Information Security Risk Manager
1 month ago
As the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and operational expertise will ensure that information security risks are identified, assessed, and mitigated effectively. You will be part of the ISRM Strategy & Governance team, contributing to the strategic direction and governance of the information security program. This includes executing risk assessment methodologies, participating in security awareness programs, and ensuring comprehensive metrics and reports including key performance and risk indicators are appropriately maintained.
YOU'RE GOOD AT
- Information Security: You should demonstrate a deep and comprehensive understanding of information security risk principles including threat, vulnerability, risk, and controls.
- Practical application of risk management should be your fundamental competency.
- Risk Management: You excel in developing, maintaining, and continuously updating a comprehensive risk register that tracks all known information security risks, their potential impacts, and mitigation strategies.
- Operational Leadership: You are adept at leading the day-to-day operations of identifying, evaluating, and mitigating risks, ensuring alignment with internal policies and external regulations.
- Strategic Planning: You have a strong capability in crafting strategic risk management plans that are in harmony with the organizationâs objectives and security standards, and coordinating these efforts across various company levels.
- Stakeholder Engagement: You are proficient in communicating risk-related issues and strategies to stakeholders, including executive leadership and external partners, providing clear and concise reports and presentations.
YOU BRING (EXPERIENCE & QUALIFICATIONS)
- Experience and Skills: 7+ years in a Global Information Security function, preferably within high-stakes or rapidly changing industries, driving Information Security Strategy and Governance. Candidate should be driving Information Security Strategy and Governance with a deep and broad understanding of information security principles including threat, vulnerability, risk, and controls, specifically around policies, security practices, and risk management methodologies.
- Technologies: Advanced proficiency with AuditBoard is preferred. Experience with other key cybersecurity technologies such as SIEM, firewall management, and intrusion detection systems is highly regarded.
- Education: Bachelor's degree in computer science, information security, or a related field; a graduate degree is a plus.
- Competencies: Candidates must exhibit technical and functional expertise in IT and security, including advanced project management skills and proficiency in leading cross-functional teams. Excellent interpersonal skills, such as motivational capabilities and organizational effectiveness, are crucial. Must possess outstanding problem-solving and analytical capabilities, with a proven track record of innovative solutions in past roles.
- Communication Skills: Excellent oral and written communication skills in English. Ability to work independently, follow a disciplined approach, and have an analytical mindset with a desire to learn and work bi-modally.
- International Experience: Experience in working in a global, multi-national organization. Additional experience with global security operations and understanding the complexities of multi-regional compliance and data protection laws are essential.
- Certifications: Certifications like CISSP, CISM, CRISC are definitely a plus
YOU'LL WORK WITH
As part of the Global Risk team â Information Security Risk Managment you will work with people around the global, mostly with the functions IT, Enterprise Risk Management, Assurance and Advisory, Information Security and Lega.l
-
Risk Management and Security Project Manager
2 weeks ago
London, United Kingdom EOS Risk Group Full timeEOS Risk Group is a UK-based corporate and private client security risk and crisis management practice. We provide proactive risk mitigation strategies customized to client requirements, supported by our team of analysts, consultants, and accredited 24/7/365 Security Operations and Crisis Response Centre. Our portfolio includes a holistic range of services...
-
Risk Management and Security Project Manager
4 weeks ago
City of London, Greater London, United Kingdom EOS Risk Group Full timeEOS Risk Group is a UK-based corporate and private client security risk and crisis management practice. We provide proactive risk mitigation strategies customized to client requirements, supported by our team of analysts, consultants, and accredited 24/7/365 Security Operations and Crisis Response Centre. Our portfolio includes a holistic range of services...
-
Information Security Risk Manager
6 days ago
London, Greater London, United Kingdom Yolk Recruitment Ltd Full timeConexus has partnered with a Global Pharmaceutical Company to source an Information Security Risk Manager who will be responsible for assessing, reporting, and managing information security risks identified in our systems and data, business processes, and third-party service providers. You will work closely with IT colleagues and business stakeholders based...
-
Information Security Risk Manager
1 week ago
London, United Kingdom Yolk Recruitment Ltd Full timeConexus has partnered with a Global Pharmaceutical Company to source an Information Security Risk Manager who will be responsible for assessing, reporting, and managing information security risks identified in our systems and data, business processes, and third-party service providers. You will work closely with IT colleagues and business stakeholders based...
-
Information Security Risk Manager
2 weeks ago
London, United Kingdom Conexus DX Limited Full timeConexus has partnered with a Global Pharmaceutical Company to source an Information Security Risk Manager who will be responsible for assessing, reporting, and managing information security risks identified in our systems and data, business processes, and third-party service providers. You will work closely with IT colleagues and business stakeholders based...
-
Information Security Risk Manager
7 days ago
London, Greater London, United Kingdom Conexus DX Limited Full timeConexus has partnered with a Global Pharmaceutical Company to source an Information Security Risk Manager who will be responsible for assessing, reporting, and managing information security risks identified in our systems and data, business processes, and third-party service providers. You will work closely with IT colleagues and business stakeholders based...
-
Information Security Risk Manager
1 month ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DOAs the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and operational...
-
Information Security Risk Manager
1 week ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DO As the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and operational...
-
Information Security Risk Manager
3 weeks ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DOAs the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and operational...
-
Information Security Risk Manager
3 weeks ago
London, United Kingdom Experis LTD Full time**Information Security Risk Manager** **Location: City of London** **Salary: £80,000** An exciting opportunity for an **Information Security Risk Manager** to join one of our clients, who are a multinational reinsurance company and number one in their space! You will be responsible for engaging in the development, implementation and embedding of a...
-
Information Security Risk Manager
6 days ago
London, Greater London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DO As the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and operational...
-
Head of Security Operations
2 weeks ago
London, United Kingdom Information Security Solutions Full timeTitle: Head of Operational Security Reference No: 2181 Company: Online Location: London, UK Reports to CISO Day Rate: TBC Duration 5 months The Role This role reports to the CISO and is part of the security leadership team. The Person: An analytical problem solver with demonstrable long-term experience leading and improving operational security...
-
Information Security Risk Manager
3 weeks ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DO As the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and...
-
Information Security Risk Manager
3 weeks ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DO As the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and...
-
Information Security Risk Manager
3 weeks ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DO As the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and...
-
Information Security Risk Manager
3 weeks ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DO As the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and...
-
Information Security Risk Manager
3 weeks ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DO As the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and...
-
London, United Kingdom Risk Crew Limited Full time**About Us**:Risk Crew is a leading provider of information security risk management services dedicated to helping customers identify, minimise, and manage the cyber security risks to their businesses. We specialise in delivering cyber and information security, testing and information security governance risk and compliance (GRC) frameworks. **Key...
-
Information Security Risk
7 days ago
London, Greater London, United Kingdom WeAreTechWomen Full timeOur people make us who we are. We're a diverse and inclusive bunch, and it's important you can feel you belong here. We value everybody for who they are and what they bring to the table, supporting one another as we continue to deliver for our customers. LI-KS1 Create & Maintain an information security management system (ISMS) capable of demonstrating...
-
IT Risk and Security Architect
6 days ago
London, Greater London, United Kingdom Security Bank & Trust Co. Full timeOverview:Join a dynamic team at our client, where innovation and collaboration drive their mission to redefine automotive excellence. Since the inception of Project Grenadier in 2017, the company has experienced rapid growth, transitioning from a startup to a thriving enterprise.The Role:As an IT Risk and Security Architect, you will play a pivotal role in...
