Senior Director of Cyber Risk Management (Hybrid)

05 Aug 2024

Vacancy expired!

A retail company in New Jersey is currently seeking an experienced IT professional to join their staff in a Hybrid capacity as their new Senior Director of Cyber Risk Management. In this role, the Senior Director of Cyber Risk Management (Hybrid) will be responsible for safeguarding information system assets by identifying and solving potential and actual security problems in the region.

Responsibilities: The Senior Director of Cyber Risk Management (Hybrid) will:
  • Strategize the integration of cyber risk into cross-functional business processes
  • Improve the security through continuous risk & controls assessment of the environment based on business impact or changes in threat landscape
  • Identify and prioritize initiatives to improve third party risk management and adopt new capabilities in the region to ensure regulatory adherence
  • Promote cyber hygiene through presentations to various business groups on information security awareness and cyber risk impact
  • Create and direct the Cyber Risk Committee and lead all risk metrics and reporting sessions with senior leadership teams
  • Facilitate risk assessments and controls testing exercises on an annual basis
  • Lead the business impact analysis exercises on an annual basis
  • Represent client in leading cyber risk assessments and business impact analysis with its third parties
  • Ability to lead teams and cross functional team in a matrix and global setting
  • Collaborate with Compliance and Legal teams for security control requirements and implementation for current and new regulations
  • Liaise with key business stakeholders to influence business strategy and initiatives from an overall Information Security perspective
  • Be the primary contact for problem-solving Information Security Risk queries and concerns
  • Translate Information Security Risk to business impact statements
  • Develop guidance and assist in the identification, implementation, and maintenance of business continuity strategies in coordination with crisis management and senior leadership
  • Work with key business and IT teams to promote security initiatives, best practices, and general security awareness
  • Perform other duties, as needed

Qualifications:
  • 8+ years of experience in an Information Security and/or Risk Management role
  • Bachelor's Degree
  • Experience in Cyber Risk identification and conducting business impact analysis across a matrix organization
  • Experience in developing and communicating cyber risk metrics to senior and executive management.
  • Experience in the security aspects of multiple platforms, operating systems, software, communications, and network protocols
  • Prior experience in building and operating Cyber GRC frameworks like Archer, RSAM, OpenPages, MetricStream, ServiceNow or SAI 360
  • Thorough understanding of control and risk management concepts and knowledge of the operational aspects of the information risk business
  • Payment Card Industry Data Security Standard and the associated compliance requirements for a Level 1 merchant
  • Prior experience working on Crisis Communications, business continuity and working with senior business leadership
  • Prior experience working with teams across LATEM and South American regions
  • Great interpersonal skills
  • Excellent communication skills (written and verbal)
  • Strong attention to detail
  • Highly organized

Desired Skills:
  • CISSP, CISM or CRISC certifications

  • ID: #44607208
  • State: New Jersey Bridgewater 08807 Bridgewater USA
  • City: Bridgewater
  • Salary: USD TBD TBD
  • Job type: Permanent
  • Showed: 2022-08-05
  • Deadline: 2022-10-03
  • Category: Et cetera