In Asia Pacific, BNP Paribas is one of the best-positioned international financial institutions with an uninterrupted presence since 1860. Currently with over 17,000 employees* and a presence in 13 markets, BNP Paribas provides corporates, institutional and private investors with product and service solutions tailored to their specific needs. It offers a wide range of financial services covering corporate & institutional banking, wealth management, asset management, insurance, as well as retail banking and consumer financing through strategic partnerships.
Worldwide, BNP Paribas has a presence in 73 markets with more than 196,000 employees. It has key positions in its three main activities: Domestic Markets and International Financial Services (whose retail-banking networks and financial services are covered by Retail Banking & Services) and Corporate & Institutional Banking, which serves two client franchises: corporate clients and institutional investors. Asia Pacific is a key strategic region for BNP Paribas and it continues to develop its franchise in the region.
BNP Paribas offers you an exciting career in an international business environment that is fast-paced, diverse and focuses on creating high-value relationships with our clients. We offer competitive salary and benefits, as well as a working environment where you’re valued as part of the team.
* excluding partnerships
The mission of the IT Risk Manager is to ensure, for the IT activities within his/her entity, the realization of operational permanent control including the measure and the management of all operational risks linked to Information and Communication Technologies (ICT) including cyber security risks in accordance with the framework as defined by the IT Governance of BNP Paribas, as well as the deployment and coverage of the IT Risk Management Group (ITRMG) framework.
The coverage is APAC and the scope is all Business Units in charge of IT activities
As per BNP Paribas internal control charter, operating IT entities, and first and foremost their managers, are accountable for the risks they are exposed to given the businesses or services they run or deliver.
In this respect, and in full compliance with regulations applicable at group level and at entity level, and in line with group’s norms and requirements, the IT risk manager should for the IT entities under his/her oversight,:
– The management and reporting (to eligible bodies) of ICT risks (with if-needed
associated risk acceptances, risk profiles, …) through both periodic RCSA
realization and ad hoc risk assessment on his/her perimeter in accordance
with the EBA ICT risk taxonomy.
– Managing IT risk findings resulting from production incidents, application and
infrastructure IT security risk assessment with APAC IT Business Units and
APAC CIOs, CTO and CISO and raised risks ( e.g.: ICC, APAC IT OPC
– The organization of Function/Métier/Region IT risk committee at least twice a
Technical and Behavioral Competencies required
Essential Technical Knowledge/Skills:
Qualifications and Experience:
Other Value-Added Competencies: