Sr. Information Security Risk Specialist
Are you collaborative, innovative, and enjoy visionary thinking? Are you a self-motivated individual who is hardworking with proven work history? Are you forward thinking, creative individual who willingly takes ownership of complex and challenging initiatives? Then, Apply Now!
Working with one of the top financial clients, this role calls for a Sr. Information Security Risk Specialist who will be responsible for partnering with Technology segments to support independent challenge and oversight of issue remediation plans impacting our information security control environment. The ideal candidate is someone who is well-versed in providing governance, risk, compliance and issue remediation oversight and control best practices that meet the client’s overarching Platforms & Technology Governance strategy and objectives.
Responsibilities:
- Lead assessments of audit and regulatory findings remediations required to mitigate risk within technology infrastructure and applications, working with stakeholders across the three lines of defence to ensure effective risk mitigation and remediation
- Provide advice and guidance to Technology segments and Technology Risk Services on various areas requiring subject matter expertise and interpretation: Audit & Assurance Standards; IT Risk Governance Control Frameworks, and GRC (Governance, Risk, and Compliance) frameworks.
- Contribute to the development of mature Governance Oversight & Control practices, through improvement of Risk Identification, Control Design and Operating Effectiveness.
- Identify emerging themes, understand trends, and provide specialized business management advice to senior management and respective teams while raising industry, external and internal, enterprise and business awareness.
- Lead continuous improvement projects, leveraging agile/lean continuous improvement practices/methods that demonstrate sustainable and leading-edge solutions (e.g. Artificial Intelligence (AI), Machine Learning (ML), Power BI/Apps, Python, etc.)
Desired Skill Set:
- 10+ years as an IT Risk Specialist with relevant experience in governance, risk and compliance management within regulated industries.
- Information Security or technology risk and controls background in the financial industry is a plus.
- IT governance experience in information security and controls risk frameworks (i.e., ITIL, NIST, COBIT).
- Knowledge and experience with various lifecycle methodologies/frameworks, i.e., Agile, Project Management, IT Processes, Risk Management frameworks and process/operations.
- Knowledge and experience with various technology tools, including, but not limited to, RSA Archer, JIRA, Confluence, Sharepoint, MS Office, and Excel.
- CRISC certification or equivalent experience
- University degree or relevant field / equivalent experience.
Nice To Have:
- Experience or knowledge with AI- Co-Pilot, Power BI and Automate.
- CISA certification or equivalent experience.
- CISSP certification or equivalent experience
BeachHead is an equal opportunity agency and employer. We advocate for you and welcome anyone regardless of race, color, religion, national origin, sex, physical or mental disability, or age.
Privacy Policy