Information Security


About BNP Paribas Group:

BNP Paribas is a top-ranking bank in Europe with an international profile. It operates in 71 countries and has almost 199 000 employees. The Group ranks highly in its three core areas of activity: Domestic Markets and International Financial Services (whose retail banking networks and financial services are grouped together under Retail Banking & Services) and Corporate & Institutional Banking, centred on corporate and institutional clients. The Group helps all of its clients (retail, associations, businesses, SMEs, large corporates and institutional) to implement their projects by providing them with services in financing, investment, savings and protection. In its Corporate & Institutional Banking and International Financial Services activities, BNP Paribas enjoys leading positions in Europe, a strong presence in the Americas and has a solid and fast-growing network in the Asia/Pacific region.

About BNP Paribas India Solutions:

Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, a leading bank in Europe with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 6000 employees, to provide support and develop best-in-class solutions.

About Business line/Function : Information Security and BCM

Information security and BCM team are responsible to perform the security assessment of all new/existing infrastructure and application projects. Also, responsible to assess business continuity requirement of each team and project based on the criticality and streamline the process to achieve the requirement.

Job Title:

N/A

Date:

Nov 2020

Department:

APAC SecRM Support

Location:

Mumbai

Business Line / Function:

Information Security and BCM

Reports to:

(Direct)

Deepak Mishra

Grade:

(if applicable)

(Functional)

Number of Direct Reports:

Directorship / Registration:

NA

Position Purpose

The role is perform the security risk management and application security review of the BNPP applications. Candidate will closely work with APAC BUIT and IT infrastructure team to review the security controls which are applied to secure the IT infrastructure or application and its corresponding data

Responsibilities

Direct Responsibilities

  • Perform security risk management and monitoring for the new/existing IT infrastructure or application
  • Perform application  architecture and firewall rules review
  • Liaise with the respective application or asset owner to perform the application security review
  • Understand the security policies and procedures to recommend the remediation action plan for any identified risk or gap in the security implementation of IT infrastructure or application
  • Provide and discuss security posture report weekly or monthly in the steerco meetings and update the required actions to the respective stakeholders
  • Follow-up with the risk requester or owner for the closure or further actions

Contributing Responsibilities

  • Extended knowledge of IT infrastructure & network and application (Web, Client-Server, payment systems) security reviews
  • Provide consultation and recommendations on application security controls for the central region

Technical & Behavioral Competencies

  • Good communication skills
  • Must have knowledge of risk assessment and management
  • Good understanding of the IT infrastructure and application architecture
  • Should have worked on IT infrastructure and application controls review
  • Fair understanding of the authentication and access management controls
  • Good understanding of Data Security and controls associated with it
  • Should have IT audit or risk management background
  • Good knowledge of IT security (defense in depth)

Specific Qualifications (if required)

  • Any technical certification (CEH/ISO27001/CISA) will be a value addition

Skills Referential

Behavioural Skills: (Please select up to 4 skills)

Ability to collaborate / Teamwork

Communication skills - oral & written

Ability to deliver / Results driven

Organizational skills

Transversal Skills: (Please select up to 5 skills)

Ability to understand, explain and support change

Analytical Ability

Ability to develop others & improve their skills

Ability to develop and adapt a process

Ability to set up relevant performance indicators

Education Level:

Bachelor Degree or equivalent

Experience Level

At least 3 years

Other/Specific Qualifications (if required)

               

Technical & Behavioral Competencies

- Good communication skills

- Must have knowledge of risk assessment and management

- Good understanding of the IT infrastructure and application architecture

- Should have worked on IT infrastructure and application controls review

- Fair understanding of the authentication and access management controls - Good understanding of Data Security and controls associated with it

- Should have IT audit or risk management background - Good knowledge of IT security (defense in depth)

Skills Referential Behavioural Skills:

- Ability to collaborate / Teamwork Communication skills

- oral & written Ability to deliver / Results driven

- Organizational skills

Transversal Skills:

Ability to understand, explain and support change

- Analytical Ability

- Ability to develop others & improve their skills

- Ability to develop and adapt a process

- Ability to set up relevant performance indicators

Education Level:

- Bachelor Degree or equivalent

- Any technical certification (ISO27001/CISA/CRISC) will be a value addition

Experience Level

- At least 3 years

Primary Location
IN-MH-Mumbai
Job Type
Standard / Permanent
Job
INFORMATION TECHNOLOGY
Education Level
Bachelor Degree or equivalent (>= 3 years)
Experience Level
At least 3 years
Schedule
Full-time
Reference
INF140921


Discover the different professions within BNP Paribas: IT, Tech and Data

BNP Paribas is not just a financial services group. We’re also a tech company. Information systems, data and tools are central to our DNA, and offer a very broad range of career opportunities!

Find out more

Why should I apply?

Basically, why would you want to join BNP Paribas over any other company?

BECAUSE YOU'RE THE KIND OF PERSON WHO WANTS...

  • What if we told you that working in our Group may not be quite what you think? BNP Paribas business lines and careers are constantly evolving to meet the expectations of our clients and society as a whole.

  • Feeling good about your job means bringing your whole self to work and being who you are. It’s also about having the resources you need to achieve a healthy work-life balance. Both of these are major commitments at BNP Paribas.

  • At BNP Paribas, developing your skills is as important to us as it is to you. And the skills you learn with us will help you through the rest of your working life.

Find out more