Cyber Security Risk Management

Risk management, KRI, Metrics
Contract W2, C2H W2, 12 mo. contract-hire
Depends On Experience
Telecommuting not available Travel not required

Job Description

Analysis and reporting role to direct measurement and mitigation of critical cyber security risks to the firm
• Design and oversee ongoing governance metrics program--many metrics rolled together with relationships to the Key Risk Themes; 
• Work with Operations to analyze, store and communicate that data effectively; 
• Work with leaders to establish risk tolerances and thresholds; 
• Devise ways to communicate our risk position relative to those thresholds; 
• Direct the work of analysts in support of this mission


Job Specific Responsibilities
This position is responsible for directing and overseeing information risk management strategy and processes for a broad functional area of the overall information risk management function. The candidate will implement, and enforce policies, procedures, and programs to identify, assess, and reduce cyber security risk to the functional business unit and/or the global business enterprise. Information risk management includes risks arising from the following functional disciplines: Cyber security; Information security; Cyber resiliency
-Contribute to the development of methods to monitor and communicate risk levels, including key risk indicators (KPIs) and risk dashboards. Implement programs that align to those methods.
-Implement programs to maintain alignment with the firm or business unit’s risk tolerance and appetite
-Develop and maintain policy and standards for the firm that prescribe proper information risk mitigation behaviors, strategies, and methods
-Develop and maintain a framework of governance to promote adherence to information risk mitigation policies and standards
-Plan and conduct security authorization and assurance reviews for new and existing information systems
-Verify that application software/network/system security postures are implemented as stated, document deviations, and recommend required actions to correct those deviations
-Assess information risk mitigation capability maturity
-Provide information risk mitigation assessment information, including gap assessments, to senior leaders to assist in the development of the firm’s risk mitigation strategy

Candidate Requirements
7 years of experience in a cyber security architecture, risk management, or similar role

 

NO THIRD PARTIES, NO SUB-CONTRACTORS, NO CORP to CORP

 

Data Resource Technologies Inc. is an Information Technology Staffing Firm serving the markets of the United States of America; the greatest country in the world. We work with Direct Clients Only and do not participate in multi layer contracts. Earn The Most Possible and put over 60 years of Information Technology Industry experience to work for you today, Call or Apply NOW!!!

Posted By

Jeremy Jensen

12020 Shamrock Plaza, Suite 200 Omaha, NE, 68154

Contact
Dice Id : 10124769
Position Id : GA_CyberRisk
Have a Job? Post it