In Asia Pacific, BNP Paribas is one of the best-positioned international financial institutions with an uninterrupted presence since 1860. Currently with over 17,000 employees* and a presence in 13 markets, BNP Paribas provides corporates, institutional and private investors with product and service solutions tailored to their specific needs. It offers a wide range of financial services covering corporate & institutional banking, wealth management, asset management, insurance, as well as retail banking and consumer financing through strategic partnerships.
Worldwide, BNP Paribas has a presence in 73 markets with more than 196,000 employees. It has key positions in its three main activities: Domestic Markets and International Financial Services (whose retail-banking networks and financial services are covered by Retail Banking & Services) and Corporate & Institutional Banking, which serves two client franchises: corporate clients and institutional investors. Asia Pacific is a key strategic region for BNP Paribas and it continues to develop its franchise in the region.
BNP Paribas offers you an exciting career in an international business environment that is fast-paced, diverse and focuses on creating high-value relationships with our clients. We offer competitive salary and benefits, as well as a working environment where you're valued as part of the team.
* excluding partnerships
https://careers.apac.bnpparibas/ Position Purpose
This is a replacement for an existing IT Security Risk Manager in Singapore. The role is to deliver Risk Assessments and be a Security Champion to the business in APAC, with focus on new and existing application of the Bank and utilizing Agile techniques (DevSecOps).
This role is primary responsible for risk assessment engagement in projects and existing applications from all APAC business units, ensuring that IT risk is properly recognized, assessed and mitigated, and strong risk management strategies, tools, framework and standards are in place. This role will coordinate across APAC IT Security functions, identifying and delivering solutions to digital risk issues and proactively identifying improvements
Register, follow up and track Security recommendations, findings & security exception/risk acceptance
Provide accurate and timely Information technology Security Risk Assessment reports
Work closely with asset owners or representatives and technical staff to communicate, drive and track the implementation/remediation of security recommendation/findings
Provide consultation and recommendations on IT Security & Risk Management related topics in APAC region with focus on Bank's Digital transformation initiatives
Perform Firewall Pre-Change Review for APAC on projects. Take part of the network firewall rules approval process, by reviewing and approving FW requests
Technical & Behavioral Competencies
Work closely with Global IT Security & Risk Assessment team to follow-up on strategic digital transformation projects and related security issues
Extended knowledge of IT infrastructure & network and application security. Proficient in Fintech, Cloud, Mobile, Virtualization, and Sandbox technologies, agile development methodology, and Infrastructure & network (Internet, Intranet, Extranet, DMZ), and Application (Web, Client-Server, payment systems) security reviews
Extended knowledge of IT Security Risk Management concepts and with good understanding of industry APAC regulations i.e. MAS TRM, HKMA, FSA, etc
5 to 8 years of direct IT Security Risk Assessment experience with a strong background in Infrastructure & Network and Application Risk Assessment, security operations, software development, and network & system administration. Prior experience in emerging digital risk assessment methodology and its application is preferred
Must be able to handle stakeholders in a confident, positive and responsive manner
Good communication, technical writing skills.
Must be motivated, and able to work independently as well as part of a team.
Must demonstrate ethical responsibility, maturity, and discretion Specific Qualifications (if required)
The following certification(s), or equivalent experience, are preferred: CRISC, CISM, CISA, CISSP, ITIL, GCCC
Internal Number: 5206603
About BNP Paribas (Asia)
eFinancialCareers is a career site specializing in financial services.