IT and Cyber Risk Management professional |
Start Date | ASAP |
Duration | 6 months with possible extension(s) |
Location | Brussels |
Context | The BNP Paribas Fortis Governance, Risk and Compliance team supports IT and Business Units to develop adequate solutions on operational IT and Cyber risk management practices, with specific focus on Information Security. Their main missions are: - Identify operational IT and Cyber risks on assets/applications, projects and 3rd-parties. - Advice, consult, monitor and report on risk treatment in order to reduce the overall risk exposure of IT and Business at an optimized cost. - Elaborate and manage the implementation of a flexible strategy to reduce IT and Cyber risks in accordance with the IT and Information Security policies of BNP Paribas Group. |
Function Description | - you execute IT and security risk assessments in IT and business contexts (applications, business solutions, 3rd-parties organization, processes…). - you execute information security and IT control plans on third parties to ensure that they are performing according to signed contracts. - you coordinate and perform IT and security audits on third parties.
- you create one-pagers and synthetic risk reports for a management audience - you set up processes and procedures for an end to end IT and security management for third-parties. - you deliver consulting on IT and Cyber risk management to internal customers (IT and Business) :
- you manage customer relationship and are the Single Point Of Contact for the risk management services you delivered. - you contribute to definition and improvement of risk management methods and tools on the third-party management area. - you contribute to writing processes and procedures supporting risk management activities outlined above, for both an expert and non-expert audience. Experience on linking different ISMS processes is a must. - you are knowledgeable on CIAT topic and able to adapt to the way this is applied in the bank for third-party suppliers. - you review IT and security contractual clauses for suppliers servicing bank activities. |
Education | Bachelor/Master or equivalent by experience | |
Languages | French | Fluent (Mandatory) |
Dutch | Fluent | |
English | Fluent (mandatory) |
Required knowledge / Experience | ||
Experience |
| |
Business Experience | Mandatory |
|
Technical Experience | Mandatory |
|
Preferable |
| |
Soft skills |
|