The bank for a changing world

We are looking for

Senior Executive

Apply REF: CIB005073

Job Description – GSO IT Risk Manager


About BNP Paribas Group:

“BNP Paribas Group is a leading European bank with a strong global footprint across 72 markets and more than 202,000 employees. The Group provides corporates, institutional and private investors with product and service solutions tailored to their specific needs. It offers a wide range of financial services covering corporate & institutional banking, wealth management, asset management, insurance, as well as retail banking and consumer financing through strategic partnerships”.

About BNP Paribas India Solutions:

Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas Group, a leading bank in Europe with an international reach. With delivery centers located in Mumbai and Chennai, we are a 24x7 global delivery center. We partner various business lines of BNP Paribas such as Corporate and Institutional Banking, Wealth Management, Retail Banking through three verticals - Information Technology, Operations and Finance Shared Services.

About Business line/ Function :

Beginning in September 2008, the Global Securities Operations (GSO) centre in Chennai offers a wide range of services across the Client Delivery (primarily Investment and Fund Services (IFS), Banking Services Operations (BSO)) and Market & Financing Services (MFS) organisations of BNP Paribas Securities Services. The operations include cash management, global and local custody, global and local settlement, static data management, multi-asset servicing and reconciliations for clearing and custody operations. In addition to these, other services include trade processing and support, fund accounting, data administration, NAV calculations, investment reporting and AFS middle office services.

Operating in a hub and spoke model, GSO provides round-the-clock support to support clients operating in different time zones to provide real-time delivery. The ability to source staff with experience in funds and middle office ensures that GSO delivers consistent quality service. With an average age of 28 years, the dynamic and highly skilled set of individuals brings a diverse cultural and rich educational background to offer innovative servicing solutions.

Job Title:

Manager

Date:

30 Sep 2019

Department:

ITIP

Location:

Chennai, India

Business Line / Function:

Global Securities Operations

Reports to:

(Direct)

Vaibhav SARTANDEL

Grade:

(if applicable)

NA

(Functional)

Vaibhav SARTANDEL

Number of Direct Reports:

None

Directorship / Registration:

NA

 

Position Purpose

IT Risk Manager is responsible to maintain the IT Risk Framework and its associated controls and reporting. The objective of this role is to ensure the execution of information security directives and activities in alignment with BNP Paribas policy. All GSO Risk & Control closure activities are coordinated through this role, including the actual submissions for closure.

Responsibilities

Direct Responsibilities

 

•        Perform Risk and Control Self-Assessment for the IT risks emanating for Global Securities Operations entity from both internally and externally.

•        Develop corrective action plans for IT Security gaps for the entity and ensure risk closure meets BNP Paribas requirements or industry best practices.

•        Implement the Global Control Plan and other Group Risk framework requirements in line with Group Policies and Procedures.

•        Create awareness across the organisation on the developments within IT domain based on the policies, procedures and guidelines issued by Group / Regional / Territory Management.

•        Timely escalation to Senior Management on the open gaps which are unresolved and pose IT risk to the organisation

•        Mitigate risk by analysing the root cause of issues, impacts to business, and required corrective actions and develop technological and security solutions to cover all IT risks

•        Ensure information security compliance and seek opportunities to enhance the efficiency of the information security policies and procedures

•        Play information security advisory and counsel role as needed

•        Serve as liaison to auditors, consultants, and the bank Compliance Committee regarding documentation and review of information security compliance.

 

 

 

Contributing Responsibilities

•        Contribute to the Risk ORC Group Functions requirements including presentation of risk related topics to Governance Forums like Permanent Control Meetings and Internal Control Committees.

•        Review & submit the IT risk reports including KPIs to GSO Management for their oversight and monitoring in line with Service Level Agreements.

