The point where experts and best companies meet
Share
You will:
Lead a global security and resiliency risk management program that aligns with business strategies and deploys common risk methodology, processes, and taxonomy; own reporting that drives risk buy-down; and help develop strategy in support of annual planning cycles as a part of the SRO GRC leadership team
Ensure material security and resiliency risks are identified, assessed, and treated; provide a consistent baseline for managing security and resiliency risks; enable risk-informed strategic planning; and support compliance with Enterprise Risk Management guidelines and regulatory requirements for security risk management
Establish cross-functional governance and develop routine executive and management-level reporting materials and dashboards representing the organization’s security and resiliency risk posture, including risk reduction trends and risk mitigation statuses; develop Key Risk Indicators (KRI) processes to inform management and executives of the changing risk landscape
Enhance and drive the 3rd party risk management strategy in close partnership with business functions; mature the governance of the 3rd party risk management framework that ensures all cybersecurity, privacy, resiliency, product security and legal requirements are embedded and overseen
Recruit, manage, mentor, and lead a global team responsible for the execution of the risk management strategy
Essential Requirements
12+ years of experience in information security risk management ideally in the technology industry
Proven leadership track record with a heavy security risk management, governance, and compliance background and expertise across a wide range of technology, privacy, and cybersecurity disciplines
Prior experience with leading, managing, and driving risk management programs for a large-sized organization
Ability to drive and globally integrate complex, multi-functional, cross-organizational initiatives
Demonstrates thought leadership and possesses best practice awareness across functional areas of responsibility
Desirable Requirements
Bachelor’s or Master’s degree in Computer Science, Information Systems, Cybersecurity, Risk Management or other related field; or equivalent relevant experience
Professional certifications in governance, risk, compliance, security, or resiliency are preferred but not required
These jobs might be a good fit