Full-time job Publié le 07/06/2019

IT RISK & Cyber Security SSC Manager - Bucharest, Romania

  • Localisation Romania - Bucharest
  • Fonction Coordination of the operations and functioning of the IT Risk & Cyber SSC ensuring achievement of agreed service levels and compliance with established policie
  • Etudes Advanced University degree in Computer Science, Information Security, Business Administration and/or Management
  • Expérience 5 years of relevant experience in coordinating, leading and/or managing operations and administrative activities

Détails de l'offre

IT RISK & Cyber Security SSC Manager - Bucharest, Romania

 

Organizational Setting

  • responsible for providing a coordinated corporate support function to local entities of BNP Paribas Personal Finance, for IT Cybersecurity and Operational Risk management processes. He/she also provides advice and user support across the Organization on the use of IT Risk and Cyber tools and systems 
  • consolidates administrative functions to deliver in a cost-effective manner, promoting operational efficiencies and services improvements 

Reporting Lines

  • reports hierarchically to the central IT Risk Officer of BNP Paribas Personal Finance 

 

Technical Focus

  • Delivery of IT Risk & Cyber services in contribution to identification, evaluation, treatment, monitoring, reporting and closing of IT operational risks 
  • A non-exhaustive sample of key IT Risk & Cyber operational processes and activities to contribute to are : Vulnerability management, Penetration tests, Identity & Access Management, 3rd-party due diligence, Monitoring of risk treatment (action plans), Reporting the risk exposure (by asset, by entity, by territory…), etc. 

 

Key Results

  • Coordination of the operations and functioning of the IT Risk & Cyber SSC ensuring achievement of agreed service levels and compliance with established policies 

 

Key Functions of the IT Risk & Cyber SSC Manager

  • Oversees service delivery and the day-to-day operations of the SSC, ensuring that all standards are met and procedures are followed. Establishes priorities and schedules of main activities 
  • Reviews and monitors IT Risk & Cyber SSC-related services to identify trends and problem areas, reporting on risks, key performance indicators and proposed corrective action or new approaches 
  • Develops and implements new working methods and procedures of the IT Risk & Cyber SSC; recommends procedural changes to improve IT Risk & Cyber SSC efficiency and ensures appropriate implementation of decisions made by senior management 
  • Prepares and monitors the IT Risk & Cyber SSC budget 
  • Plans and monitors staffing overseeing recruitment and any other administrative functions related to the smooth functioning of the IT Risk & Cyber SSC 
  • Supervises staff, managing performance, staff development, training and careers 
  • Oversees and ensures the smooth functioning of information systems required to deliver the services and the definition and implementation of changes required to maintain the systems operational and fit for purpose. Supports system deployment activities to ensure smooth adoption by clients of the Centre 
  • Defines and ensures the implementation of Service Level Agreements; sets standards for quality and ensures that operational activities are implemented in accordance with recognized procedures and guidelines and meet the established standards 
  • Establishes quality control mechanisms such as client surveys, periodic data quality assurance reviews, error escalation procedures 
  • Plans and develops IT Risk & Cyber SSC communication strategy and capacity development; develops procedures and guidelines for use by the IT Risk & Cyber  SSC customers in order to ensure clarity, accuracy, consistency and accountability and to sustain and increase public awareness of IT Risk & Cyber SSC core activities 
  • Establishes and maintains close working relationships with functional Divisions/Offices at HQ, liaising on issues in the implementation of established policies and escalating to policy owners any issue requiring policy related decisions 
  • As part of the IT Risk Office management team, contributes to and oversees the delivery of multi-disciplinary programs, policies, products, and services and prepares a variety of plans, strategies, reports and proposals 
  • Performs other duties as required 

Minimum Requirements

  • Advanced University degree in Computer Science, Information Security, Business Administration and/or Management 
  • 5 years of relevant experience in coordinating, leading and/or managing operations and administrative activities 
  • Previous experience in providing structured services to clients 
  • Fluent English. Good working knowledge of French and any other European language are considered a plus 
  • Good understanding of Operational Risk Management principles, European GDP Requirements 
  • One of CISM, CISA, CRISC, CISSP or equivalent certifications.   

Competencies

  • Results Focus 
  • Leading, Engaging and Empowering 
  • Communication 
  • Partnering and Advocating 
  • Knowledge Sharing and Continuous Improvement 
  • Strategic Thinking 

Technical/Functional Skills

  • Work experience in more than one location (country) or area of work is considered essential 
  • Extent and level of experience in coordinating, leading and/or managing operations and administrative activities 
  • Extent of understanding and experience with Cybersecurity

Et vous ? Etes-vous notre IT RISK & Cyber Security SSC Manager - Bucharest, Romania ?

  • Nombre d'années d'expérience recherché (dans le domaine du poste) yc stage et alternance
    5 years of relevant experience in coordinating, leading and/or managing operations and administrative activities
  • Niveau d'étude
    Advanced University degree in Computer Science, Information Security, Business Administration and/or Management
  • Domaine de l'expérience
    Information Technology
  • Spécialité du diplôme
    Information Technology
  • Compétences comportementales
    Leading, Engaging and Empowering / Knowledge Sharing and Continuous Improvement / Strategic Thinking
  • Compétences transversales
    Communication
  • Langue
    Fluent English. Good working knowledge of French and any other European language are considered a plus