Technical & Behavioral Competencies

•        7-10 years of IT Infrastructure/Audit experience, preferably with a Financial Services, Brokerage, or Public Accounting Firm

•        Demonstrated ability to research and apply current information regarding the information security field

•        Consistently demonstrates clear and concise written and verbal communication. Must be able to summarize and communicate technical data to a non-technical audience.

•        Proven influencing and relationship management skills. Must be able to partner with Technology, Production Security and IT security and work within a team.

•        Proven analytical skills

•        CISA, CRISC or CISSP certification a plus

Specific Qualifications (if required)

Skills Referential

Behavioural Skills: (Please select up to 4 skills)

Client focused

Communication skills - oral & written

Ability to collaborate / Teamwork

Creativity & Innovation / Problem solving

Transversal Skills: (Please select up to 5 skills)

Ability to understand, explain and support change

Analytical Ability

Ability to set up relevant performance indicators

Ability to develop and adapt a process

Choose an item.

Education Level:

Bachelor Degree or equivalent

Experience Level

At least 7 years

Other/Specific Qualifications (if required)

 


Position Purpose

IT Risk Manager is responsible to maintain the IT Risk Framework and its associated controls and reporting. The objective of this role is to ensure the execution of information security directives and activities in alignment with BNP Paribas policy. All GSO Risk & Control closure activities are coordinated through this role, including the actual submissions for closure.

Responsibilities

Direct Responsibilities

 

•        Perform Risk and Control Self-Assessment for the IT risks emanating for Global Securities Operations entity from both internally and externally.

•        Develop corrective action plans for IT Security gaps for the entity and ensure risk closure meets BNP Paribas requirements or industry best practices.

•        Implement the Global Control Plan and other Group Risk framework requirements in line with Group Policies and Procedures.

•        Create awareness across the organisation on the developments within IT domain based on the policies, procedures and guidelines issued by Group / Regional / Territory Management.

•        Timely escalation to Senior Management on the open gaps which are unresolved and pose IT risk to the organisation

•        Mitigate risk by analysing the root cause of issues, impacts to business, and required corrective actions and develop technological and security solutions to cover all IT risks

•        Ensure information security compliance and seek opportunities to enhance the efficiency of the information security policies and procedures

•        Play information security advisory and counsel role as needed

•        Serve as liaison to auditors, consultants, and the bank Compliance Committee regarding documentation and review of information security compliance.

 

 

 

Contributing Responsibilities

•        Contribute to the Risk ORC Group Functions requirements including presentation of risk related topics to Governance Forums like Permanent Control Meetings and Internal Control Committees.

•        Review & submit the IT risk reports including KPIs to GSO Management for their oversight and monitoring in line with Service Level Agreements.

Technical & Behavioral Competencies

•        7-10 years of IT Infrastructure/Audit experience, preferably with a Financial Services, Brokerage, or Public Accounting Firm

•        Demonstrated ability to research and apply current information regarding the information security field

•        Consistently demonstrates clear and concise written and verbal communication. Must be able to summarize and communicate technical data to a non-technical audience.

•        Proven influencing and relationship management skills. Must be able to partner with Technology, Production Security and IT security and work within a team.

•        Proven analytical skills

•        CISA, CRISC or CISSP certification a plus

Specific Qualifications (if required)

Skills Referential

Behavioural Skills: (Please select up to 4 skills)

Client focused

Communication skills - oral & written

Ability to collaborate / Teamwork

Creativity & Innovation / Problem solving

Transversal Skills: (Please select up to 5 skills)

Ability to understand, explain and support change

Analytical Ability

Ability to set up relevant performance indicators

Ability to develop and adapt a process

Choose an item.

Education Level:

Bachelor Degree or equivalent

Experience Level

At least 7 years

Other/Specific Qualifications (if required)

 

Primary Location: IN-TN-ChennaiJob Type: Standard / PermanentJob: INFORMATION TECHNOLOGYEducation Level: Bachelor Degree or equivalent (>= 3 years)Experience Level: At least 7 yearsSchedule: Full-time