Data Security/ Compliance

Cyber Security Risk Management Leader

Cyber Security Risk Management Leader

As a Cyber Security Risk Management Leader, you will be part of security governance and risk management oversight (IT & OT environment), cross-functional and third-party cyber risk management and reporting. You will ensure and drive cyber security initiatives and activities and work closely with function teams to effectively embed cyber security risk management across the business.

YOUR NEW KEY RESPONSIBILITIES:

  • Supports and drives the establishment of a comprehensive cyber risk management framework across all functions
  • Continuous identification of cyber security risks through ongoing risk assessments
  • Performs business impact analysis to identify business mission critical processes and assets crown jewels
  • Supports and drives third-party risk management processes, assessments, and attestations
  • Understands technical implementation details to evaluate identified risks against best security practices and provide mitigation actions recommendations
  • Supports and maintains risk management toolkit and solutions
  • Monitors risk remediation activities, measures and reports residual risks
  • Drives projects implementing the cyber security risk management program and roadmap
  • Creates documentation, reports and dashboards for a variety of audience to facilitate security risk related decisions
  • Supports the security training program needs to promote a culture of awareness and risk management.
  • Works with cross-functional teams and external stakeholders to ensure baseline information protection controls are embedded in business operations.
  • Bachelor’s or Master’s Degree in Computer Science, Computer Engineering or Information Security.
  • Strong knowledge and understanding of security risk management frameworks and best practices (ISO, NIST families)
  • Ability to translate cyber risks to business context and effectively communicate them to cross-functional teams.
  • Technical risk management knowledge and experience assessing controls across all security domains (identity and access, data protection, encryption, network security etc.).
  • Excellent written and verbal communication skills.
  • Strong interpersonal and stakeholder engagement skills
  • Strong project management and multitasking skills
  • Security certifications are an advantage (i.e. CISSP, CISM, CRISC etc.)
  • Proven experience to work internationally on complex assignments with various stakeholders.
Apply
Related News