About BNP Paribas Group:

BNP Paribas is a top-ranking bank in Europe with an international profile. It operates in 71 countries and has almost 199 000 employees. The Group ranks highly in its three core areas of activity: Domestic Markets and International Financial Services (whose retail banking networks and financial services are grouped together under Retail Banking & Services) and Corporate & Institutional Banking, centred on corporate and institutional clients. The Group helps all of its clients (retail, associations, businesses, SMEs, large corporates and institutional) to implement their projects by providing them with services in financing, investment, savings and protection. In its Corporate & Institutional Banking and International Financial Services activities, BNP Paribas enjoys leading positions in Europe, a strong presence in the Americas and has a solid and fast-growing network in the Asia/Pacific region.

About BNP Paribas India Solutions:

Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, a leading bank in Europe with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 6000 employees, to provide support and develop best-in-class solutions.

About Businessline/Function :

The Technology And Transversals department is part of the Group Risk ORM function within BNP Paribas. It is a part of the second line of defense under the Bank’s Chief Operational Risk Officer. The department has responsibility for identification of key technology risks to the Bank and influencing business and technology partners to take sound risk management decisions.

The Global Operational Resilience & Crisis Management program within GROUP RISK ORM is a critical component in ensuring the Group’s ability to prevent disruptions to its critical services from occurring; continue to meet its objectives if a disruption or incident does occur and return to normalcy, when disruption or crisis is eliminated. This applies to Cyber, Technology, Supply chains, physical infrastructure and People.

Operational resilience management includes planning, integrating, testing and governing activities to ensure that the group can identify and mitigate business and system disruption risks that could lead to before they occur.

Prepare for and respond to disruptive events (realized risks) in a manner that demonstrates command and control of incident response and crises, coordination and service continuity. Scenarios could include but not limited to Cyber Security Incidents, Technology/Systems Outage, People or Process Failures.

Recover and restore mission-critical services and operations following an incident within the agreed risk appetite levels

The above is achieved through main teams such as Cyber Resilience and Cyber Fraud, IT Resilience, Business Continuity Oversight, Crisis Management and Third Party Technology Risk Management.

The Technology And Transversals department is part of the Group Risk ORM function within BNP Paribas. It is a part of the second line of defense under the Bank’s Chief Operational Risk Officer. The department has responsibility for identification of key technology risks to the Bank and influencing business and technology partners to take sound risk management decisions.

The Global Operational Resilience & Crisis Management program within GROUP RISK ORM is a critical component in ensuring the Group’s ability to prevent disruptions to its critical services from occurring; continue to meet its objectives if a disruption or incident does occur and return to normalcy, when disruption or crisis is eliminated. This applies to Cyber, Technology, Supply chains, physical infrastructure and People.

Operational resilience management includes planning, integrating, testing and governing activities to ensure that the group can identify and mitigate business and system disruption risks that could lead to before they occur.

Prepare for and respond to disruptive events (realized risks) in a manner that demonstrates command and control of incident response and crises, coordination and service continuity. Scenarios could include but not limited to Cyber Security Incidents, Technology/Systems Outage, People or Process Failures.

Recover and restore mission-critical services and operations following an incident within the agreed risk appetite levels

The above is achieved through main teams such as Cyber Resilience and Cyber Fraud, IT Resilience, Business Continuity Oversight, Crisis Management and Third Party Technology Risk Management.

Job Title:

Assistant Manager – Cyber Resilience and Cyber Fraud

Date:

27/07/2021

Department:

RISK

Location:

Mumbai

Business Line / Function:

Group RISK ORM

Reports to:

(Direct)

Head of ORTPRM, India CoE

Grade:

(if applicable)

NA

(Functional)

Global Head of Cyber Resilience & Cyber Fraud

Number of Direct Reports:

NA

Directorship / Registration:

NA

 

Position Purpose

  • Purpose:

Cyber Resilience and Cyber Fraud Technology Risk analysis are the main activities of the team. The team is composed of varying experienced members from all around the world. The role will be focused on supporting Cyber Fraud Tech Risk lead in delivery of cyber fraud risk objectives. However, it also involves a strong interaction within the team for delivery of projects such as intelligence and analytics capability. Furthermore, the role also involves interaction within other RISK function teams such as Crisis Management, RISK Intelligence, Anti-Fraud etc. and 1LoD ITRMG/ITG.

