Security Risk Manager

Geplaatst op 15 April 2022

For our client, based in Eindhoven region , we are looking for:
Role:  Security Risk Manager
Start date: 02-05-2022
Duration: 12 months
Hours: 40 hours per week
Extension: Yes!
Closing date to apply : 22-04-2022, 12.00 AM
 

Description:

The security risk manager, in the security governance & risk team, is responsible for:
  • Supporting the development and maintenance of Security Risk Management means and methods to be applied across Sectors, including the implementation of a GRC Tool
  • Support the CSMR connecting the SRMs community across sectors/function
  • Support the consolidation and aggregation of security risk and report to the CISO/CRC.
  • Support the IT SRM (and CSRM where needed) in performing Risks analysis, assess the coherence and dependencies and propose mitigating measures
  • Support the coordination Risk horizon workshop and RLOS (Risk Line of Sight) meeting with Executive (Planning, sharing, coordinating and follow up activities)

Role and responsibilities:

As a risk management specialist in the central security risk management team you are responsible for ensuring that the security risk management sectors can collaborate effectively and have the means available to report to their stakeholders in an effective manner. You will work with the team on defining and formalizing the means and methods used by the security risk management community.

Your responsibilities include, but are not limited to:
  • Align risk reporting requirements of multiple stakeholders.
  • Advise on security risk management topics and implementation of means and methods of security risk management. Helping to lift the security risk management competence to a higher maturity level.
  • Support in the creation of dashboards and periodic reports on the status of risk management activities to (senior) management.
  • Contribute to priority setting on security roadmap initiatives using a risk based approach.
  • Assist in the establishment and implementation of risk management frameworks.
  • Collaborate with stakeholders within the risk & business assurance community on implementing tooling to support governance, risk and compliance processes.

Requirements:
  • Bachelor level position with a focus on information security and/or business management.
  • 6+ years of experience working in a risk management role. Preferably within a large high tech organization.
  • 6+ in a (Big4) consultancy organization
  • CISA, CISM, CISSP, CRISC, ISO2700/1/2, ISO31000 knowledge and/or certification is a big plus.
  • Experience in developing risk control frameworks.
  • Experience in stakeholder management & communicating with senior management.
  • Experience in process design.
  • Experience with ServiceNow GRC tooling is a plus.

Competencies:
  • Fluent in the English language
  • Excellent team player
  • Ability to hit the ground running and come with proposals from day one
  • Great communication skills
  • Highly motivated and with demonstrable leadership attributes
  • Outstanding analytical and critical thinking skills, focused on Risks
  • Extremely diligent and attentive to details
  • Effective communicator at all levels with excellent writing skills
  • Ability to cope under pressure and balancing multiple priorities

Response/Apply:
  • Most recent CV, in Word format, max 5 x A4, in Dutch/English
  • Solid motivation, focused on the application
  • Explanation of the requirements and competences set
  • At least 1 recent reference, which can be verified!
  • Availability



 
Reageren op deze vacature?