Overview
As the leading European Union bank, and one of the world's largest financial institutions with an uninterrupted presence in the region since 1860, BNP Paribas offers a wide range of financial services for corporate, institutional and private investors spanning corporate and institutional banking, wealth management, asset management and insurance.
We embrace diversity and strive to foster an inclusive workplace where all employees are valued.
Applicants from all backgrounds are encouraged to apply, including diversity of origin, age, gender, sexual orientation, gender identity, religion and those living with a disability.
BNP Paribas sponsors active internal networks to empower staff and challenge the status quo.
BNP Paribas PRIDE supports the LGBTQIA+ community, BNP Paribas MixCity promotes better representation of women at all levels, Ability is the mutual aid network for employees with disability or chronic illness, and BNP Paribas CulturAll celebrates diverse backgrounds.
The Group is committed to financing a carbon-neutral economy by 2050 and is a founding member of the Net-Zero Banking Alliance, with its Low Carbon Transition Group assisting clients in their energy transitions.
For more information, visit the careers page:
Direct Responsibilities
Participate in audit team assignments and special reviews as required by regulators, business lines, or senior management
Contribute to planning and preparation of assignments, including:
Understanding the methodology to be applied
Acquiring knowledge of activities covered
Understanding detailed technologies
Gathering relevant key figures
Develop a thorough understanding of activities within the assignment scope, including strategy, governance, and related risks
Evaluate the overall setup and identify main risk areas, including assessment of management actions
Execute detailed investigations leveraging strong technical knowledge in IT systems (Databases, Linux/Windows, Cybersecurity/Network security, Virtualization, Containerization, Cloud Computing and related risks)
Leverage programming languages and scripting to automate analysis and improve efficiency
Understand standard IT solutions used in IT infrastructure and production, cybersecurity management to analyze configurations and identify risks
Recommend actions to management to remediate identified weaknesses
Formalize investigation results and contribute to assignment deliverables
Present conclusions of fieldwork to senior management
Review the implementation of Inspection Générale recommendations
Challenge actions defined to remediate weaknesses identified by the audit team
Ensure responses address gaps following recommended actions
Perform relevant control testing to verify proper action implementation
Contribute to periodic IT activity risk assessment and planning
Conduct periodic and comprehensive risk assessments per Group guidelines
Keep informed of regulatory changes relevant to IT activities
Assist in IT audit planning following a risk-based approach
Contributing Responsibilities:
Contribute to improvement of Inspection Générale practices through updating methodologies
Travelling requirement :
Below 30%
Technical and Behavioral Competencies required:
Strong expertise in Cybersecurity (hands-on IT security experience is a plus)
Strong technical background in IT activities, including IT production / IT systems expertise
Curiosity, rigor, and precision
Outstanding analytical and synthesis skills
Excellent writing and presentation skills
High initiative, commitment, and drive
Ability to work under pressure and meet short deadlines
Promotes constructive, cooperative, and participative teamwork
Specific Qualifications (if required):
Bachelor’s or Master’s degree in Information Technology / Management Information Systems / Computer Science or related discipline
Not less than 10 years of experience in external/internal auditing / IT / risk / compliance / internal control / operations in financial services
Professional qualification/certificate in Audit (e.g., CISA, CISSP, CISM, CCSP) is a plus
#J-18808-Ljbffr