We are looking for

Manager (APAC Third Party Risk Management)

Apply REF: BNP020682

Responsibilities

Direct Responsibilities

  • Manage APAC Third Party Risk Management program following the SLA for governing vendor assessments, reporting & other activities in relation to the Third Party Risk Management project.
  • Complying APAC TPRM program with Group Policies and procedure, local & regulatory requirements across APAC.
  • Closely monitor the progress of TPSR assessments across APAC and ensure timely completion of assessment for in scope vendors, escalation and reporting to local & regional managements.
  • Collaborate with local security teams across APAC territories for cascading TPRM framework, policies, procedures and approach to drive the program efficiently.
  • Collaborate with Business Continuity & Application Security teams across APAC territories for necessary coverage of BCM & Appsec reviews for Third Party vendors & applications/systems.
  • Perform Quality review for assessment report delivered by local and territory local security teams for adequacy of coverage of risk areas.
  • Responsible for TPRM control testing is performed by second LOD (RISK ORC), Inspection General, in relation to the Global/ Regional TPRM policies, regulatory guidelines in APAC territory.
  • Be the central POC for APAC for handling queries with regard to TPRM topics from global, regional and local teams and interest parties.
  • Participating and presenting Supplier risks in periodic risk centric committees at territory and regional level.
  • Responsible for managing projects, tooling in aligning TPRM activities and workflows, and managing maintaining all documentation, repository of assessment data in central database.
  • Responsible for reconciling and presenting regulatory reporting in technology risk committee’s at territory & regional level for entire APAC.
  • Identifying and reporting/ escalating potential areas of risk/ non-responses to stakeholders and Sr. Management.

Contributing Responsibilities

  • Closely working with APAC Business Information Security to adopt best practices in region on outsourcing risk management guidelines covering various regulators.
  • Participating in initiatives taken by group or region to enhance existing Third party risk management policies, processes, methodologies in the best interest of BNPP Group.
  • Participate in local, territory & regional statutory, information security & regulatory audits pertaining to compliance with Third Party risk management framework and compliance for APAC.

Responsibilities

Direct Responsibilities

  • Manage APAC Third Party Risk Management program following the SLA for governing vendor assessments, reporting & other activities in relation to the Third Party Risk Management project.
  • Complying APAC TPRM program with Group Policies and procedure, local & regulatory requirements across APAC.
  • Closely monitor the progress of TPSR assessments across APAC and ensure timely completion of assessment for in scope vendors, escalation and reporting to local & regional managements.
  • Collaborate with local security teams across APAC territories for cascading TPRM framework, policies, procedures and approach to drive the program efficiently.
  • Collaborate with Business Continuity & Application Security teams across APAC territories for necessary coverage of BCM & Appsec reviews for Third Party vendors & applications/systems.
  • Perform Quality review for assessment report delivered by local and territory local security teams for adequacy of coverage of risk areas.
  • Responsible for TPRM control testing is performed by second LOD (RISK ORC), Inspection General, in relation to the Global/ Regional TPRM policies, regulatory guidelines in APAC territory.
  • Be the central POC for APAC for handling queries with regard to TPRM topics from global, regional and local teams and interest parties.
  • Participating and presenting Supplier risks in periodic risk centric committees at territory and regional level.
  • Responsible for managing projects, tooling in aligning TPRM activities and workflows, and managing maintaining all documentation, repository of assessment data in central database.
  • Responsible for reconciling and presenting regulatory reporting in technology risk committee’s at territory & regional level for entire APAC.
  • Identifying and reporting/ escalating potential areas of risk/ non-responses to stakeholders and Sr. Management.

Contributing Responsibilities

  • Closely working with APAC Business Information Security to adopt best practices in region on outsourcing risk management guidelines covering various regulators.
  • Participating in initiatives taken by group or region to enhance existing Third party risk management policies, processes, methodologies in the best interest of BNPP Group.
  • Participate in local, territory & regional statutory, information security & regulatory audits pertaining to compliance with Third Party risk management framework and compliance for APAC.
Primary Location: IN-MH-MumbaiJob Type: Standard / PermanentJob: INFORMATION TECHNOLOGYEducation Level: Bachelor Degree or equivalent (>= 3 years)Experience Level: At least 7 yearsSchedule: Full-time Reference: BNP020682