IT Risk and Cyber Security Senior Officer
3 meses atrás
IT RISK AND CYBER SECURITY SENIOR OFFICER (JOB NUMBER: 2402RSK17645)
**About the job**
- This role is in alignment with 2LoD involvement required on BNP Paribas dedicated hybrid Cloud that is core of Cloud Strategy. The scope of the role involves developing, implementing and managing:
1) Cloud technology risk and operational risk management framework including Cloud security controls, operational risk management procedures, standards and processes for identifying, assessing, monitoring, reporting and mitigating operational risks related to dedicated Cloud.
2) Periodic and ad hoc reviews of cloud security controls to ensure they are integrated and operating effectively by the cloud security risk profile solutions
3) Cloud risk register with Cloud security control and risk assessments integrated for Cloud risk reporting to CROs, operational risk officers of poles and entities, IT Group Cloud and Cloud security teams, Cloud service providers, internal and external auditors on operational risk matters.
**Your Main Activities Are**
- Lead and coordinate Cloud technology and operational risk identification, assessment, monitoring, reporting and mitigation activities for the dedicated Cloud using appropriate tools and methodologies
- Develop and maintain the Cloud technology and operational risk management framework, policies, standards, procedures and controls for the Dedicated Cloud services in alignment with BNP Paribas 1LoD and 2LoD risk management policies
- Coordinate and manage the Cloud technology and risk governance structure including committees, forums and reporting lines for the Dedicated Cloud services
- Periodic (weekly, monthly, quarterly, half yearly, annual) and ad hoc reports and dashboards on the Cloud technology and operational risk profile, trends, issues, incidents and remediation action plans for the dedicated Cloud services to senior management, risk management committees, supporting regulatory reporting, internal and external auditors
- Provide Cloud security expert advice and guidance to CRO, operational risk officers, IT Group Cloud program, Group CISO, IT Group production teams, cloud service providers, internal and external auditors on Cloud technology and operational risk matters including risk assessments, controls, testing, audits and remediation
- Participate in multiple Group Cloud program and operations governance committees for Cloud security controls and risk management with Operational Risk officers, IT Group Cloud Program, Group CISO, IT Group Production teams, Cloud service provider, Independent Software Vendors (ISVs) etc. covering topics of Cloud security & ICT risks, Cloud adoption, operational security, remediation actions, etc
- Coordinate with operational risk officers of poles and entities for move to Cloud technology and operational risks
- Review and update minimum baseline Cloud security controls in collaboration with IT Group Production security teams, Cloud security experts, Operational risk officers, ICT risk officers, etc
- Review and update process and workflow for monitoring and reporting of compliance to minimum baseline dedicated hybrid Cloud security controls on Cloud security posture management solutions in collaboration with IT Group Production teams, Cloud service provider, ICT risk officers, operational risk officers, etc
- Develop and identify and update risk reporting methods using automated solutions, leveraging existing or new solutions of Governance, Risk and Compliance (GRC) tools for dedicated hybrid Cloud services asset register, risk register, remediation tracking, etc. Cloud Security Posture Management solutions, operational risk management solutions, IT service management solutions, reporting & dashboard solutions, etc
- Overall high quality report writing, documentation and presentation for dedicated hybrid Cloud security topics of operational risk frameworks and operating models, cloud security baseline controls, identifying control gaps, residual risks, questions to identify root causes, risk implications, short term and long term remediation measures, recommendations and appropriate risk opinions
**Profile and Skills to Success**
- Good knowledge of ICT risks, IT Control, Information Security, Business Continuity, IT operations and IT Audit and assessment methodologies and concepts
- Experience working with ICT risks, business continuity, IT Management and operations, IT risk and IT audit teams
- Ability to articulate risk management concepts in business language
- Excellent written and verbal communication (English)
- Proficient with Microsoft Office Suite
- Prior experience documenting tool requirements to support risk management
- Ability to travel to BNP Paribas and vendor sites, and perform assessments as necessary
- Proven ability to manage issues through to resolution; skilled at making judgment calls
- Ability to successfully multitask and complete difficult assignments within deadlines which may have short lead times
- Ind
-
It And Cybersecurity Risk Officer
2 semanas atrás
Porto, Portugal Euronext Tempo inteiroWorking as IT and Cybersecurity Officer, the successful candidate will be engaged in all areas of the business part of Euronext group and will mainly focus in IT and CyberSecurity across the Group. Non-IT perimeter is also to be considered, even though this is not the first dimension of the role, but can evolve in middle term.He/She will integrate a team of...
