IT Risk and Cyber Security Senior Officer
7 meses atrás
IT RISK AND CYBER SECURITY SENIOR OFFICER (JOB NUMBER: 2402RSK17645)
**About the job**
- This role is in alignment with 2LoD involvement required on BNP Paribas dedicated hybrid Cloud that is core of Cloud Strategy. The scope of the role involves developing, implementing and managing:
1) Cloud technology risk and operational risk management framework including Cloud security controls, operational risk management procedures, standards and processes for identifying, assessing, monitoring, reporting and mitigating operational risks related to dedicated Cloud.
2) Periodic and ad hoc reviews of cloud security controls to ensure they are integrated and operating effectively by the cloud security risk profile solutions
3) Cloud risk register with Cloud security control and risk assessments integrated for Cloud risk reporting to CROs, operational risk officers of poles and entities, IT Group Cloud and Cloud security teams, Cloud service providers, internal and external auditors on operational risk matters.
**Your Main Activities Are**
- Lead and coordinate Cloud technology and operational risk identification, assessment, monitoring, reporting and mitigation activities for the dedicated Cloud using appropriate tools and methodologies
- Develop and maintain the Cloud technology and operational risk management framework, policies, standards, procedures and controls for the Dedicated Cloud services in alignment with BNP Paribas 1LoD and 2LoD risk management policies
- Coordinate and manage the Cloud technology and risk governance structure including committees, forums and reporting lines for the Dedicated Cloud services
- Periodic (weekly, monthly, quarterly, half yearly, annual) and ad hoc reports and dashboards on the Cloud technology and operational risk profile, trends, issues, incidents and remediation action plans for the dedicated Cloud services to senior management, risk management committees, supporting regulatory reporting, internal and external auditors
- Provide Cloud security expert advice and guidance to CRO, operational risk officers, IT Group Cloud program, Group CISO, IT Group production teams, cloud service providers, internal and external auditors on Cloud technology and operational risk matters including risk assessments, controls, testing, audits and remediation
- Participate in multiple Group Cloud program and operations governance committees for Cloud security controls and risk management with Operational Risk officers, IT Group Cloud Program, Group CISO, IT Group Production teams, Cloud service provider, Independent Software Vendors (ISVs) etc. covering topics of Cloud security & ICT risks, Cloud adoption, operational security, remediation actions, etc
- Coordinate with operational risk officers of poles and entities for move to Cloud technology and operational risks
- Review and update minimum baseline Cloud security controls in collaboration with IT Group Production security teams, Cloud security experts, Operational risk officers, ICT risk officers, etc
- Review and update process and workflow for monitoring and reporting of compliance to minimum baseline dedicated hybrid Cloud security controls on Cloud security posture management solutions in collaboration with IT Group Production teams, Cloud service provider, ICT risk officers, operational risk officers, etc
- Develop and identify and update risk reporting methods using automated solutions, leveraging existing or new solutions of Governance, Risk and Compliance (GRC) tools for dedicated hybrid Cloud services asset register, risk register, remediation tracking, etc. Cloud Security Posture Management solutions, operational risk management solutions, IT service management solutions, reporting & dashboard solutions, etc
- Overall high quality report writing, documentation and presentation for dedicated hybrid Cloud security topics of operational risk frameworks and operating models, cloud security baseline controls, identifying control gaps, residual risks, questions to identify root causes, risk implications, short term and long term remediation measures, recommendations and appropriate risk opinions
**Profile and Skills to Success**
- Good knowledge of ICT risks, IT Control, Information Security, Business Continuity, IT operations and IT Audit and assessment methodologies and concepts
- Experience working with ICT risks, business continuity, IT Management and operations, IT risk and IT audit teams
- Ability to articulate risk management concepts in business language
- Excellent written and verbal communication (English)
- Proficient with Microsoft Office Suite
- Prior experience documenting tool requirements to support risk management
- Ability to travel to BNP Paribas and vendor sites, and perform assessments as necessary
- Proven ability to manage issues through to resolution; skilled at making judgment calls
- Ability to successfully multitask and complete difficult assignments within deadlines which may have short lead times
- Ind
-
Porto, Portugal BNP Paribas Tempo inteiro**About the job** - IT Risk and Cyber Security Officer’s mission is to ensure IT and Cyber risks are managed properly. It plays a key role in securing information systems. By monitoring, detecting, investigating, analyzing, and responding to security events, this Officer is focused in the adaptations, deployment and maintenance of the IT and Cyber Risk...
