We are looking for

Senior Associate / Assistant Manager - Data Privacy & Protection

Apply REF: BNP020960

Job Description - APAC

About BNP Paribas Group:

BNP Paribas is a top-ranking bank in Europe with an international profile. It operates in 71 countries and has almost 199 000 employees. The Group ranks highly in its three core areas of activity: Domestic Markets and International Financial Services (whose retail banking networks and financial services are grouped together under Retail Banking & Services) and Corporate & Institutional Banking, centred on corporate and institutional clients. The Group helps all of its clients (retail, associations, businesses, SMEs, large corporates and institutional) to implement their projects by providing them with services in financing, investment, savings and protection. In its Corporate & Institutional Banking and International Financial Services activities, BNP Paribas enjoys leading positions in Europe, a strong presence in the Americas and has a solid and fast-growing network in the Asia/Pacific region.

About BNP Paribas India Solutions:

Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, a leading bank in Europe with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 6000 employees, to provide support and develop best-in-class solutions..

About Businessline/Function :

IT Security is primarily responsible for enabling the business through proactive & comprehensive Risk Assessment, Security Monitoring & IS Governance through well-established BNPP Security Standards.

IT Security also has responsibility of Data Privacy & Protection program management for ISPL with respect to governance, monitoring & awareness.

Job Title:

Data Privacy & Protection Specialist

Date:

2021

Department:

India IT Security

Location:

ISPL Mumbai, India

Business Line / Function:

CIB

Reports to:

(Direct)

ISPL IT Security Manager / Program Lead – India

Grade:

(if applicable)

NA

(Functional)

Number of Direct Reports:

Directorship / Registration:

NA

Position Purpose

Data Privacy & Protection Specialist is core member of ISPL IT Security Team. This role will work closely with key function / métier stakeholders to support various data privacy & protection requirements such as implementing policies & procedures, privacy controls identification, mapping & implementation and ensuring effective management process across all aspects of Data Privacy & Protection.


 

Responsibilities

Direct Responsibilities

Governance:

  • Continuous monitoring of Privacy materials, policies, manuals, procedures and ensure ongoing compliance with privacy laws and regulations
  • Ensures appropriate escalation and communication of compliance matters to Program Lead
  • Update Program Lead on program progress, gaps and strategies

Privacy Risk Management

  • Complete an annual risk assessment for privacy compliance program, consistent with global requirements
  • Conduct Privacy Impact Assessments for new technologies and projects
  • Support liaison with Controls team on any Internal Audit and any regulatory inspections as required
  • Assist in identifying, assessing, monitoring, controlling and mitigating data management, privacy and record management risks

Privacy Program Effectiveness

  • Develop an annual roadmap of privacy program monitoring activities on a risk-based approach
  • Support Program Lead for management reporting

Contributing Responsibilities

Governance:

  • Review and support on privacy risk assessment for new business process, aligned to the global privacy program
  • Ensure appropriate privacy and data ethics strategy when developing new business initiatives
  • Drive Data Privacy & Protection Awareness initiatives

Privacy Risk Management

  • Proactively identify, assess and mitigate privacy compliance risks, including risks relating to new or changing regulatory requirements, emerging technologies, industry practices, and business initiatives
  • Develops and utilizes data, analytics, and metrics to identify risks and to measure and improve program execution and maturity

Privacy Program Effectiveness

  • Establish, define & report privacy KPIs via scorecard and drive performance in partnership with business, Global Privacy teams
  • Aligns privacy monitoring program with the global privacy program

Technical & Behavioral Competencies

    • 6 – 8 years of experience in Information Security, additional expertise in Data Privacy highly preferred
    • Working knowledge and understanding of privacy laws and guidelines with respect to Data Privacy & Protection
    • Familiarity with data protection principles and GDPR
    • Any professional qualification of data privacy & protection such as data protection practitioner, CIPP / CIPM preferred
    • Experience of working with legal, audit and compliance teams
    • Experience of developing and maintaining policies, procedures, standards and guidelines
    • Work collaboratively with stakeholders to ensure globally-minded and aligned practices
    • Excellent interpersonal skills and strong background in information security and technology
    • Detail and process oriented and well versed with latest trends
    • Self-starter and able to work independent
    • Analytical skills including attention to detail
    • Confident and professional manner
    • Good interpersonal and verbal communication skills
    • Have tenacity and focus to achieve objectives

Specific Qualifications (if required)

  • BSc. / B.E. / B.Tech (ideal)
  • Any professional qualification of data privacy & protection such as data protection practitioner, CIPP / CIPM preferred
  • Language preference (Mandatory):
    • Fluency in English

Skills Referential

Behavioural Skills: (Please select up to 4 skills)

Ability to collaborate / Teamwork

Attention to detail / rigor

Ability to deliver / Results driven

Creativity & Innovation / Problem solving

Transversal Skills: (Please select up to 5 skills)

Ability to understand, explain and support change

Analytical Ability

Ability to manage a project

Ability to set up relevant performance indicators

Ability to manage / facilitate a meeting, seminar, committee, training…

Education Level:

Bachelor Degree or equivalent

Experience Level

At least 5 years

Other/Specific Qualifications (if required)

SKILLS, EXPERIENCE AND COMPETENCIES

  • BSc. / B.E. / B.Tech (ideal)
  • Any professional qualification of data privacy & protection such as data protection practitioner, CIPP / CIPM preferred
  • Language preference (Mandatory):
    • Fluency in English
               
Primary Location: IN-MH-MumbaiJob Type: Standard / PermanentJob: INFORMATION TECHNOLOGYEducation Level: Bachelor Degree or equivalent (>= 3 years)Experience Level: At least 5 yearsSchedule: Full-time Reference: BNP020960