-
Information Security Officer
3 meses atrás
Porto, Portugal Roboyo GmbH Tempo inteiroAs Information Security Officer (ISO), you will be responsible for the security of the companys information. You will work closely with senior management, IT departments, and employees to ensure that all security-related systems, procedures, and policies are followed, and that the company is protected from cyber-attacks, data breaches, and other...
-
Cyber Security Risk Management Expert
4 semanas atrás
Porto, Portugal Infineon Technologies Tempo inteiroDo you want to be a part of a global team that's shaping the future of cyber security?Are you looking for an exciting, challenge that combines cyber security, software development, and data analysis?Join us as a Cyber Security Risk Management Expert at Infineon Porto, where you will develop and refine quantitative cyber risk assessment methodologies, work...
-
Information Security Officer
Há 5 dias
Porto, Portugal Dellent Consulting Tempo inteiroInformation Security Officer (Governance, Risk and Compliance)In this project you'll contact with the European stock market area. Despite its development center being located in Porto and all administrative support in Lisbon, you will be part of a multicultural team that is spread across several European cities.We are seeking a Information Security Officer...
-
It And Cybersecurity Risk Officer
2 semanas atrás
Porto, Portugal Euronext Tempo inteiro.Working as IT and Cybersecurity Officer, the successful candidate will be engaged in all areas of the business part of Euronext group and will mainly focus in IT and CyberSecurity across the Group. Non-IT perimeter is also to be considered, even though this is not the first dimension of the role, but can evolve in middle term. He/She will integrate a team...
-
It And Cybersecurity Risk Officer
2 semanas atrás
Porto, Portugal Euronext Tempo inteiro.Working as IT and Cybersecurity Officer, the successful candidate will be engaged in all areas of the business part of Euronext group and will mainly focus in IT and CyberSecurity across the Group. Non-IT perimeter is also to be considered, even though this is not the first dimension of the role, but can evolve in middle term.He/She will integrate a team of...
-
Cyber Security Risk Management Expert
2 semanas atrás
Porto, Portugal Infineon Technologies Tempo inteiro.Do you want to be a part of a global team that's shaping the future of cyber security? Are you looking for an exciting challenge that combines cyber security, software development, and data analysis? Join us as a Cyber Security Risk Management Expert at Infineon Porto, where you will develop and refine quantitative cyber risk assessment methodologies, work...
-
Cyber Security Risk Management Expert
2 semanas atrás
Porto, Portugal Infineon Technologies Tempo inteiro.Do you want to be a part of a global team that's shaping the future of cyber security? Are you looking for an exciting challenge that combines cyber security, software development, and data analysis? Join us as a Cyber Security Risk Management Expert at Infineon Porto, where you will develop and refine quantitative cyber risk assessment methodologies, work...
-
IT Risk and Cyber Security
4 meses atrás
Porto, Portugal AxiansPT Tempo inteiroAt **AXIANS** we seek the right talent, for the right place. We work daily to involve our people in a collaborative and inclusive environment, with a culture of proximity. It is also part of our culture to care about the environment and to carry out actions of social and environmental corporate responsibility. This could be your opportunity to join a...
-
Chief Information Security Officer
3 semanas atrás
Porto, Portugal Tn Portugal Tempo inteiro.Chief Information Security Officer - Porto Job Description: Your mission We are a leading blockchain asset custody platform, committed to providing secure and reliable services to our clients. To strengthen our team, we are looking for an experienced and motivated Chief Information Security Officer who wants to shape the future of the company with us. In...
