We are working with a leading Tech giant to hire an Information Security Risk Management professional to join a growing international team.
This position will primarily be focused on internal insider threat and DLP program.
Responsibilities
- Develop, establish, and maintain the firm's governance framework across all policies and standards pertaining to insider risk security
- Conduct, perform, and evaluate security risk assessments to identify any vulnerabilities or risks
- Work with business stakeholders to ensure that measures are implemented and integrated into internal processes
- Keep track of controls and its effectiveness in the management of security risks
- Support internal and external audits and ensure compliance in relation to NIST, ISO27001, GDPR, etc.
- Create and maintain risk registers, bearing strong interpersonal and stakeholder management skills to communicate firms' risk health to senior management
Requirements
- A minimum of 10 years of experience in information security with a strong risk/governance function from the banking or management consulting industry preferred
- A strong core in insider threat and DLP
- Professional certifications are good industry qualifications to have - i.e., CISM, CISSP
- Familiarity with ISMS and NIST Cybersecurity Framework
- Experience using various systems/solutions for monitoring (i.e., Splunk)