We are currently looking for a Security Risk Manager for one of our key clients in financial services. The role reports to the Head of Cyber Security Risk within the CISO function. This is a part time position, 2-3 days per week and will be fully remote.
The role will be focused on Cyber Audits, leading the engagement with external partners who need to audit or assess cyber capabilities.
These audits are from commercial partners of the client, looking to perform due diligence and security assurance, sometimes part of a broader service audit.
The role will be to act as Lead and co-ordinator – assessing the audit request, working out what the task entails and managing the work to ensure deadlines are met. They will then seek responses from control operators within the CISO/IT Outsource Partner’s teams, and ensure the responses provided meet the required level of quality.
Skills and Experience
- Self-starter, can work independently and under own initiative
- Familiar with audits, and responding to them
- Capable of operating at Lead Consultant or Cyber Security Manager level
- Broad cyber/infosec control knowledge across all domains, broadly experienced rather than a “deep dive” technical specialist.
- Can quickly take instruction from the team on how to approach the work, who to speak to, what resources are required.
- Can work alongside existing team and immediately seek assistance if unsure of anything or see an issue with a response – prior to submitting the response
We are not looking for an Audit specialist, more someone with a Security Risk background with experience of responding to audits.