Cyber Risk Job Description
Cyber Risk Duties & Responsibilities
To write an effective cyber risk job description, begin by listing detailed duties, responsibilities and expectations. We have included cyber risk job description templates that you can modify and use.
Sample responsibilities for this position include:
Cyber Risk Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Cyber Risk
List any licenses or certifications required by the position: CISSP, CISA, CISM, GIAC, III, ENCE, CFCE, IR, CREST, CEDS
Education for Cyber Risk
Typically a job would require a certain level of education.
Employers hiring for the cyber risk job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Information Security, Management, Information Systems, Information Technology, Education, Engineering, Mathematics, Business, Computer Forensics
Skills for Cyber Risk
Desired skills for cyber risk include:
Desired experience for cyber risk includes:
Cyber Risk Examples
Cyber Risk Job Description
- Advise on the technical strategy for Secure Account Transition Program from a programmatic and cybersecurity perspective
- As required, review artifacts to validate that the implementation is in line with the technical vision
- Provides and presents organizational communication and education related to the program
- Educates and advises technology and business executives as needed on cyber and technology risk appropriate mitigation strategies and approaches related to security and risk management
- To assist on Cyber Risk Services for client
- Recruit, motivate, mentor and manage workflow of staff
- Identify tasks necessary to remediate identified risks and vulnerabilities
- Contributing to the practice’s growth plan
- Handling engagement risk, deliverables, and project economics
- Display both breadth and depth of knowledge regarding functional and technical issues
- Excellent communication skills and the ability to communicate highly complex concepts effectively, appropriately tailored to people from a range of cultures, technical backgrounds and seniorities
- Relevant cyber qualifications, for example M.Inst.ISP, CISSP and similar, would be beneficial
- Certifications such as CISSP, CISM, CISA, PRINCE2 and ITIL technical certifications in solutions such as DLP, SIEM and penetration testing are advantageous
- Bachelor's (or higher) degree in Business Administration, Information Technology, Computer Science, Computer Engineering, Information Systems or related field (willing to accept foreign education equivalent)
- Five years of Information Technology experience
- Bachelor's (or higher) degree in Computer Science, Information Systems, Engineering, Math, Decision Sciences, Risk Management or related field (willing to accept foreign education equivalent)
Cyber Risk Job Description
- Provide direction and tasking to the direct reports
- Collaborate with initiative leads and external client stakeholders
- Develop Vulnerability Management & Assessment Program
- Quantify the probability and severity of potential direct and indirect impacts
- Envision and help develop new insurance and risk-service offerings that can be sold to existing clients
- Matures the risk based metrics, scorecards and dashboards to track performance identify and monitor trends across the organization
- Define Response Scenarios
- Identify, classify and prioritize Threat event levels
- Create a comprehensive pool of structured Response scenarios including clear procedures for Communication, Containment, Mitigation, Recovery and Restoration
- Ensure all constituent roles are orchestrated for each Response
- Bachelor’s Degree in Management Information Systems, Information Systems Auditing, other related fields
- Technical aspects of security architecture, security tools, security control measures
- Knowledge on information security, including infrastructure security architectures and configurations, application/database security, encryption mechanisms, logical data/information storage techniques, data management or mobile technologies
- Experience with directories such as IBM Directory Server
- Experience with databases such as Oracle, IBM DB2 and MS SQL
- Bachelor's (or higher) degree in Computer Science, Information Systems, Mathematics, Engineering, Risk Management or related field (willing to accept foreign education equivalent)
Cyber Risk Job Description
- Manage Pillar
- Manage team and develop staffing model for this function over time
- Ensure all pillar team members are consistently trained and versed in pillar tenets, policies and procedures
- Collaborate with Firm managers to ensure consistency in threat response
- Ensure all pillar activities are transparent to Risk counterparts core constituents within the Firm
- Rehearse Response &Recovery scenarios
- Plan and coordinate event rehearsals
- Rehearse Single threat and multiple threat scenarios
- Collect feedback on what worked and what didn't and improve scenario process
- Execute Response
- Flexibility to travel as required – Travel demand will/can include external functions including visits to Customers, Sales offices, industry events
- Degree or equivalent essential
- Information risk / operational risk very preferable
- Significant previous experience in the area relevant to the Key Risk, up to Associate Director level
- Thorough understanding of the risk issues that are relevant to the business
- Working knowledge on at least one programming language, Java, C#
Cyber Risk Job Description
- Coordinate steps through the response scenario
- Select best choice scenario if Response does not exist
- Conduct forensics with third party assistance
- Identify required improvements
- Executing Proof of Concept (POC) CASB implementations for prospective clients
- Leading clients with transitions to the Cloud Access Security Broker (CASB) managed services via tenant setup, log processing setup, policy configuration, and agent deployment
- Advising clients with configuration and delivery of CASB reports
- Designing and developing Cloud-specific security policies, standards and procedures , CASB tenant management, proxy server management, firewall management, SSL/IPSec, security incident and event management (SIEM), data protection (DLP, encryption), user account management (SSO, SAML), password/key management
- Implementing industry leading practices around cyber risks and Cloud security for clients of the CASB managed service
- Assess threats to the business and deploy countermeasures for those threats
- Bachelor's (or higher) degree in Computer Science, Information Management, Mathematics, Decision Sciences, Risk Management, or related field (willing to accept foreign education equivalent)
- Five years of experience analyzing and improving IT and operations systems, including capabilities and workflow
- Bachelor's degree (or higher) in Computer Science, Engineering, Information Systems, Mathematics, Decision Sciences, Risk Management, or related field (willing to accept foreign education equivalent)
- Five years of IAM solutions experience
- Five years of SAP GRC and SAP security experience
- Bachelor's (or higher) degree in computer science, computer information systems, computer engineering, math, decision sciences, risk management, or related field (willing to accept foreign education equivalent)
Cyber Risk Job Description
- Support interoperability assessment teams by applying IA/CS SME judgment to assessment criteria, metrics, and techniques
- Designing and deployment of enterprise software solutions, including on-site implementations and cloud based capabilities
- Assisting with performing technical and competitive analysis of ServiceNow GRC, SecOps, Third Party and IT Asset Management solutions, including performance, debugging and other operational metrics
- Familiarity with IT Asset Management solutions is a plus
- Support the execution of assigned client engagements from start to finish, which includes the engagement planning, directing, and completion of privacy impact assessments, compliance assessments, GDPR assessments, and other related privacy projects while managing those engagements to budget
- Collaborate with team members at all levels in the development and marketing of the privacy service offering
- Lead efforts with firm wide and division teams to define and initiate Home Lending Cyber programs & projects
- Analysis of data, technical topics, manage ad hoc reporting as needed
- Identify and engage cross impacted teams for cyber efforts
- Drive program budgetary planning, tracking and gap analysis
- Bachelor's (or higher) degree in computer science, electronic engineering, computer engineering, information systems, math, decision sciences, risk management or related field (willing to accept foreign education equivalent)
- Five years of experience architecting, implementing, designing and performing global deployments of enterprise monitoring and data analytics tools utilizing HP and Splunk software
- Last semester in Information System from reputable university
- Able to work full time for 3 - 6 months period
- Has initiative and good interpersonal skill
- Collaborate in designing new IT security controls