Operational & Permanent Control Analyst - ITO GBO

The Operational and Permanent Control (OPC) Analyst operates the Control framework relating to all operational risks, including Fraud, Third Party, Conduct, Compliance, Regulatory, Information & Communication Technology risks, and other risk types. OPC is responsible for the deployment of internal policies and procedures issued by specialist independent control functions that are part of Risk teams (2nd Line of Defence), and for compliance with external regulatory and supervisory requirements.

• Identify and assess risks and controls (Risk and Control Self-Assessment) by ensuring that key operational units and processes, material risks and risk mitigants are identified.
• Perform/drive the risk identification and assessment in liaison with independent control functions when needed, ensuring validation by the relevant management level and consistency with the defined risk tolerance. Contribute to the definition and follow‑up of a remediation plan if needed.
• Manage procedures by ensuring that Group procedure requirements are implemented locally, complemented with local specificities (regulations, tools, organizations, among others). Ensure that the procedures designed by the businesses and functions are identified, updated, properly stored and communicated to the relevant stakeholders within the operating entity. Identify and propose calibration of procedures according to the outcome of the risk assessment and other risk events (HI, control results, external events, audit missions).
• Implement controls and action plans by defining and regularly updating the control plans according to the outcome of the risk assessment, regulations, other risk events (historical incidents, control results, external events, audits). Perform and/or coordinate controls according to this control plan. Ensure that control results are reviewed and analysed by management and, when relevant, by operational teams/relevant stakeholders, and that remediation action plans are defined if and when needed. Input control results and major action plans into Group tools. Follow‑up the implementation of remediation actions.
• Document findings, recommendations and permanent control actions: upon notification/receipt of reports, organise the follow‑up of the findings and recommendations, either issued internally (e.g., IG supervision) or externally (external auditors, supervisors) and ensure they are closed within the due date.
• Manage historical incidents by alerting management and the independent control functions if needed on key incidents. Collect incidents (including impact measurement), report and update in the incidents database, including suspected and attempted fraud cases. Analyse incidents in a timely manner and define, jointly with the relevant stakeholders, the correctives measures to mitigate risks. Follow‑up and/or initiate the implementation of remediation actions and the unfolding of long‑term incidents. Perform controls on the incident collection process, in particular the cross‑check with other databases (accounting or others when existing) and the half‑yearly attestation by the local management.
• Provide management support and governance by active contribution (or organisation) to any committee on operational risks and permanent control committees. Alert and escalated to the relevant level of management any operational risk incident and/or any recurring weakness. Perform periodic and ad‑hoc reporting to the appropriate level of management as well as to independent control functions. Ensure an appropriate training on operational risks and permanent control framework is provided to employees, notably newcomers. Show ability to take ownership of specific OPC activity streams/topics, and be able to deliver the full and exhaustive actions taken on the assigned process(es) to management.

• Bachelor’s Degree in Business Management, Economics, Finance and Accounting.
• Up to 2 years of experience in risk and controls, compliance, and in project management and consulting.
• Risk management – knowledge and awareness.
• Proficiency in MS Office Pack (Excel, Word and PowerPoint).
• Fluency in English.
• Ability to collaborate / teamwork.
• Organisational skills.
• Results‑driven and able to deliver.
• Ability to develop and adapt a process.
• Communication skills.

• Leading banking institution.
• Our presence in Portugal
  • In Portugal since 1985, BNP Paribas today has more than 8 700 employees, distributed across the Group's 10 business entities established in the country. Its presence also extends to 11 excellence centres providing value‑added services to various countries where the BNP Paribas Group also operates.
• International reach
  • Thanks to its international presence and regular and close collaboration among its different entities, BNP Paribas has the resources to support all clients with financing, investment, savings and protection solutions that help make their projects a success.
  • BNP Paribas holds key positions in its three core operating divisions: Retail Banking, Investment & Protection Services, and Corporate & Institutional Banking.
• Diversity and Inclusion commitment
  • BNP Paribas is an equal‑opportunity employer and proudly provides equal employment opportunity to all job seekers. It is actively committed to ensuring no individual is discriminated against on the grounds of age, disability, gender‑reassignment, marriage or civil partnership status, pregnancy and maternity/paternity, race, religion or belief, sex or sexual orientation.
  • Equity and diversity are at the core of its recruitment policy because they foster creativity and efficiency, increasing performance and productivity.
• Commitment towards work/life balance
  • At BNP Paribas we care about our employees’ wellbeing and promote a culture of good integration between work and rest. Employees have rich personal lives outside of work, which is fundamental to be disconnected from work to recharge physically and mentally. Only through this balance can everyone be at their best while working.
• Remote Working Conditions
  • At BNP Paribas we embrace a Smart Working framework based on trust, autonomy and collaboration. Eligible employees can benefit from flexible remote working modalities adapted to our hybrid working environment.
  • To guarantee a comfortable and efficient working set‑up, eligible employees are provided with both office and home equipment, are entitled to an equipment allowance and can benefit from exclusive partnerships to purchase additional equipment at reduced prices.
• Additional information
  • Only applications submitted in English will be considered.
  • In case you are selected for this role, further documentation will be requested to support your hiring process.

To find out more on why you should join BNP Paribas, visit https://bnpp.lk/why-BNP-Paribas-Portugal