1. Job search
  2. Lisbon jobs
  3. IT Risk Advisor ITT
IT Risk Advisor ITT
BNP ParibasLisbonUpdate time: November 4,2019
Share Save Job Follow this company
Job Description

BNP Paribas is a leading European bank with an international reach. It has a presence in 73 countries, with more than 192,000 employees – including more than 146,000 in Europe and over 4,000 in Portugal alone.
BNP Paribas is present in Portugal since 1985, having been the first foreign bank to operate in the country. Today, BNP Paribas has several entities operating directly in this territory, offering a wide range of integrated financial solutions to support its clients and their businesses.

Worldwide, the Group has key positions in its three main activities: Domestic Markets and International Financial Services (whose retail-banking networks and financial services are covered by Retail Banking & Services) and Corporate & Institutional Banking, which serves two client franchises: corporate clients and institutional investors. The Group helps all its clients (individuals, community associations, entrepreneurs, SMEs, corporate and institutional clients) to realize their projects through solutions spanning financing, investment, savings and protection insurance.

The Information and Communications Technology (ICT) Risk department is part of the Group Risk Functions within BNP Paribas. It is a part of the 2nd Line Of Defence (2LOD) under the Bank’s Chief Cyber & Technology Risk Officer. Among others, the department has responsibility for identification of key technology risks to the Bank and influencing business and technology partners to take sound risk management decisions.  This is achieved by delivering:
 
  • Application & Infrastructure Risk Assessments working with the Business and Technology teams to identify security issues in existing and new systems, and agree corresponding actions to mitigate or accept risks. Tracking issues and agreed actions to completion.
  • Horizontal Risk Assessments: Assessing technology risks in relation to a particular theme or technology across the organization. Examples could be assessments of the firewall change process, applications processing >$5m per day, applications hosted in the cloud, etc.
  • Vertical Risk Assessments: Assessing risks to a product, service, technology or infrastructure. For instance we may complete a vertical assessment on our remote working solution (including Infrastructure, applications, data, threats etc.) or our Internet connectivity.
  • Partnership to the Business and Technology teams in helping them understand their technology risk profile and influencing their risk management decisions.
  • Recurrent analysis of maturity of controls on all entities of the Group.
Independent Technical Testing (ITT) within RISK ORC ICT in one of the activities of the Information and Communications Technology (ICT) Risk department. BNP Paribas is looking for Lead auditor for the ITT assignments, which will help of the team to identify and reduce risks on the information system (alignment of strategy with business needs, software development life cycle, IT project management, IT architecture, IT security, etc.) and thus improve the Bank business as usual.
 

Role and Responsibilities

 
The Independent Technical Testing expert position is a multi-dimensional role, including in the processes, governance, architecture, network, systems, IT application and cyber security issues. The position will play responsible role in the plan and execution of the assigned evaluations. It will have the skills to strengthen team spirit, develop the skills in various areas of ICT, and ensure the quality, relevance and traceability of all identified gaps.
 
As a Lead Auditor, you will interact directly with clients and all levels of management and will be able to synthesize and popularize technical data and identify risks. Your excellent interpersonal skills and verbal and written communication will help ensure the proper conduct of the evaluations. As a team member, you will also have the opportunity to help improve the evaluation methodology and develop the tools to enhance the level of relevance of the data.
  •  Provide independent advice and timely assurance to management regarding the adequacy and effectiveness of policies, processes, systems and controls.
  • Plan and execute the ITT evaluations.
  • Contribute to the development and implementation of a comprehensive evaluation methodology and related tools to provide consistent reporting within the prescribed time frame.
  • Planning evaluations with clients, auditors and team members.

  • Document and communicate survey results by ensuring the quality, relevance and traceability of identified deficiencies

  • Ensure that full and accurate reports are provided in accordance with the RISK ORC ICT methodology and standards

  • Execute other assigned tasks

PROFILE

  • Master's or equivalent degree in IT Risk/Cybersecurity field or relevant experience
  • Minimum between 4 and 10 years of experience as an IT auditor, preferably in Public Accounting Firm and Internal Audit department, Cybersecurity testing department
  • 7 years of global professional experience
  • Good knowledge of ICT topics
  • Certified professional certifications in the information security sector, such as CISSP, CISA, GCCC, CISM, CRISK, CEH, OSCP or Security+
  • Presenting official deliverables such as PowerPoint presentations, reports or procedures
  • Ability to effectively communicate and make presentations in a structured manner

BNP Paribas is an equal opportunity employer and proud to provide equal employment opportunity to all job seekers. We are actively committed to ensuring that no individual is discriminated against on the grounds of age, disability, gender reassignment, marriage or civil partnership status, pregnancy and maternity, race, religion or belief, sex or sexual orientation. Equity and diversity are at the core of our recruitment policy because we believe that they foster creativity and efficiency which in turn increase performance and productivity. We strive to reflect the society we live in, while keeping with the image of our clients.

Please note that only applications submitted in English will be considered.
In case you are selected for this role, further documentation will be requested to support your hiring process.

Apply on Company WebsiteSee all jobs at BNP Paribas

Get email alerts for the latest"IT Risk Advisor ITT jobs in Lisbon"