Cyber Compliance Specialist


Premium Job From Experis IT

Recruiter

Experis IT

Listed on

9th October 2020

Location

City Of London

Salary/Rate

£400 - £490

Type

Contract

Start Date

ASAP

This job has now expired please search on the home page to find live IT Jobs.

Technology Risk - Customer Assurance AnalystRemote working This role is within the Technology Risk function which is a Second Line of Defence (2LoD) function that has the purpose to be specialists who oversee and are business partners in managing "enterprise" risk across the function through:Guidance: providing policies, frameworks, tools, techniques and support to enable risk to be managed in the First Line of Defence (1LoD). Where the 1LoD is both Business (Including external) and Technology facingOversight and Challenge: Monitoring and assurance to provide a second opinion on the effectiveness of 1LOD. Reporting an independent and potentially aggregated view of the business. Horizon scanning the future Risk landscape including regulatory change.Customer Assurance, Attestations, Cyber Compliance & Controls: Provide internal and external assurance responses relating to client processes, products and services working with 1LOD and 2LOD subject matter leadsRole ObjectiveThis short-term role will enable the Cyber Compliance & Controls team to support the following activities by working with the Cyber Regulatory Compliance Manager you will:Identify new and emerging laws and regulations, providing research and analysis of the scope and impact to the customers and using a regulatory risk assessmentMonitor the regulatory landscape across the globe and their impact on technology and regulated business entities.Understanding the regulatory environment including fines and penalties for non-compliance, scope and authority of the regulator and changes in laws and regulationsDetermine likely remediation effort to address gaps in existing processes and technologyDocument and report the findings from the analyses for Senior/Executive ManagementEssential responsibilities:Monitoring the regulatory landscape in the region and understand the regulated entities that reside withinEstablish an in-depth understanding of cyber and privacy laws and regulations within the applicable regionProvide cyber support to key stakeholders and regulated business entities in the specific regionImpact analysis of authority documents against controls, policies and standardsSupport cyber regulatory risk assessmentsEssential requirements:Working knowledge of the European Union General Data Protection Regulation (GDPR)Awareness of other EMEA laws and regulations, such as the South African Protection of Personal Information Act (POPIA) and the Nigerian Data Protection Regulation (NDPR)Understanding control frameworks such as Center for Information Security (CIS)Ability to interpret regulation requirements and translate into a technical controlExperience of Operational Resilience frameworks and standardsIndustry related certification such as CISSP, CIPP/E and CIPTExperience of working within the cyber security arenaStrong communication skills at all levelsDesirable characteristics:Strong report writing and document creation skillsTeam player

You are currently using an outdated browser.

Please consider using a modern browser such as one listed below: