Manager Third Party Security Assessments Nar Job In Bnp Paribas In India

Job Description - APACAbout BNP Paribas Group: BNPParibas is a top-ranking bank in Europe with an international profile It operates in 71 countries and has almost 199000 employees The Group ranks highly in its three core areas of activity: Domestic Markets and International Financial Services (whose retail banking networks and financial services are grouped together under Retail Banking & Services) and Corporate & Institutional Banking, centered on corporate and institutional clients The Group helps all of its clients (retail, associations, businesses, SMEs, large corporates and institutional) to implement their projects by providing them with services in financing, investment, savings and protection In its Corporate & Institutional Banking and International Financial Services activities, BNPParibas enjoys leading positions in Europe, a strong presence in the Americas and has a solid and fast-growing network in the Asia/Pacific region.

About BNP Paribas India Solutions: Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas Group, a leading bank in Europe with an international reach With delivery centers located in Mumbai and Chennai, we are a 24x7 global delivery center We partner various business lines of BNP Paribas such as Corporate and Institutional Banking, Wealth Management, Retail Banking through three verticals - Information Technology, Operations and Finance Shared Services About Businessline/Function : The Third Party Security Risk Assessments Team is responsible for identifying and assessing risks relating to Information Security, Business Continuity and Physical Security arising out of the Third Parties providing services to BNP Paribas This includes policy, governance, risk management, reporting and ownership of the lifecycle of Security Risk Assessment of the Third Parties.

Job Title: Manager- Third Party Security Assessments - NAR Date: 27/10/2021 Department: India IT Security Location: Chennai Business Line / Function: India IT Security Reports to: (Direct) Vice President, India IT Security Grade: (if applicable) (Functional) Number of Direct Reports: NA Directorship / Registration: NA Position PurposeThis role will be responsible for Managing and Governing the Third Party Security Assessment team for the North American Region based out of Chennai, India Supporting the team in identifying and evaluating potential/recognized risks related to Information Security, Business Continuity and Physical Security This role requires overseeing the Third party Security Assessment program and team, collaborating with relevant stakeholders and SMEs from various related domains and to manage the program governance, Assessments, escalation of risk & reporting through various centric committees as applicable and required by the management Responsibilities Direct Responsibilities

• Work with ISPL Management to assure ISPL NAR Third Party Security Assessment team is meeting ISPL expectations
• Manage ISPL NAR Third Party Security Assessment Team member's day-to-day activities by managing assessor queues, escalations, conflict resolution, and any other general assistance on assessment requirements
• Work with team leadership to develop and deliver metrics on a regular basis (KPI / KRI)
• Periodically reach out to vendors hosting our data regarding current threats to ensure they are taking necessary steps to reduce exposure
• Update/ document relevant TPRM policies and procedures
• Identify and report potential areas of risk/ non-responses to the relevant stakeholders.
  
  Ensure Stakeholder expectation in terms of program governance and management is handled and escalation happen as needed and at appropriate frequency
• Ensure assessments delivered are in compliance to NAR Third Party Security and Third Party Management Office Policies and Procedures
• Closely monitor the progress of assessments assigned to the team and ensure timely completion of assessment within the SLA and escalate as appropriate for any non-compliances or early warning signs related to assessments in pipeline
• Perform Quality Assurance for assessment deliverable from the team before the reports being delivered to related SMEs and stakeholders
• Review services provided by vendor and define scope of assessment based on a questionnaire
• Perform remote Third Party Security assessments
• Defining appropriate risk levels and corrective actions for risk identified during the assessment
• Report on assessment outcomes, risk level and associated recommendations to stakeholders and gain their approval
• Work with NAR team to have corrective action plans entered into system

Technical & Behavioral Competencies

• Strong knowledge in Third Party Security Risk Management, Information Security Risk Management including awareness on well recognized standards/regulations including NIST, ISO 27001:2013, GDPR, NY DFS,SOC2/1
• Strong knowledge in IT security risk assessments, IT Security controls
• Effective verbal, written and interpersonal communication skills, with demonstrated ability to communicate with various levels of management
• Demonstrate excellent relationship management, leadership and conflict management capabilities in order to guide the team
• Proficiency in Microsoft Word, PowerPoint
• Very strong work ethic and ability to deal with confidential information
• Experience with a multicultural environment
• Strong problem-solving and analytical skills

Specific Qualifications (if required)Good to have industry recognized Information Security Certifications (CISM, CISA, CISSP) Skills ReferentialBehavioural Skills: (Please select up to 4 skills) Decision Making Personal Impact / Ability to influence Attention to detail / rigor Creativity & Innovation / Problem solving Transversal Skills: (Please select up to 5 skills) Ability to manage a project Ability to manage / facilitate a meeting, seminar, committee, training Ability to set up relevant performance indicators Ability to develop and adapt a process Ability to develop and leverage networks Education Level: Bachelor Degree or equivalentExperience LevelAt least 7 years Other/Specific Qualifications (if required) Technical & Behavioral Competencies

• Strong knowledge in Third Party Security Risk Management, Information Security Risk Management including awareness on well recognized standards/regulations including NIST, ISO 27001:2013, GDPR, NY DFS,SOC2/1
• Strong knowledge in IT security risk assessments, IT Security controls
• Effective verbal, written and interpersonal communication skills, with demonstrated ability to communicate with various levels of management
• Demonstrate excellent relationship management, leadership and conflict management capabilities in order to guide the team
• Proficiency in Microsoft Word, PowerPoint
• Very strong work ethic and ability to deal with confidential information
• Experience with a multicultural environment
• Strong problem-solving and analytical skills

Other/Specific Qualifications (if required)

• Good to have industry recognized Information Security Certifications (CISM, CISA, CISSP)

Bnp Paribas is looking for .

Bnp Paribas is looking for Any Graduate / Post Graduate profile candidates.