Cybersecurity Risk Management Lead

Job Title: Cybersecurity Risk Management LeadThe role of the Cybersecurity Risk Management Lead is a key position within our organization. This individual will be responsible for enabling businesses and functions to manage their information security and cybersecurity risks.They will ensure that risk and controls are assessed and implemented appropriately, objectively and independently through professional and specialized subject matter experts. The Cybersecurity function plays a crucial role in ensuring the confidentiality, integrity, and availability of our systems and data.The successful candidate will be a Cybersecurity Lead for Risk and Compliance IT, supporting the Chief Information Security Officer for Enterprise Technology. They will work closely with the 1st Line of Defence (1LoD) team to manage cyber security risks across Enterprise Technology and Risk and Compliance IT.The key responsibilities of this role include:Supporting business as a cyber SMEGovernance & Reporting of cyber controlsInformation Security Risk Management and RemediationGovernance & Reporting:The Cybersecurity Risk Management Lead will be responsible for collating information security monitoring and risk reports. They will translate technical information into consumable reports that can be shared with business and technology stakeholders.They will represent Cybersecurity in relevant management and governance forums, ensuring that security requirements from Enterprise Technology Risk and Compliance IT Team are shared with the central Cybersecurity functions.This will enable sufficient coverage and prioritization within change programmes and initiatives. The successful candidate will work collaboratively with Enterprise Technology, Cybersecurity and other business functions to achieve this goal.Information Security Risk Management & Remediation:The Cybersecurity Risk Management Lead will drive and support Cybersecurity risk management and improvement activities. They will ensure remediation activities are completed within agreed timelines.They will ensure adherence to cybersecurity controls and enable access to cybersecurity services to support business projects. Additionally, they will work with stakeholders in Enterprise Technology and beyond to support the resolution/remediation of all major security incidents.Regulatory Compliance:The successful candidate will provide support to Regional Information Security Officers (RISO) to meet local cybersecurity requirements. They will collaborate with Cybersecurity central functions to drive the management and reporting of compliance requirements with Industry standards, such as PCI-DSS and SWIFT.Additionally, they will provide support to regulatory, audit and external security engagements.Requirements:To be successful in this role, you will need to have:A minimum Bachelor's degree and/or experience in IT security governance and operational processes, preferably in the Financial Services industry or global corporate service provider.Background in one or more of risk management, Audit, ISR - desirable but not essential.Qualifications in one or more industry-recognized cybersecurity-related certifications, including ISO27001, CISA, CISM, CISSP, CRISC - desirable but not essential.Availability to travel, if required, for this role, i.e., travel within country as well as occasional International travel.A positive and professional attitude, team player, flexible and adaptable, open to change(s).Confident and takes responsibility and ownership for work and personal development.Good spoken and written communication and ability to adapt style based on audience (Fluent in spoken/written English).Ability to communicate technical subject matter to non-technical stakeholders.Previous experience of delivering an excellent customer service.Ability to quickly develop good working relationships with stakeholders.Ability and self-motivation to learn and pick things up quickly.