Security Consultant
Recruiter
Listed on
Location
Salary/Rate
Type
Start Date
This job has now expired please search on the home page to find live IT Jobs.
Main Stakeholders:
*Global IT head of Security Risk and Compliance
*Corporate Function IT Head
*Internal & External Audit
*Legal
Measured on:
*Achievement of Security, Risk and Compliance SLA Targets and impact of risk and security issue
*Team satisfaction (GPTW) of security vulnerabilities or non-conformities raised for Pillars applications /systems
Main tasks & responsibilities:
*Support the Global Head of Information Security, Risk and Compliance and IT GRC Director in the implementation of the Group Information Security Strategy in the Pillar.
*Review and evaluate IT procedures and controls concerning Information Security at a Pillar level
*Ensure ICOFR, RIM, Group Policy and self-assessment exercise are carried out in a timely fashion and in line with Group expectations.
*Communicate and publicize the client IT Policy framework and work with the Governance, Risk and Compliance Director to ensure users are educated and trained in all aspects of the Policy framework
*Liaison with Assurance function (GIA, Group IT Assurance, External Auditor)
*Make sure all audit actions (Internal & external) have a named owner and remediation plan; ensure agreed actions are delivered in line with agreed dates.
*Assess current levels of risks within the Corporate Function IT environment on an on-going basis. Ensure all the Identified security risks are managed through their life-cycle from identification to closure and provide Appropriate visibility of the same to the Management
*Ensure security testing is carried out for Pillar Important Assets and report finding are followed up and timely addressed
*Ensure that project team and delivery teams deploys products /systems / applications in line with Security Architecture Requirements and Standards
*Provide concise, relevant and informative reports to the Global Head of Information Security, Risk & Compliance and Head of IT Corporate Function on the status of security and risks within the IT environment
*Be the recognized expert in the field of Information Security within the Pillar and keep abreast of local regulations and requirements related to information security like Data Privacy Laws
*Ensures Group Information Security Awareness Initiatives and end users training are deployed
People, Resource management responsibilities & Decision Power:
*Line Manager of assigned resources
*Define security and compliance guidelines across the Pillar
*Define KPIs related to Risk management
Minimum requirements & Personal attributes:
Education and certifications/training:
*University degree preferably in a technical subject or any comparable education
*CISSP, CISA, CISM or similar certification preferred
*Professional experience in running the information security office analysing and applying information security, risk management, and privacy practices
Professional & Leadership experience:
*5 years of experience in a similar position within a Global Organization
*Professional experience in running the information security office analysing and applying information security, risk management, and privacy practices
*Demonstrable knowledge in key IT Security and Risk Management framework (such as COBIT, RiskIT, ISO17799, ISO 27001)
*Demonstrated experience and exposure in the international security arena dealing with security-related issues
*Knowledge in IT Security and Risk Management and international regulatory compliances and frameworks (such as COBIT, Risk IT, ISO 2700X, SOX, NIST) *
*Big 4 or HR industry background is a strong requirement.
Personal attributes:
*Strong team player
*Ability to build pro-active, co-operative working relationships with customers, peers and key stakeholders based on respect and team work
*Good ability to convince and influence stakeholders from all backgrounds.
*Experience with and sensitivity for different cultures
*Ability to act under strong pressure and to manage efficiently crisis situations
*Good in leadership, inspiring, encouraging and providing constructive criticism to help improve performance of colleagues
*Able to evaluate information, identify key issues and formulate conclusions based on sound, practical judgment, experience and common sense
*Willingness and ability to travel
Language requirements:
*Good to excellent command of English
*Any additional language is a plus
By applying you will register as a candidate with Spring Technology . Our Privacy Statement explains how we will use your information.
