The bank for a changing world

We are looking for

Security Officer- IT Audit

Apply REF: TES000972



About BNP Paribas Group:

Worldwide, BNP Paribas has a presence in 74 countries with more than 190,000 employees. It has key positions in its three main activities: Domestic Markets and International Financial Services (whose retail-banking networks and financial services are covered by Retail Banking & Services) and Corporate & Institutional Banking, which serves two client franchises: corporate clients and institutional investors. In Asia Pacific, BNP Paribas is one of the best-positioned international financial institutions with an uninterrupted presence since 1860. Currently with over 15,000 employees* and a presence in 14 markets, it provides clients with product and service solutions tailored to their specific needs, and continues to develop its franchise in the region.



About BNP Paribas India Solutions:

Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas Group, a leading bank in Europe with an international reach. With delivery centers located in Mumbai and Chennai, we are a 24x7 global delivery center. We partner various business lines of BNP Paribas such as Corporate and Institutional Banking, Wealth Management, Retail Banking through three verticals - Information Technology, Operations and Finance Shared Services.



About Businessline/Function :

The role is to deliver Risk Assessments and be a Security Champion to the business in APAC, with focus on emerging and existing application of the Bank and utilizing Agile techniques. This test Engineer/analyst will closely work with APAC regional BUIT and Development to perform application security tasks 





Job Title:

Test Engineer

Date:

June 2019

Department:

TCoE ASR

Location:

Mumbai

Business Line / Function:

TCOE

Reports to:

(Direct)

--

Grade:

(if applicable)

(Functional)

Number of Direct Reports:

0

Directorship / Registration:

NA

 

Position Purpose

The role is to deliver Risk Assessments and be a Security Champion to the business in APAC, with focus on emerging and existing application of the Bank and utilizing Agile techniques. This security risk manager will closely work with regional BUIT and Development to perform application security tasks

Responsibilities

Direct Responsibilities

- This role is primary responsible for risk assessment engagement in projects and existing applications from all APAC business units, ensuring that IT risk is properly recognized, assessed and mitigated, and strong risk management strategies, tools, framework and standards are in place. This role will coordinate across APAC IT Security functions, identifying and delivering solutions to digital risk issues and proactively identifying improvements

- Function as an extended Security Risk Manager for the respective business unit and assist them in their BAU activities and operations.

- Work closely with asset owners or representatives and technical staff to communicate, drive and track the implementation/remediation of security recommendation/findings

- Perform Firewall Pre-Change Review for APAC on projects. Take part of the network firewall rules approval process, by reviewing and approving FW requests

 

Contributing Responsibilities

This role is primary responsible for risk assessment engagement in projects and existing applications from all APAC business units, ensuring that IT risk is properly recognized, assessed and mitigated, and strong risk management strategies, tools, framework and standards are in place. This role will coordinate across APAC IT Security functions, identifying and delivering solutions to digital risk issues and proactively identifying improvements

- Function as an extended Security Risk Manager for the respective business unit and assist them in their BAU activities and operations.

- Work closely with asset owners or representatives and technical staff to communicate, drive and track the implementation/remediation of security recommendation/findings

- Perform Firewall Pre-Change Review for APAC on projects. Take part of the network firewall rules approval process, by reviewing and approving FW requests

Technical & Behavioral Competencies

- Good communication skills

- Knowledge of application security controls (Access control mechanisms and Data Security)

- Should have IT audit background

- Knowledge of firewall rules and network devices

- Good knowledge of IT security (defense in depth)

Specific Qualifications (if required)

Any technical certification (CEH/ISO27001) will be a value addition

- Immediate joiners will be preferred

Skills Referential

Behavioural Skills:

Ability to collaborate / Teamwork

Ability to deliver / Results driven

Organizational skills

Choose an item.

Transversal Skills:

Ability to understand, explain and support change

Analytical Ability

Ability to develop others & improve their skills

Ability to develop and adapt a process

Ability to set up relevant performance indicators

Education Level:

Bachelor Degree or equivalent

Experience Level

At least 2 years

Other/Specific Qualifications (if required)

 




 NA

Primary Location: IN-MH-MumbaiJob Type: Standard / PermanentJob: INFORMATION TECHNOLOGYEducation Level: Bachelor Degree or equivalent (>= 3 years)Experience Level: At least 3 yearsSchedule: Full-time Behavioural competency: Ability to collaborate / TeamworkTransversal competency: Ability to manage a project, Ability to manage / facilitate a meeting, seminar, committee, training…, Ability to develop others & improve their skills, Ability to inspire others & generate people's commitment