-
Porto, Portugal BNP Paribas Tempo inteiro**About the job** - IT Risk and Cyber Security Officer’s mission is to ensure IT and Cyber risks are managed properly. It plays a key role in securing information systems. By monitoring, detecting, investigating, analyzing, and responding to security events, this Officer is focused in the adaptations, deployment and maintenance of the IT and Cyber Risk...
-
IT Risk and Cyber Security Officer
1 semana atrás
Porto, Portugal BNP Paribas Tempo inteiro**About the job** - IT Risk and Cyber Security Officer’s mission is to ensure IT and Cyber risks are managed properly. It plays a key role in securing information systems. By monitoring, detecting, investigating, analyzing, and responding to security events, this Officer is focused in the adaptations, deployment and maintenance of the IT and Cyber Risk...
-
IT Risk and Cyber Security Officer
Há 1 mês
Porto, Portugal BNP Paribas Tempo inteiro**About the job** - IT Risk and Cyber Security Officer’s mission is to ensure IT and Cyber risks are managed properly. It plays a key role in securing information systems. By monitoring, detecting, investigating, analyzing, and responding to security events, this Officer is focused in the adaptations, deployment and maintenance of the IT and Cyber Risk...
-
IT Risk and Cyber Governance Officer
2 meses atrás
Porto, Portugal Noesis Portugal Tempo inteiro**Main Tasks and Responsibilities**: - Implementing cyber governance practices - Ensuring the steering of security standards, regulations and best practices to protect IT assets and sensitive data. - Define IT security policies within the scope - Monitor the formalization of cyber controls - Perform a reporting of entity conformity level to the top...
-
IT Risk and Cyber Governance Officer
3 meses atrás
Porto, Portugal Noesis Tempo inteiro**IT Risk and Cyber Governance Officer**: - Porto - Published on October 25, 2024Description **Main Tasks and Responsibilities**: - Implementing cyber governance practices - Ensuring the steering of security standards, regulations and best practices to protect IT assets and sensitive data. - Define IT security policies within the scope - Monitor the...
-
IT and Cybersecurity Risk Officer
4 semanas atrás
Porto, Portugal Photocentric Tempo inteiroOur client, Euronext, is recruiting a JIT and Cybersecurity Risk Officer to join an international team. **Client Details** Euronext is the leading pan-European market infrastructure, shaping capital markets for future generations. Its mission is to connect European economies to global capital markets, to accelerate innovation and sustainable growth....
-
It And Cybersecurity Risk Officer
4 semanas atrás
Porto, Portugal Photocentric Tempo inteiroOur client, Euronext, is recruiting a JIT and Cybersecurity Risk Officer to join an international team.Client Details Euronext is the leading pan-European market infrastructure, shaping capital markets for future generations. Its mission is to connect European economies to global capital markets, to accelerate innovation and sustainable growth. Euronext is...
-
It And Cybersecurity Risk Officer
Há 1 mês
Porto, Portugal Buscojobs Portugal Tempo inteiroOur client, Euronext, is recruiting a JIT and Cybersecurity Risk Officer to join an international team.Client DetailsEuronext is the leading pan-European market infrastructure, shaping capital markets for future generations. Its mission is to connect European economies to global capital markets, to accelerate innovation and sustainable growth. Euronext is...
-
It Risk And Cyber Governance Officer
3 meses atrás
Porto, Portugal Phiture Tempo inteiroMain Tasks And ResponsibilitiesNoesis is looking for candidates with the following profile:Implementing cyber governance practicesEnsuring the steering of security standards, regulations and best practices to protect IT assets and sensitive data.Define IT security policies within the scopeMonitor the formalization of cyber controlsPerform a reporting of...
