Cyber Security Risk and Assurance Manager

This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board.

10th May, 2024

Position Overview: We are seeking an experienced and dynamic Cyber Security Risk and Assurance Manager to join our clients team. In this role, you will be responsible for managing and enhancing our cyber security risk management and assurance program, ensuring that our organisation operates in a secure and compliant manner. The ideal candidate will have a strong background in cyber security, risk management, and compliance, with proven leadership skills and the ability to drive results in a fast-paced environment.
Key Responsibilities:

• Develop and implement a comprehensive cyber security risk management framework, including risk assessment, mitigation strategies, and ongoing monitoring.
• Lead the development and implementation of cyber security policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices.
• Conduct regular risk assessments and vulnerability scans to identify and prioritise cyber security risks and threats.
• Collaborate with cross-functional teams to develop and implement remediation plans and controls to mitigate identified risks.
• Establish and maintain key risk indicators (KRIs) and metrics to track the effectiveness of cyber security controls and the overall risk posture of the organisation.
• Serve as a subject matter expert on cyber security risk management and assurance matters, providing guidance and support to internal stakeholders and senior leadership.
• Stay abreast of the latest cyber security threats, vulnerabilities, and regulatory requirements, and provide regular updates and recommendations to senior management.

Requirements:

• Bachelor's degree in Computer Science, Information Technology, or a related field; Master's degree preferred.
• Minimum of 7 years of experience in cyber security, risk management, or a related field, with at least 3 years in a leadership or managerial role.
• Strong understanding of cyber security principles, frameworks, and standards, such as NIST, ISO 27001, and GDPR.
• Experience developing and implementing cyber security risk management programs and controls.
• Knowledge of regulatory requirements and compliance frameworks relevant to the organisations industry and geography.
• Excellent communication and interpersonal skills, with the ability to effectively communicate complex cyber security concepts to technical and non-technical stakeholders.
• Proven leadership and team management skills, with the ability to motivate and inspire cross-functional teams to achieve common goals.
• Relevant certifications such as CISSP, CISM, CRISC, or CISA preferred.

Benefits:

• Competitive salary and benefits package.
• Opportunities for professional growth and development.
• Flexible work hours and remote work options.
• Collaborative and inclusive work environment.

If you are passionate about cyber security risk management and assurance and possess the skills and experience we are looking for, we'd love to hear from you! Join us in our mission to protect our organisation and our clients from cyber threats.