-
Chief Information Security Officer
3 semanas atrás
Porto, Portugal Tn Portugal Tempo inteiro.Chief Information Security Officer - PortoJob Description:Your missionWe are a leading blockchain asset custody platform, committed to providing secure and reliable services to our clients. To strengthen our team, we are looking for an experienced and motivated Chief Information Security Officer who wants to shape the future of the company with us.In this...
-
Cyber Security Risk Management Expert
4 semanas atrás
Porto, Portugal Infineon Technologies Tempo inteiroDo you want to be a part of a global team that's shaping the future of cyber security? Are you looking for an exciting, challenge that combines cyber security, software development, and data analysis? Join us as a Cyber Security Risk Management Expert at Infineon Porto, where you will develop and refine quantitative cyber risk assessment methodologies, work...
-
Cyber Security Risk Management Expert
2 semanas atrás
Porto, Portugal Infineon Technologies Tempo inteiroDo you want to be a part of a global team that's shaping the future of cyber security? Are you looking for an exciting challenge that combines cyber security, software development, and data analysis? Join us as a Cyber Security Risk Management Expert at Infineon Porto, where you will develop and refine quantitative cyber risk assessment methodologies, work...
-
Information Security Officer
2 meses atrás
Porto, Portugal Euronext Tempo inteiroInformation Security Officer - Governance, Risk and Compliance page is loaded Information Security Officer - Governance, Risk and Compliance Apply locations Porto time type Full time posted on Posted 2 Days Ago job requisition id R15459 Key accountabilities Assisting with the implementation and maintenance of the Information Security Programme; Assisting...
-
IT Risk Analyst and Reporting Manager
Há 11 horas
Porto, Portugal Winning Tempo inteiroAt WINNING CONSULTING we are looking for an **IT Risk Analyst and Reporting Manager** **profile to join our teams in a project for an important client in the Banking Sector - _(Hybrid)._ - To achieve this, you will need to have:_ - Certification ISO 27001 - Certification ISO 27005 Risk Manager and/or EBIOS Risk Manager - Knowledge of a risk management tool...
-
IT and Cybersecurity Risk Officer
4 semanas atrás
Porto, Portugal Euronext Tempo inteiroHe/She will integrate a team of Risk and BCM expert and can leverage on their expertise and knowledge of the organisation. He/She will contribute in implementing the company’s policies and ensuring the consistency of the Risk Management Framework, such as: - support in identifying and documenting with the business and the local coordinators (located in...
-
It Risk Control And Audit Officer
1 semana atrás
Porto, Portugal Inetum Tempo inteiroWe are looking for a IT Risk Control and Audit Officer to join our Inetum Team and be a part of a work culture focused on innovation!Location: Porto or Lisbon Main Responsibilities: The audit monitoring officer ensures the running of all the ongoing audits.Perform a global follow-up regarding ongoing audits, recommendations, and related actions.Reporting of...
-
Cyber Security Risk Management Expert
4 semanas atrás
Porto, Portugal Infineon Technologies Tempo inteiroAs a Cyber Security Risk Management Expert, you will develop and implement cyber risk assessment methodologies and software tools, while collaborating with cross-functional teams to analyze data and integrate it into other systems.In your new role you will: Develop and refine quantitative cyber risk assessment methodologies Design, implement, test and...
-
Cyber Security Trainee
5 meses atrás
Porto, Portugal Infineon Technologies Shared Service Center, Unipessoal Lda Tempo inteiroAs a Cyber Security Trainee, you will work in an international team, being part of our Consulting Services for Cyber Security. You will work alongside your colleagues in a dynamic and flexible environment, providing support to improve global cyber security processes and initiatives. In your new role, you will: - Participate in **various cyber security...
-
Information Security Officer
Há 4 dias
Porto, Portugal Euronext Tempo inteiroInformation Security Officer - Governance, Risk and Compliance Key accountabilities Assisting with the implementation and maintenance of the Information Security Programme; Assisting with efforts to align internal security practices with industry best practices and security frameworks commensurate with strategy and the expectations of our clients and...
