Lead cybersecurity
Tasks
- Align practices with ISO
- Align practices with NIST
- Define risk scoring models
- Develop risk dashboards KPIs KRIs
- Evaluate control design with platform teams
- Improve cyber risk processes and frameworks
- Introduce GRC automation tooling
- Lead NIST RMF implementation
- Lead enterprise risk assessments
- Manage POA and M artifacts
- Manage risk exception framework
- Mentor junior analysts
- Oversee SAR development
- Oversee SSP development
- Own enterprise risk register
- Present risk insights to senior management
- Prioritize risks by business impact
- Provide risk insights to stakeholders
- Review risk acceptance decisions
- Standardize control implementation approaches
- Support audits and regulatory reviews
- Track risk exception expiry and renewal
- Verify compensating controls
Perks/Benefits
- N/A
Skills/Tech-stack
Enterprise Risk | Enterprise Risk Management | Exception management | FAIR | GRC | ISO 27001 | Information security | NIST RMF | NIST SAR | NIST SSP | NIST controls | POA and M | Risk Assessment | Risk Exception | Risk Exception Management | Risk Management | Risk register | Risk scoring | ServiceNow
Education
N/A
Related jobs
-
AWS | Azure | Azure Sentinel | Defender for Endpoint | Defender for Office 365Mid-level Full TimeColombo, Sri Lanka16d ago
-
AI Act | AI Governance | AI RMF | AI System Inventory | Control libraryAgile benefits | Annual bonus | Health & Wellness allowances | Health and life insurance cover | Hybrid work arrangementSenior-level Full TimeSysco LABS - Sri Lanka21d ago
-
Alert triage | Cloud Security | Control Recertification | False positive reduction | Risk AssessmentHealthcare | Paid volunteering days | Retirement planning | Wellbeing initiativesSenior-level Full TimeColombo, Sri Lanka1mo ago