Cybersecurity and IT Risk Engineer - Vulnerability ManagementSouth Europe Technologies (S.ET Iberia) is one of BNP Paribas Personal Finance's shared services centers, dedicated to delivering outstanding IT solutions to BNP Paribas Personal Finance entities around the world.
MissionWe are looking for an IT Risk & Cybersecurity engineer to provide Cybersecurity services to Central IT Risk Team in France (in English and French). The service portfolio is wide and covers the full vulnerability management scope. These services are a support to operational activities for both types of internal customers the SSC have: Central IT Risk team and all BNPP entities.
Your Main Activities Will Include
Perform and coordinate monthly meetings with stakeholders of all BNPP PF entities (mainly France). Act as an intermediate expert between entities and Central experts
Perform and coordinate meetings with stakeholders of different countries whenever needed to clarify answers, constraints or any further
Evaluate the cybersecurity posture on all included domains and collect evidence for each control, aimed to demonstrate entity's maturity level. Proven experience with the definition of action plan when applicable
Support risk evaluation and compliance level
Challenge and Follow-up entities regarding different vulnerability reports: pentests, BugBounty, PingCastle, Sysdig, Tanium, Qualys, Bitsight, Fortify...
Propose corrective actions to mitigate risks, either technical or functional
Report results to Central team for final validation
Reports and dashboards generation
Maintenance of the tools (Qualys, Bitsight, internal inventories...)
Skills
Proactivity
Autonomy and time management
Customer & results-oriented (service delivery will be the heart of the activity)
Ability to communicate and report to different levels in the organization
Motivated to pick up new skills as you go
Analytical and problem-solving skills
Structured analyst, capable of embracing and using data analytics to assess risks, scope audits and test controls
Team worker
What We Are Looking For
Advanced student/graduate of a computer science related career
Minimum 2 years of proven working experience in the cybersecurity field (in Vulnerability Management).
Dev skills (nice to have)
Knowledge of Application security
Knowledge of standards such as OWASP, ISO/IEC27001, ISO 22301, ISO31000 and best practices
Proven working experience in the cybersecurity field (Vulnerability Management)
Language Skills
English: B2 Level (oral and written) - mandatory
French: B2 Level (oral and written) - mandatory
Benefits
Training programs, tailored career paths, and opportunities for internal mobility - nationally and internationally - supported by our global presence
Diversity and Inclusion Committee working to create an inclusive work environment, with active employee communities organizing awareness activities (PRIDE, We Generations,MixCity, etc.)
Corporate volunteering program (1MillionHours 2 Help) supporting employees in their community engagement
Flexible compensation plan
Hybrid telecommuting model (50%)
31 vacation days
Diversity and Inclusion CommitmentBNP Paribas Group in Spain is an equal opportunity employer, proud to offer equal employment opportunities to all job seekers. We are deeply committed to ensuring that no individual is discriminated against based on age, disability, gender reassignment, marital or civil partnership status, pregnancy and maternity/paternity, race, religion or belief, sex, or sexual orientation. Equity and diversity are at the heart of our recruitment policy, as we believe they foster creativity and efficiency, ultimately improving performance and productivity. We strive to reflect the society in which we live while maintaining the standards our clients expect from us.
#J-18808-Ljbffr