Key ResponsibilitiesExecute IT and Cyber risk assessments across applications, projects, business processes, and third-party suppliersIdentify, assess, monitor, and report operational IT and cyber risks in line with BNP Paribas Group policiesPerform and coordinate IT & security audits on third parties and follow up on remediation actionsExecute information security and IT control plans for suppliers to ensure contractual and regulatory complianceDefine, implement, and maintain end-to-end Third-Party IT & Cyber Risk Management (TPRM) processesProduce clear and concise risk reports, dashboards, and one-pagers for management and senior stakeholdersReview and validate IT and security contractual clauses for third-party suppliersAct as Single Point of Contact (SPOC) for delivered risk management servicesProvide consulting and advisory support to IT and Business teams on risk mitigation measuresContribute to the continuous improvement of risk management methods, processes, and toolsRequired Experience & SkillsMinimum 5+ years of professional experience in Information Security / IT & Cyber Risk ManagementStrong experience in Third-Party IT & Security Risk AssessmentsSolid knowledge of Information Security and Risk frameworks (ISO 27001, NIST, SOC, OWASP)Proven experience working in financial services or large, regulated environmentsHands-on experience with operational and security risk managementStrong understanding of cloud environments and cloud security risks (SaaS, AWS, HSP)Experience in process design, business analysis, and control implementationKnowledge of software development security best practicesExperience with incident, change, release, and test managementExcellent reporting, presentation, and stakeholder communication skillsFluent French and English (mandatory) ; Fluent DutchBachelor's or Master's degree, or equivalent professional experience