Senior Cyber Risk Manager
San Francisco, CA, United States
Avant Digital
Contract Duration - 12 months
Contract type - Contract/ C2C
Location - Remote (EST or PST time zone)
Job Description:-
As the Senior Cyber Risk Manager, you will be responsible for overseeing the identification, assessment, mitigation, and monitoring of technology-related risks within the organization. You will play a pivotal role in ensuring our technology infrastructure remains secure, compliant, and resilient to emerging threats and vulnerabilities. The successful candidate will collaborate closely with cross-functional teams, including IT, security, compliance, and business units, to develop and implement robust risk management strategies and frameworks. Juniper Business Use Only
Responsibilities
- Conduct comprehensive assessments of technology risks associated with the organization's systems, applications, networks, and infrastructure.
- Analyze internal and external risk factors, including emerging threats, regulatory requirements, industry trends, and best practices.
- Develop risk models, metrics, and frameworks to quantify and prioritize technology risks effectively.
- Develop and implement technology risk policies, standards, and procedures in alignment with regulatory requirements and industry standards.
- Ensure compliance with applicable laws, regulations, and guidelines governing technology risk management and information security.
- Monitor regulatory developments and emerging trends to update policies and procedures accordingly.
- Collaborate with IT and security teams to identify and implement adequate controls and safeguards to mitigate technology risks.
- Evaluate the effectiveness of existing controls and recommend enhancements or modifications as needed.
- Facilitate risk mitigation efforts by implementing technical solutions, process improvements, and employee training programs.
- Serve as a trusted advisor to senior management and business stakeholders on technology risk matters, providing timely updates and recommendations.
- Communicate risk assessment findings, trends, and recommendations through comprehensive reports, presentations, and dashboards.
- Foster a culture of risk awareness and accountability across the organization through training, awareness campaigns, and knowledge-sharing initiatives.
Qualifications
- Bachelor's degree in information technology, Computer Science, Risk Management, or a related field; advanced degree or professional certification (e.g., CISA, CISSP, CRISC) Mandatory.
- Minimum of 10 years of experience in technology risk management, cybersecurity, or information security roles.
- Proven expertise in conducting technology risk assessments, developing risk management frameworks, and implementing controls and mitigation strategies.
- In-depth knowledge of regulatory requirements, industry standards, and best practices related to technology risk management and information security (e.g., FAIR, NIST Cybersecurity Framework, ISO 31000, OCTAVE & TARA).
- Strong analytical, problem-solving, and decision-making skills with the ability to evaluate complex issues and develop practical solutions.
- Excellent communication and interpersonal skills with the ability to effectively engage and influence stakeholders at all levels of the organization.
- Demonstrated leadership abilities with a track record of driving results, managing projects, and leading cross-functional teams in a fast-paced, dynamic environment.
Basic Requirements
- Effective verbal and non-verbal communication skills at all levels of the organization
- Leadership teamwork and collaboration
- Discretion
- Problem solving
- Critical Thinking
- Self-initiated/sufficient
- Motivated
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CISA CISSP Compliance Computer Science CRISC Monitoring NIST Octave Risk assessment Risk management Vulnerabilities
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.