Cloud Risk and Cyber Security Senior Officer
2 semanas atrás
**About the job**
This role is in alignment with 2LoD involvement required on BNP Paribas dedicated hybrid Cloud that is core of Cloud Strategy. The scope of the role involves developing, implementing and managing:
1) Cloud technology risk and operational risk management framework including Cloud security controls, operational risk management procedures, standards and processes for identifying, assessing, monitoring, reporting and mitigating operational risks related to dedicated Cloud.
2) Periodic and ad hoc reviews of cloud security controls to ensure they are integrated and operating effectively by the cloud security risk profile solutions
3) Cloud risk register with Cloud security control and risk assessments integrated for Cloud risk reporting to CROs, operational risk officers of poles and entities, IT Group Cloud and Cloud security teams, Cloud service providers, internal and external auditors on operational risk matters.
**Your Main Activities Are**
Lead and coordinate Cloud technology and operational risk identification, assessment, monitoring, reporting and mitigation activities for the dedicated Cloud using appropriate tools and methodologies
Develop and maintain the Cloud technology and operational risk management framework, policies, standards, procedures and controls for the Dedicated Cloud services in alignment with BNP Paribas 1LoD and 2LoD risk management policies
Coordinate and manage the Cloud technology and risk governance structure including committees, forums and reporting lines for the Dedicated Cloud services
Periodic (weekly, monthly, quarterly, half yearly, annual) and ad hoc reports and dashboards on the Cloud technology and operational risk profile, trends, issues, incidents and remediation action plans for the dedicated Cloud services to senior management, risk management committees, supporting regulatory reporting, internal and external auditors
Provide Cloud security expert advice and guidance to CRO, operational risk officers, IT Group Cloud program, Group CISO, IT Group production teams, cloud service providers, internal and external auditors on Cloud technology and operational risk matters including risk assessments, controls, testing, audits and remediation
Participate in multiple Group Cloud program and operations governance committees for Cloud security controls and risk management with Operational Risk officers, IT Group Cloud Program, Group CISO, IT Group Production teams, Cloud service provider, Independent Software Vendors (ISVs) etc. covering topics of Cloud security & ICT risks, Cloud adoption, operational security, remediation actions, etc
Coordinate with operational risk officers of poles and entities for move to Cloud technology and operational risks
Review and update minimum baseline Cloud security controls in collaboration with IT Group Production security teams, Cloud security experts, Operational risk officers, ICT risk officers, etc
Review and update process and workflow for monitoring and reporting of compliance to minimum baseline dedicated hybrid Cloud security controls on Cloud security posture management solutions in collaboration with IT Group Production teams, Cloud service provider, ICT risk officers, operational risk officers, etc
Develop and identify and update risk reporting methods using automated solutions, leveraging existing or new solutions of Governance, Risk and Compliance (GRC) tools for dedicated hybrid Cloud services asset register, risk register, remediation tracking, etc. Cloud Security Posture Management solutions, operational risk management solutions, IT service management solutions, reporting & dashboard solutions, etc
Overall high quality report writing, documentation and presentation for dedicated hybrid Cloud security topics of operational risk frameworks and operating models, cloud security baseline controls, identifying control gaps, residual risks, questions to identify root causes, risk implications, short term and long term remediation measures, recommendations and appropriate risk opinions
**Profile and Skills to Success**
Good knowledge of ICT risks, IT Control, Information Security, Business Continuity, IT operations and IT Audit and assessment methodologies and concepts
Experience working with ICT risks, business continuity, IT Management and operations, IT risk and IT audit teams
Ability to articulate risk management concepts in business language
Excellent written and verbal communication (English)
Proficient with Microsoft Office Suite
Prior experience documenting tool requirements to support risk management
Ability to travel to BNP Paribas and vendor sites, and perform assessments as necessary
Proven ability to manage issues through to resolution; skilled at making judgment calls
Ability to successfully multitask and complete difficult assignments within deadlines which may have short lead times
Industry certifications (e.g. CISA, CRISC, COBIT) or willingness to obtain the same
Works itera
-
Cloud Risk and Cyber Security Senior Officer
2 semanas atrás
Lisboa, Portugal BNP Paribas Tempo inteiroCLOUD RISK AND CYBER SECURITY SENIOR OFFICER (JOB NUMBER: 2402RSK17645_L) **About the job** - This role is in alignment with 2LoD involvement required on BNP Paribas dedicated hybrid Cloud that is core of Cloud Strategy. The scope of the role involves developing, implementing and managing: 1) Cloud technology risk and operational risk management framework...
