Job description
Position Summary:
The IT Risk Manager is a highly respected, influential and in-demand role within the business. The position is responsible for supporting the security direction of the business and elevating the company’s security posture across multiple jurisdictions. The IT Risk Manager is expected to support the security strategy of the business within new and existing information system capabilities. Consequently, the position requires both an understanding of legacy systems, as well as new technologies and requirements. The Risk Manager is also responsible for leading internal audit efforts and coordinating with audit partners.
The ideal candidate is technical and possesses at least six years of experience in security, compliance, risk management, or audit. The role oversees the business security requirements and obligations mandated by standards, regulations and regulating bodies such as the Sarbanes-Oxley Act (SOX), General Data Protection Regulation (GDPR), Federal Financial Institutions Examination Council (FFIEC), and International Organization for Standardization (ISO), AIFMD, PSD2, EBA, ESMA, MAS, CSSF, CIMA, CBI. In tandem with security leadership, the IT Auditor Risk Manager consistently assesses, audits, and validates the assurance of the security program. As a primary point of contact for internal and external auditors, the IT Auditor Risk Manager monitors progress and enforces resolution of outstanding issues that may lead to non-compliance or security threats to the business via effective delegation and empowering cross matrixed teams. Success will be driven by strong servant leadership principles and guidance which compels teams to action. As a primary point of contact for security risks, you will monitor progress and enforce resolution of outstanding issues that may lead to non-compliance or security threats to the business. As a key member of the information security team, the IT Auditor Risk Manager must focus on strong risk management and corporate resiliency, and not be driven solely by compliance.
Essential Job Duties:
Manage and execute delivery of assigned internal, external and jurisdictional audits per published audit plan.
Improve compliance of IT processes and identify opportunities for technology compliance control automation.
Design high-quality test plans and direct technology control test activities.
Continuously improve the technology control framework in alignment with industry trends
Execute and monitor IT risk assessments.
Define and publish quantitative and qualitative technology compliance metrics and metrics to assess the success of the security program.
Identify strengths and weaknesses in IT technology operations and projects as they relate to privacy, security, business resiliency and regulatory compliance.
Work in tandem with GRC and business leadership to perform ongoing security program assessments and audits and create annual strategic technology and budgetary directives.
Skills and Experience:
Strong business acumen and security technology skills for well-rounded proficiency, as well as proven ability to align with security practices and compliance responsibilities.
Extensive knowledge and understanding of audit standards and practices, and control frameworks (ISO, NIST, COSO, COBIT, etc.).
Extensive knowledge and understanding of technology policies, standards, and guidelines.
Exceptional written and verbal communication skills, and proven ability to translate security and risk to all levels of the business.
Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.
Additional Qualifications
Prior experience working with GRC systems and knowledge of best practices in configuration.
Self-motivated, directed and well-organized, with the vision to position controls in anticipation of threats.
Highly trustworthy; leads by example.
Education Requirements
Certification Requirements
Why work with Intertrust, a CSC Company?
At Intertrust, a CSC Company, we’re always looking ahead, finding ways to improve and anticipate the future needs of our clients. Curiosity fuels our innovation, and productivity drives our results. This proactive mindset has helped us adapt and create solutions that have enabled businesses to run smoother and smarter for more than 120 years.
Intertrust, a CSC Company is committed to attracting, developing, and retaining talented people whose personal values align with ours. Our more than 8,000 colleagues around the globe are empowered to bring the right solutions to market to meet client demand.
About us
CSC is a global business, legal, and financial services company based in Wilmington, Delaware, USA, providing knowledge-based solutions to clients worldwide. We have offices and capabilities in over 140 jurisdictions in the Americas, Europe, Asia Pacific, and the Middle East, and more than 8,000 colleagues. We are the business behind business. ®
CSC is committed to creating a diverse and growth-oriented environment where everyone is valued and respected. CSC offers challenging career opportunities and excellent benefits, including annual success-sharing bonuses or commission plans based on individual performance. To learn more, visit cscglobal.com/service/careers.
Visit our careers site to learn more about CSC and our commitment to our clients, communities, and each other.
Disclaimer: The information above describes the general nature and level of work performed by employees in this role. It is not intended to describe all duties, responsibilities, and qualifications.
We are looking for an HR Recruiter to manage our full cycle recruitment, from identifying potential hires to interviewing and...
Apply For This JobOverview: QMS Specialist – Required having relevant experience around 5+ years in managing quality standard for enterprise applications (ERP /...
Apply For This Job1. Information technology professionals study, design, develop, implement, support, and manage computer-based information systems, including both software applications and computer...
Apply For This JobDesktop Support Engineer Install and configure software, hardware, networks, Firewalls, switches, Wireless Access Points, Phone Systems OS installation , Must...
Apply For This JobJob Opportunity: IT Admin We are currently seeking a skilled and knowledgeable IT Admin for Networking Hardware and Software Executive...
Apply For This JobJob Description: ServiceNow TelCo Architects Position Overview We are seeking skilled and experienced ServiceNow Architects with excellent understanding of TelCo...
Apply For This Job