Cybersecurity Risk Management (RM

Title: Cybersecurity Risk Management (RM)

Location: Remote

Duration: 6 Months contract

Duties: Overall, need an experienced resource that will help drive overall Risk Assessment engagement and executions and our Risk Acceptance/Documentation processes.

Skills:

Must haves:

• Minimum 4 years of experience with Cybersecurity Risk Management (RM)
• Experience and understanding of risk management control frameworks: NIST RMF (Risk Management Framework), ISO 27005, and ISO 31000
• Review and route, and provide guidance on Risk Assessments
• Lead, provide guidance, and interact with app owners and critical stakeholders on all Risk Management processes
• Process Risk Assessments using approved Risk Acceptance process/documentation
• Proactively monitor risks in risk register to ensure active engagement and ensure overall targeted level of security posture
• Maintain existing and develop any new required Risk Management documentation
• Work with RM Team for support onboarding any RM process to GRC tooling (Service Now or other)
• Reporting maintain accurate and complete data to ensure accurate weekly reporting, to stakeholders, team, LT.
• Expectation of minimum 5 hour overlap in US workday EDT.
• Any other assigned duties as deemed pertinent to overall program.

Nice to haves: Knowledge of industry best practices in Risk Management, including but not limited to Risk Assessment, healthcare standards