IT Auditor

Join to apply for the IT AUDITOR role at BNP Paribas CIB

GROUP BNP PARIBAS – BNP Paribas Group is the top bank in the European Union and a major international banking establishment. In Spain we are more than 5,100 employees within 13 business lines. BNP Paribas Corporate & Institutional Banking provides large companies, multinationals and financial institutions with advisory, financing, transactional banking, capital markets, settlement, clearing and custody of securities, asset and fund management services and solutions for corporate issuers. The Iberian Peninsula IG Hub is a team of auditors covering BNP Paribas Group entities operating in Spain and in Portugal, with a view to developing IT audit capabilities for IT activities in the Iberian Peninsula and, from time to time, for supporting other IT audits across the EMEA region.

The IT Auditor will report directly to the Head of IT Assignment and will be functionally part of the worldwide IT Audit Line.

• Participate in audit team assignments and special reviews as required by regulators, business lines, or senior management.
• Contribute to planning and preparation of assignments, including understanding the methodology, activities, technologies, and key figures.
• Develop understanding of the activities under audit, including governance, strategy, and related risks.
• Evaluate the overall setup to identify main risks and assess management actions.
• Execute detailed investigations with strong technical knowledge of IT systems (Databases, Linux/Windows, Cybersecurity/Network security, Virtualization, containerization, Cloud Computing and related risks).
• Leverage programming languages and scripting to automate analysis and improve efficiency.
• Learn and understand standard IT solutions used in infrastructure and production, Cybersecurity management, to analyze configurations and identify risks.
• Recommend actions to management to remediate weaknesses and formalize investigation results for deliverables.
• Present conclusions of fieldwork to senior management.

Review the implementation of IT recommendations and ensure actions address identified gaps, with relevant control testing to verify proper implementation.

• Review and challenge remediation actions following audits.
• Ensure adequacy and persistence of actions taken.
• Perform control testing to verify implementation.

Contribute to periodic IT risk assessment and planning:

• Perform periodic, risk-based IT activity assessments per Group guidelines.
• Monitor regulatory developments relevant to IT activities.
• Assist in IT audit planning using a risk-based approach.
• Contribute to the improvement of IG practices through methodology updates.

• Studies: Bachelor’s / Master’s Degree in Information Technology / Management Information Systems / Computer Science or related discipline.
• Professional qualifications in Audit (e.g., CISA, CISSP, CISM, CCSP) are a plus.
• Experience: Not less than 3 years in external/internal auditing / IT / risk / compliance / internal control / operations in financial services.
• Languages: English (fluent); Spanish (sufficient or to be acquired); French or Portuguese (optional).
• Skills: IT Audit practices; strong IT background in IT Development and Maintenance, IT Security (Cybersecurity), IT Continuity; analytical and synthesis skills; ability to communicate complex IT topics to non-IT readers; ability to promote constructive teamwork.

• Training programs, career plans and internal mobility opportunities, national and international via BNP Paribas presence in different countries.
• Diversity and Inclusion Committee and various employee communities (PRIDE, We Generations, MixCity).
• Corporate volunteering program (1 Million Hours 2 Help).
• Flexible compensation plan.
• Hybrid telecommuting model (50%).
• 32 vacation days.

BNP Paribas Group in Spain is an equal opportunity employer and committed to ensuring no discrimination on age, disability, gender reassignment, marital status, pregnancy/maternity/paternity, race, religion or belief, sex or sexual orientation. Equity and diversity are core to recruitment policy to foster creativity and efficiency.