Cybersecurity Risk Manager

Job Description

• We are seeking an experienced Cybersecurity Risk Manager to help identify assess and mitigate cybersecurity risks across the organization. The ideal candidate will have a strong background in cybersecurity governance risk management and risk assessment methodologies.

Key Responsibilities:

• Conduct cybersecurity risk assessments and evaluate potential threats vulnerabilities and business impacts.
• Develop implement and maintain cybersecurity risk management frameworks policies and procedures.
• Monitor and report on cybersecurity risks remediation activities and risk treatment plans.
• Collaborate with business technology and security teams to ensure appropriate risk controls are implemented.
• Support security governance compliance audit and regulatory initiatives.
• Provide recommendations to management on risk mitigation strategies and security improvements.

Required Skills & Experience:

• Strong experience in Cybersecurity and Information Security.
• Proven expertise in Cybersecurity Risk Management and Risk Assessment.
• Experience conducting qualitative and quantitative risk assessments.
• Knowledge of cybersecurity frameworks and standards such as ISO 27001 NIST CSF NIS2 CIS Controls COBIT and ISO 31000.
• Experience working with governance compliance and audit requirements.
• Strong analytical communication and stakeholder management skills.

Preferred Certifications:

• One or more of the following certifications is highly desirable:
• CISSP (Certified Information Systems Security Professional)
• CISM (Certified Information Security Manager)
• CRISC (Certified in Risk and Information Systems Control)
• ISO/IEC 27001 Lead Implementer or Lead Auditor
• CISA (Certified Information Systems Auditor)
• CCSP (Certified Cloud Security Professional) - preferred
• ISO 31000 Risk Management Certification - preferred