Head of IS Risk Management

Tasks

• Assess and report exceptions to risk policies
• Communicate risk status to stakeholders
• Deliver ad hoc and planned risk assessments
• Develop remediation steps to reduce risk
• Develop risk dashboard reports
• Develop threat modelling process
• Develop vendor risk mitigation plans
• Finalize risk management KPIs
• Identify prioritize risk scenarios
• Implement automation tools for risk management
• Improve QA routines and risk controls
• Improve information security policies procedures standards
• Manage Information Security Risk Management Program
• Measure monitor and report information security risks
• Monitor vendor risk mitigation execution
• Oversee risk monitoring plans
• Present management reports on risk status
• Review threat intelligence and identify risks
• Review vendor and third party risk
• Review vulnerability assessments and penetration testing results
• Supervise cybersecurity risk assessments
• Supervise security projects for secure coding and testing
• Validate IS risks with VA PT team

Perks/Benefits

• N/A

Skills/Tech-stack

CISSP | CRISC | Cybersecurity Risk Management | Cybersecurity risk | GRC tools | Governance Risk | Governance risk compliance | ISO 27001 | Information Security Metrics | Information security | PCI DSS | Penetration Testing | Risk Assessment | Risk Management | Risk automation | Risk compliance | Risk monitoring | SWIFT Customer Security Programme | Secure Coding | Security metrics | Threat Intelligence | Threat modeling | Vendor Risk | Vendor risk management | Vulnerability Assessment