IT Security Risk Manager
Recruiter
Listed on
Location
Salary/Rate
Type
Start Date
This job has now expired please search on the home page to find live IT Jobs.
IT Security Risk Manager - London
ISO27001 - PCI - NIST - SOX - Risk - Information Security - Recovery
The role is with a longstanding Financial Service client of ours who offers an environment quite different to other organisations in the same sector. A lack of bureaucracy and red tape, clear career progression and the ability to be heard is what has really attracted top talent to this company over the years. A strong remuneration is on offer for the right person along with an excellent wider benefits package. As the IT Security Risk Manager you will need experience of;
* Being accountable for ensuring that at all relevant elements of technology security are managed, supported and maintained within, providing assurance that the risk profile is fully understood in respect to perimeter and internal security, policy adherence to Industry Standards, Disaster Recovery and Business interruption
* Supporting the business in its operation and growth whilst reducing IT Security Risk to an appropriate level.
* Ensuring adherence to both set bank standards and industry best practise.
* Managing and develop the Bank's IT Security Risk Team.
* Directing the overall risk management process including risk assessment and evaluation in line with the 'risk appetite'. Risk reporting in an appropriate way for different audiences.
* Managing the company's risk register to ensure that all IT Security risks are remediated where possible, reduced to an acceptable level or recorded, understood and signed off at the appropriate level.
* Maintaining PCI DSS and other applicable compliance standards.
* Working with Internal and External audit to assure IT Security.
* Assuring the patching policy and implementation of patch plans. To be worked through in accordance with set PCI compliance standards and timelines.
* Ensuring quarterly penetration testing and project based penetration testing is completed and risks remediated through technologies such as Nessus, sslscan and Wire shark or third parties.
* Acting as a Subject Matter Expert on IT Security Risk for the Business.
* ISO27001, PCI-DSS, NIST, SOX
If you are experienced in the areas listed above then please do not hesitate to apply!
Sthree UK is acting as an Employment Agency in relation to this vacancy.