Cybersecurity Governance and Risk Specialist

About the Position

We’re looking for a Cybersecurity Governance and Risk Specialist to join our Cybersecurity team and its existing efforts to enhance, expand and champion our cybersecurity GRC activities.

In this role, you’ll collaborate with cross-functional teams to drive impactful improvements in cybersecurity governance and risk management while promoting a culture of collaboration, accountability and continuous growth. You will also contribute to shaping our overall cybersecurity strategy, ensuring alignment with industry best practices and regulatory requirements.

Additional responsibilities of this role will include:

• Developing, maintaining and communicating cybersecurity policies, and helping colleagues understand and apply those security policies to their daily work
• Monitoring compliance with internal policies, tracking exceptions and collaborating with teams on exploring alternative risk-reduction measures when necessary
• Monitoring regulatory requirements, noting any changes that could impact the firm and collaborating with the relevant teams to ensure we stay in compliance
• Performing control assessments, helping identify control gaps or weaknesses and working with the relevant teams to implement improvements to reduce our risk exposure
• Supporting the development, automation and maintenance of appropriate metrics to drive informed decision-making
• Performing third-party vendor assessments and working with stakeholders to address risks, contributing to the success of our third-party vendor risk management program
• Participating in the Cybersecurity team’s general activities to stay connected with the team at large

About You

• Have experience in a similar role and can demonstrate a good understanding of industry standards and regulatory requirements
• Familiar with auditing processes and have participated in both internal and external audits
• Have a positive and collaborative attitude; you understand that a key component of  cybersecurity is bringing others along with you on the journey
• Work well with a team, and admit to and learn from mistakes
• Strong written and verbal communicator who can promote consistent messaging while tailoring information to suit the audience's needs
• Motivated self-starter who can handle competing priorities
• Have a strong desire to grow your technical understanding of technology, cybersecurity and associated risks
• Detail-oriented and organised
• Fluency in English required

If you're a recruiting agency and want to partner with us, please reach out to agency-partnerships@janestreet.com.