My Shortlist

Your shortlisted jobs will appear here. To view your shortlist: Login Or Register

Date Added: Sat 14/01/2023

Cyber Governance, Risk And Compliance Manager

London, EC4N, UK
Apply Now


Job Type: Permanent, FullTime

My client in the Insurance Industry is looking for a Cyber Governance, Risk and Compliance Manager with 10 years of experience to join their Operational Management Team on a 12 month FTC in the City of London.

Experience with COBIT and NIST is a must have.

Key Responsibilities for a Cyber Governance, Risk and Compliance Manager:

Develop, implement, and continuously review Cybersecurity Risk Management Policy, Framework and Control Environment.
Define acceptable control maturity, required to achieve operational risk tolerance. Act as 2nd line representative for cybersecurity programme oversight.
Ensure successful definition and implementation of the 2nd Line of Defence (LoD) Information Risk management within the Operational Risk framework in accordance with the insurance company's risk management policies and the 3 LoD model, with a specific focus on information security control framework.
Be the key contact for the Risk & Control Self-Assessment (RCSA) process and have continued dialogue with information security control owners
Perform business reviews to assess the level of internal control, and demonstrate that risks are managed within risk appetite, and advise management of the results and recommendations
Assist with the implementation and monitoring of information security internal controls in accordance with the NIST framework.
Ensure successful implementation of information security risk management framework through deep dives, risk control self-assessment (RCSA), management actions, and development and testing of formal internal controls in accordance to the Cyber Governance, Risk and Compliance Manager responsibilities.
Develop, monitor, evaluate and report key information security metrics to provide management with accurate and meaningful information regarding the effectiveness of the information security controls (design and operation)
Assist the ORM team and the LoD1 in defining and updating the relevant Key Risk Indicators (KRIs)
Facilitate periodic assessments to gather reliable information on the confidentiality, integrity, and availability (CIA) of information assets; provide 2nd LoD opinion on outcomes

Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates
Apply Now