-
It Risk And Cyber Governance Officer
3 meses atrás
Porto, Portugal Phiture Tempo inteiroMain Tasks And Responsibilities Noesis is looking for candidates with the following profile: Implementing cyber governance practices Ensuring the steering of security standards, regulations and best practices to protect IT assets and sensitive data. Define IT security policies within the scope Monitor the formalization of cyber controls Perform a reporting...
-
It Risk And Cyber Governance Officer
3 meses atrás
Porto, Portugal Phiture Tempo inteiroMain Tasks And ResponsibilitiesNoesis is looking for candidates with the following profile:Implementing cyber governance practicesEnsuring the steering of security standards, regulations and best practices to protect IT assets and sensitive data.Define IT security policies within the scopeMonitor the formalization of cyber controlsPerform a reporting of...
-
Business Analyst
Há 1 mês
Porto, Portugal Dellent Consulting Tempo inteiroBusiness Analyst (IT Risk and Cyber Security)In this project, you will be able to contact with one of the key players in banking in the EU and around the world. Thus, you will be part of a multicultural team that is spread across more than 50 countries and you will help develop solutions in one of these three areas: investments, business solutions or...
-
Euronext | It And Cybersecurity Risk Officer
2 meses atrás
Porto, Portugal Michael Page Tempo inteiroLeading pan-European market infrastructurePorto | Hybrid Regime Sobre o nosso cliente Euronext is the leading pan-European market infrastructure, shaping capital markets for future generations. Its mission is to connect European economies to global capital markets, to accelerate innovation and sustainable growth. Euronext is located in 18 countries across...
-
It Risk Officer
Há 2 dias
Porto, Portugal Axians Portugal Tempo inteiroAt AXIANS, we seek the right talent, for the right place.We work daily to involve our people in a collaborative and inclusive environment, with a culture of proximity.It is also part of our culture to care about the environment and to carry out actions of social and environmental corporate responsibility.This could be your opportunity to join a project of...
-
Information Security Officer
Há 7 dias
Porto, Portugal Roboyo GmbH Tempo inteiroAs Information Security Officer (ISO), you will be responsible for the security of the companys information. You will work closely with senior management, IT departments, and employees to ensure that all security-related systems, procedures, and policies are followed, and that the company is protected from cyber-attacks, data breaches, and other...
-
It Risk Officer
Há 4 dias
Porto, Portugal Axianspt Tempo inteiroAt AXIANS we seek the right talent, for the right place.We work daily to involve our people in a collaborative and inclusive environment, with a culture of proximity.It is also part of our culture to care about the environment and to carry out actions of social and environmental corporate responsibility.This could be your opportunity to join a project of...
-
Porto, Porto, Portugal Buscojobs Portugal Tempo inteiroJob DescriptionWe are seeking a skilled Cyber Resilience Strategist to join our team at Euronext, a leading pan-European market infrastructure. As a key member of our risk management team, you will play a crucial role in shaping the future of capital markets.About UsEuronext is a dynamic company that connects European economies to global capital markets,...
-
Information Security Officer | Multinational Group
2 meses atrás
Porto, Portugal Michael Page Tempo inteiroJoin a Consumer Services company Join a dynamic team Sobre o nosso cliente Our client is a Consumer Services Multinational Group.Descrição IT Security Framework: Development, implementation and maintenance of security policies, standards, and procedures aligned with industry best practices, regulatory requirements and internal guidelines (aligned with Data...
-
Cyber Security and Risk Management Professional
4 semanas atrás
Porto, Porto, Portugal Infineon Technologies Tempo inteiroCompany OverviewWe are a leading global provider of semiconductor solutions for power systems and IoT. Our mission is to drive innovation and customer success while caring for our people and empowering them to reach ambitious goals.About the RoleWe are seeking an experienced Cyber Security Risk and Awareness Expert to join our team in Porto, Portugal. As a...
