Job Description

\xe2\x80\x93 NAR IT OPC - Assistant Manager

About BNP Paribas Group:

BNP Paribas is a top-ranking bank in Europe with an international profile. It operates in 71 countries and has almost 199 000 employees. The Group ranks highly in its three core areas of activity: Domestic Markets and International Financial Services (whose retail banking networks and financial services are grouped together under Retail Banking & Services) and Corporate & Institutional Banking, centred on corporate and institutional clients. The Group helps all of its clients (retail, associations, businesses, SMEs, large corporates and institutional) to implement their projects by providing them with services in financing, investment, savings and protection. In its Corporate & Institutional Banking and International Financial Services activities, BNP Paribas enjoys leading positions in Europe, a strong presence in the Americas and has a solid and fast-growing network in the Asia/Pacific region.

About BNP Paribas India Solutions:

Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, a leading bank in Europe with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 6000 employees, to provide support and develop best-in-class solutions.

About Businessline/Function :

The OPC is a key component of the first line of defence as regards the management of operational risks and permanent controls under the authority of the Head of the Entity.

The OPC operates and/or coordinates the entity\xe2\x80\x99s Operational and Permanent Control framework related to all operational risks front-to-back and end-to-end , including Fraud, Third Party, Conduct, Compliance, Regulatory, ICT risks, and others risks types in collaboration with other specialized independent control functions and in compliance with internal policies, procedures and guidelines issued by independent control functions as well as with external regulatory and supervisory requirements

Job Title:

Manager

Date:

15-DEC-22

Department:

Controls and Conduct/ Operations Permanent Control (OPC) \xe2\x80\x93 IT OPC NAR Offshoring

Location:

Mumbai

Business Line / Function:

OPC

Reports to:

(Direct)

ISPL IT OPC Manager

Grade:

(if applicable)

N.A

(Functional)

ISPL IT OPC Manager

Number of Direct Reports:

0

Directorship / Registration:

NA

Position Purpose

Operating entities organize their Operational Risk Management and their Permanent Control framework on a risk based approach. The intensity of the framework and its governance should be commensurate to the materiality of the entity and its operational risk exposure.

In order to achieve this, designated IT Operational Permanent Controllers manage all the IT Operational Risks and Permanent Controls under the authority of the Head of the Operating Entity.

The OPC also coordinates the entity\xe2\x80\x99s Operational and Permanent Control framework related to all operational risks front-to-back and end-to-end, to ensure compliance with internal policies, procedures and guidelines as well as external regulatory and supervisory requirements.

The role is to provide both the Onshore IT Business Units and Onshore IT Management with the assurance and visibility that IT Controls are executed in a controlled and managed way. In addition to the specific responsibilities detailed below, the successful candidate will be expected to demonstrate understanding in other areas of Risk & Control Management including strategies surrounding Process Engineering, Configuration Management, Change, Incident & Problem Management, Non-Conformities and Corrective Actions Management, Risk Identification and Control, Project Management and Tools and Methods.

Responsibilities

Direct Responsibilities

• Overall responsibility for the Risk and Control function for the assigned IT Business Units
• Identification and assessment of IT risks and IT controls as per group guidelines
• Define and regularly update the entity\xe2\x80\x99s IT control plan according to the outcome of the risk assessment, regulations, and other risk events.
• Identify control gaps and propose solutions and ensure control gaps are adequately addressed
• Identify system/ control deficiencies and propose solution to strengthen the control environment
• Monitor controls are performed as per the defined control plan
• Ensure timely and comprehensive contribution to Risk Governance committee meetings.
• Follow-up and contribute to close recommendations/permanent control actions/incident remediation actions.
• Ensure operational risk incidents are reported as per the BNP Paribas Incident reporting policy and implementation of corrective and preventive actions
• Ensure appropriate training and awareness on Operational Risks are provided to employees.
• Ensuring all key risks & control deviations reported to Senior management along with corrective action plan and Control Results updated accurately with all the deviations
• Ensure that the Head of Department is properly informed, that issues are escalated in a timely manner and that sufficient information is provided to form appropriate judgments

Contributing Responsibilities

• Mentor/Train junior staff members as and when required
• Contribute to the upkeep and maintenance of the Permanent Control Framework.
• Provide support and/or manage key transformation projects where needed, and take them to a successful conclusion
• Active participation on adhoc tasks and/or projects as assigned by Management from time to time

Technical & Behavioral Competencies

• Undergraduate Degree in Computer Science or related field is required; Advanced Degree (MS) is desired. CRISC (Certified in Risk and Information Systems Controls) and/or CISA (Certified Information Systems Auditor) is preferred, or CISM (Certified Information Systems Manager) or CISSP (Certified information Systems Security Professional) will be helpful,
• Minimum of Ten years recent experience in Information Technology audit, or as \xe2\x80\x9chands-on\xe2\x80\x9d IT control tester in first or second lines of defense
• Working knowledge of COBIT methodology; familiarity with US FFIEC IT Examination guidelines (e.g., Development and Acquisition IT Handbook) will be helpful, but not required
• Strong background with principles and techniques of testing IT general controls, infrastructure controls, and application controls
• Excellent communication skills (verbal, written), interpersonal skills, and interviewing skills
• Strong risk and control awareness, and knowledge of risk assessment methodology
• Motivated self-starter, exceptional analytical abilities, strong organization and teamwork skills
• Experience working in large global financial services organization
• Be able to demonstrate business tactical and strategic thinking, be innovative and creative with an ability to think outside of the box
• Be comfortable discussing or reporting the results of IT control testing with the bank\xe2\x80\x99s management
• \xe2\x80\x9cHands-on\xe2\x80\x9d IT Operations experience is a plus
• Experience working in a IT Development and/or IT Production setting
• Ability to:

• Collect and analyze complex information
• Work under pressure
• Good time management on complex and multiple tasks
• Knowledge of Project Management methodology (e.g. PMP, Prince2) is a plus

Specific Qualifications (if required)

Skills Referential

Behavioural Skills: (Please select up to 4 skills)

Ability to collaborate / Teamwork

Decision Making

Ability to deliver / Results driven

Attention to detail / rigor

Transversal Skills: (Please select up to 5 skills)

Ability to develop and leverage networks

Ability to manage a project

Ability to set up relevant performance indicators

Ability to manage / facilitate a meeting, seminar, committee, training\xe2\x80\xa6

Analytical Ability

Education Level:

Bachelor Degree or equivalent

Experience Level

At least 7 years

Other/Specific Qualifications (if required)

Qualifications

Skills Referential

Behavioural Skills: (Please select up to 4 skills)

Ability to collaborate / Teamwork

Decision Making

Ability to deliver / Results driven

Attention to detail / rigor

Transversal Skills: (Please select up to 5 skills)

Ability to develop and leverage networks

Ability to manage a project

Ability to set up relevant performance indicators

Ability to manage / facilitate a meeting, seminar, committee, training\xe2\x80\xa6

Analytical Ability

Education Level:

Bachelor Degree or equivalent

Experience Level

At least 7 years

Other/Specific Qualifications (if required)

BNP Paribas