IT Risk Officer - Cyber/Security Risk - Innovative Tech Company

Location
England, London
Salary
£50,000 - £55,000 per annum
Posted
08 Aug 2018
Closes
22 Aug 2018
Ref
13942313/001
Contact
Luke Pulsford
Position/Level
Consultant
Sector
Technology
Contract Type
Permanent
Language
English

IT Risk Officer - Cyber/Security Risk - Innovative Tech Company

I am working with a very innovative technology company, who are looking for an IT Risk Officer to support the CTO & Head of Compliance.

Client Details

Established tech innovator, with a tech start-up culture (backed by a parent company that is one of the leading UK organisations it its field) and working with the latest, emerging technologies.

The organisation has created an innovative global platform, for the sharing economy and financial markets. This exciting solution uses the latest social, biometric, image processing and machine learning technologies, solving problems for Financial Services organisations and challenger banks alike.

Description

The IT Risk Manager position, is a newly created role and is a critical role in the company's growth in highly regulated markets such as financial services.

This role is primarily responsible to ensure that IT risks are managed in a consistent and integrated manner across the company's three business units and associated product delivery platforms for supporting technical teams.

The IT Risk Manager will manage all aspects of IT risks within supported IT businesses. The successful candidate will have experience in IT Risk and Information Security & Cyber Security in a technology organisation.

The position will require the ability to effectively conduct IT/Security risks assessments and manage multiple priorities efficiently while demonstrating excellent time management skills.

Principle Accountabilities:

  • Identification, assessment and ranking of new and emerging IT risks, and periodic review of known risks and their controls
  • Oversight, under the supervision of the CTO, of Information Security, Infrastructure, software development, data processing and Cyber resiliency, working closely and cooperatively with the platform Technical Leads and Head of Compliance
  • Review risk remediation plans to assess and report on effectiveness of proposed remediation and appropriateness of the time-line
  • Oversee remediation of deficiencies identified in monitoring reviews, self-assessments, automated assessments, and internal and external audits
  • Assist in development of, and participate in, IT Policy Exception process. Assist IT leaders in understanding and implementing IT policy objectives in ways that are cost effective, and align with business objectives
  • Stay current on security industry trends, attack techniques, mitigation techniques, and security technologies by attending conferences, networking with peers, and other educational opportunities.
  • Compliance with company standards, policies and processes

Profile:

  • 3+ years of experience in IT Risk Management and Information Security Risk
  • Deeply familiar with COSO/COBIT, NIST cybersecurity framework, ISO security standards, PCI DSS
  • Industry certification (e.g., CRISC, CISA, CISM) / or working towards
  • Risk Assessment - Proven experience creating, organizing, and articulating summaries of risk assessment findings/points of view that are easily understood by stakeholders
  • Experience with deploying and/or managing enterprise Governance, Risk, & Compliance (GRC) technologies
  • Knowledge of regulatory requirements (e.g. SEC, PCAOB, FTC, GDPR)
  • Experience working effectively as a member of a cross-functional team
  • Knowledge of IT infrastructure and security

Desirable:

  • Experience with Risk Management in an Agile Continuous Integration or Continuous Deployment environment
  • Previous experience in gaining ISO27001 certification
  • Experience in leading technology consulting firm
  • Awareness of OWASP coding standards
  • Awareness of new technologies (e.g. Docker)
  • Experience with AWS or similar cloud service
  • Previously worked with Anti Money Laundering (AML) and Know Your Customer (KYC) regulations

Job Offer:

  • Stand alone first line (1LoD) role, reporting directly into the CTO
  • Established tech innovator, with a tech start-up culture (backed by a parent company that is one of the leading UK organisations it its field).
  • Great opportunity for a IT Risk Advisor (circa 2 years exp), looking to take the next step in their career into management/ownership.
  • Location: West, London

IT Risk | Technology Risk | Cyber Risk | Security Risk | Information Security | Three Lines of Defense | 3LoD | IT Controls | Risk Management | Governance | Compliance | Policies | Procedures | Operational risk | Framework | Disaster Recover | Business Continuity | Digital | Cloud | Machine Learning | Innovation | Agile | Emerging Tech | IoT

IT Risk Officer - Cyber/Security Risk - Innovative Tech Company

Similar jobs

Similar jobs