-
Lisboa, Lisboa, Portugal BNP Paribas Tempo inteiroCLOUD RISK AND CYBER SECURITY SENIOR OFFICER (JOB NUMBER:2402RSK17645_L)About the job This role is in alignment with 2LoD involvement required on BNP Paribas dedicated hybrid Cloud that is core of Cloud Strategy.The scope of the role involves developing, implementing and managing: 1) Cloud technology risk and operational risk management framework including...
-
IT Risk
2 meses atrás
Lisboa, Portugal BNP Paribas Tempo inteiroIT RISK & CYBER SECURITY SENIOR OFFICER (JOB NUMBER: 2404LCF18150) **About the job** - The IT Risk and Cyber Security Officer’s mission is to ensure IT and Cyber risks are managed properly, playing a key role in securing information systems - By monitoring, detecting, investigating, analyzing, and responding to security events, the IT Risk and Cyber...
-
Cyber Security Incident Officer
2 meses atrás
Lisboa, Portugal askblue Tempo inteiroWe operate as a consulting service firm since 2013 and offer specialized consulting services to clients in the financial and information technology sectors. We are currently looking for a **Cyber Security Incident Officer** to integrate one of your project teams in **Lisbon**. The **Cyber Security Incident Officer** wwill be responsible for the management...
-
IT Risk
2 meses atrás
Lisboa, Portugal BNP Paribas Tempo inteiro**About the job** The IT Risk and Cyber Security Officer’s mission is to ensure IT and Cyber risks are managed properly, playing a key role in securing information systems By monitoring, detecting, investigating, analyzing, and responding to security events, the IT Risk and Cyber Security Officer is focused in the adaptations, deployment and maintenance...
-
Cyber Security Incident Officer
Há 6 dias
Lisboa, Lisboa, Portugal askblue Tempo inteiroWe operate as a consulting service firm since 2013 and offer specialized consulting services to clients in the financial and information technology sectors.We are currently looking for aCyber Security Incident Officer to integrate one of your project teams inLisbon. TheCyber Security Incident Officer wwill be responsible for the management of Cyber security...
-
Cyber Security Architect
2 meses atrás
Lisboa, Portugal Galp Tempo inteiroGalp is an energy company committed to develop efficient and sustainable solutions in its operations and in the integrated offers provided to its clients. We create simple, flexible and competitive solutions for the energy and mobility needs of both industrial and individual consumers. Our portfolio includes multiple types of energy - from renewable...
-
IT Risk and Cyber Security Officer
1 semana atrás
Lisboa, Portugal BNP Paribas Tempo inteiroIT RISK AND CYBER SECURITY OFFICER (JOB NUMBER: 2308CIBIT15958) **About the job** - He/she will ensure IT Risk management for Shadow/ light IT Topic, for EMEA territory **Your Main Activities Are** - Collect and centralize Shadow/ Light IT cases, from all different parties to create a referential - Manage, and update this referential proactively - Follow...
-
Information Security Officer
2 semanas atrás
Lisboa, Portugal Deco Proteste Tempo inteiroWorking at Group level the **Information Security Officer **will have an impact in the protection of the organization's information by maintaining ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions. **About the role** Reporting to the Group Business Technology Director this...
-
It Risk And Cyber Analyst
Há 5 dias
Lisboa, Portugal Alter Solutions Tempo inteiroAlter Solutions IT and Cybersecurity consulting services in Europe, America and Africa. Discover our expertise in Software development and Cloud computing. View company page Alter Solutions Portugal is an IT Consultancy Company, promoter of Digital Transformation, part of the Alter Solutions Group, created in 2006, in Paris. In Portugal, we partner with over...