Scope: Group/Global

Responsibilities

Direct Responsibilities

The Cyber Resilience and Cyber Fraud Risk Analyst role within Tech and Transversal team is a key role within the Operational Resilience team focused on the following three missions:

  • Anti - Cyber fraud Community: Play an active role in the day-to-day management of anti-Cyber fraud community comprising of cross-functional stakeholders such as Group CRO Office, CISO team, Compliance team and Data privacy team etc.
  •  Cyber Resilience opinion: Participate in the analysis of cyber resilience and cyber fraud documents by providing 2LOD Subject Matter Expert (SME) RISK opinion
  • Cyber Resilience Project : Support the Cyber Resilience Tech RISK Lead in reporting of cyber resilience and cyber fraud activities to the senior stakeholders across the group
  • Analysis of major incidents across the Group in (IT Production, Cyber, Data Breaches,) to provide a Risk opinion and check and challenge the 1LoD. Overall risk oversight on major disruptive incidents’ post-mortem and lessons learnt exercises

Contributing Responsibilities

  • Build a thorough understanding of Global Cybersecurity posture of the Bank in order to provide high impact risk analysis to protect the firm.
  • Provide IT & Cyber risk management (IT, Cyber, Operational Resilience) advisory and guidance to the stakeholders involved.
  • Contribute towards the identification of KPIs for the Operational Resilience Dashboards. Publishing the dashboard on regular basis.
  • You will be part of a global function with opportunities to participate in the Bank’s global ICT Risk initiatives.

Technical & Behavioral Competencies

Essential

 

Functional Skills

  • 5 - 7 years of experience in IT Risk and Cyber Security domains in a financial institution demonstrating a high-level of commitment and self-motivation.
  • Strong demonstrated knowledge of cybersecurity, cyber risk and cyber threats
  • Risk knowledge and awareness of risks combined with enthusiasm and a genuine interest in the role of Risk Assessment, Risk Analysis in business and providing Risk Opinion as a subject matter expert.
  • Working knowledge of global threats to international cyber security, and conversant in the tactics, techniques and procedures used by cyber adversaries.
  • Demonstrates a calm professional approach, with a good understanding of delivery within time constraints and the need to escalate/inform departmental management as appropriate;
  • IT knowledge

.

Tools/technologies/methodologies

  • Excellent understanding of Information Security
  • A good understanding of large-scale technology infrastructure and SOC/CERT operations.
  • Should have worked with Risk Management Tools
  • Strong MS Office skills (core applications)

Mastery of delivering formal deliverables such as PowerPoint presentation, reports or procedures (Level : Proficient)

  •  

Specific Qualifications (if required)

  • One or more Industry-recognized information Security certifications such as a university degree and/or CISSP,  CEH or CHFI

Skills Referential

Behavioural Skills: (Please select up to 4 skills)

Attention to detail/rigor

Communication skills - oral & written

Ability to Collaborate/Teamwork

Active Listening

Transversal Skills: (Please select up to 5 skills)

Ability to manage / facilitate a meeting, seminar, committee, training

Ability to understand, explain and support change

Ability to inspire others & generate people's commitment

Analytical Ability

Education Level:

Bachelor Degree or equivalent

Experience Level

At least 5 years

Other/Specific Qualifications (if required)

Shift Requirements: Day

     
Primary Location
IN-MH-Mumbai
Job Type
Standard / Permanent
Job
RISK
Education Level
Bachelor Degree or equivalent (>= 3 years)
Experience Level
At least 5 years
Schedule
Full-time
Reference
RIS0099341


Discover the different professions within BNP Paribas: Audit, Compliance, Risk and Legal

If it is your ambition to work in a profession that entrusts you with a high degree of responsibility and gives you the chance to contribute to strategic decision-making at BNP Paribas, the following roles might be ideal for you to consider.

Find out more

Why should I apply?

Basically, why would you want to join BNP Paribas over any other company?

BECAUSE YOU'RE THE KIND OF PERSON WHO WANTS...

  • What if we told you that working in our Group may not be quite what you think? BNP Paribas business lines and careers are constantly evolving to meet the expectations of our clients and society as a whole.

  • Feeling good about your job means bringing your whole self to work and being who you are. It’s also about having the resources you need to achieve a healthy work-life balance. Both of these are major commitments at BNP Paribas.

  • At BNP Paribas, developing your skills is as important to us as it is to you. And the skills you learn with us will help you through the rest of your working life.

Find out more