Excellence for
RISK ICT, your day-to-day responsibilities as Data Management Advisor will
- Using data
analytic techniques to report on data management risk indicators.
- Building the
Group data management risk, process and control taxonomies based on
- Ad hoc
requests relating to independent reviews of data management risks and
data management including data governance within the wider team.
- Review of First
Line of Defense Data Management framework and procedures (CIO, CDO,
REQUERIDA (conocimientos, Formación especializada)
& Experience Required:
• BA/BS or
equivalent combination of education and experience
• Deep understanding
of data management and governance
• Business analysis
skills - ability to understand requirements and delivering these requirements
in the context of tool implementation.
understanding of personal data protection principles.
• Ability to
communicate effectively with both internal and external stakeholders.
initiative to manage own research efforts.
PERFIL PERSONAL/ COMPETENCIAS
Actitudes necesarias para el
desarrollo del puesto
Basic understanding of risk management.
Business analysis skills - ability to understand
requirements and delivering these requirements in the context of tool
Good stakeholder management skills.
Ability to independently trouble shoot issues raised
by end users and provide timely and efficient administrative solutions.
Ability to communicate effectively with both
internal and external stakeholders.
Flexibility when dealing with multiple stakeholder
requests, delays in implementations.
Ability to meet strict deadlines to maintain data
quality within our target tools.
Showing initiative to manage own research efforts.
At least 5-7 years’ experience in data management or
Preferred ISACA certifications: CRISC, CISA, CISSP.
Preferred data analytics capability.
Preferred knowledge on GDPR regulation.
Preferred knowledge of GRC concepts and tools.
Certification in Data Management/Governance tools
(i.e. Collibra, AB Nitio…).
Experience of formal document creation, such as the
creation of presentations, reports or procedures.
Presenting documentation in a professional and
Strong MS Office skills (core applications).
Must have good proficiency in English language.
Good proficiency in French language (preferred).
Be a role model, supporting and fostering a culture
of good conduct.
Demonstrate proactivity, transparency and
accountability for identifying and managing conduct risks.
Consider the implications of your actions on
colleagues, partners and clients before making decisions, and escalate issues
to your manager when unsure.