-
Cyber Security Manager
4 semanas atrás
Lisboa, Lisboa, Portugal Randstad Portugal Tempo inteiroRandstad Professionals is specialized in the recruitment of middle and senior positions.Our client is a multinational company and he is looking for a Cyber Security Manager for Lisbon.responsabilidades chaveCyber Security Manager will be responsible for the governance review, design, and implementation of cyber securitytools in support of the organization's...
-
Cyber Security Manager
3 semanas atrás
Lisboa, Lisboa, Portugal Randstad Portugal Tempo inteiroRandstad Professionals is specialized in the recruitment of middle and senior positions.Our client is a multinational company and he is looking for a Cyber Security Manager for Lisbon.responsabilidades chaveCyber Security Manager will be responsible for the governance review, design, and implementation of cyber securitytools in support of the organization's...
-
It Risk And Cyber Analyst
2 meses atrás
Lisboa, Portugal Alter Solutions Tempo inteiroAlter Solutions IT and Cybersecurity consulting services in Europe, America and Africa. Discover our expertise in Software development and Cloud computing. View company pageAlter Solutions Portugal is an IT Consultancy Company, promoter of Digital Transformation, part of the Alter Solutions Group, created in 2006, in Paris.In Portugal, we partner with over...
-
It Risk And Cyber Analyst
2 meses atrás
Lisboa, Portugal Alter Solutions Tempo inteiroAlter Solutions IT and Cybersecurity consulting services in Europe, America and Africa. Discover our expertise in Software development and Cloud computing. View company page Alter Solutions Portugal is an IT Consultancy Company, promoter of Digital Transformation, part of the Alter Solutions Group, created in 2006, in Paris.In Portugal, we partner with over...
-
It Risk And Cyber Analyst
1 dia atrás
Lisboa, Portugal Alter Solutions Tempo inteiroAlter Solutions IT and Cybersecurity consulting services in Europe, America and Africa. Discover our expertise in Software development and Cloud computing. View company page Alter Solutions Portugal is an IT Consultancy Company, promoter of Digital Transformation, part of the Alter Solutions Group, created in 2006, in Paris.In Portugal, we partner with over...
-
Galp - Cyber Security Architect
2 meses atrás
Lisboa, Portugal Damia Tempo inteiro**Galp is recruiting a Cyber Security Architect**: **About**:Galp is an energy company committed to develop efficient and sustainable solutions in its operations and in the integrated offers provided to its clients. They create simple, flexible, and competitive solutions for the energy and mobility needs of both industrial and individual consumers. Their...
-
IT Risk and Cyber Analyst
1 semana atrás
Lisboa, Portugal Olisipo Tempo inteiroReferência 13024_IT Risk and Cyber Analyst_Lisboa **Descrição**: Information Security **Perfil**: - Skills in network security to fortify our defense mechanisms; - Good knowledge in Swift system to navigate its intricacies; - Expert understanding of risk management to proactively mitigate potential threats; - Proficiency in technologies like CFT, MQ,...
-
Lisboa, Portugal Cyber Crime Tempo inteiroSenior Information Security Metrics Analyst IQVIA Solutions to help life sciences organizations drive healthcare forward and get the right treatments to patients, faster. View company page As a Senior Information Security Metrics Analyst, you will play a crucial role in ensuring the security and compliance of our organization. You'll be responsible for...
-
IT Risk and Cyber Analyst
1 semana atrás
Lisboa, Portugal askblue Tempo inteiroDo you know **AskBlue**? We were born in 2013, and we provide services in the field of information technology. We are looking for **IT Risk and Cyber Analyst** to join our company in one of our projects, in **Lisbon**. **Team**: Defining the vision and strategy for IT risk management and cybersecurity, and ensuring the implementation of this strategy...
-
Information Security Officer
Há 6 dias
Lisboa, Lisboa, Portugal Deco Proteste Tempo inteiroWorking at Group level the Information Security Officer will have an impact in the protection of the organization's information by maintaining ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions.About the roleReporting to the Group Business Technology Director this Information Security...
