Information Security Risk Manager
2 weeks ago
WHAT YOU'LL DO
As the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and operational expertise will ensure that information security risks are identified, assessed, and mitigated effectively. You will be part of the ISRM Strategy & Governance team, contributing to the strategic direction and governance of the information security program. This includes executing risk assessment methodologies, participating in security awareness programs, and ensuring comprehensive metrics and reports including key performance and risk indicators are appropriately maintained.
WHO WE ARE
BCG pioneered strategy consulting more than 50 years ago, and we continue to innovate and redefine the industry. We offer multiple career paths for the world's best talent to have a real impact on business and society. As part of our team, you will benefit from the breadth and diversity of what we are doing today and where we are headed next. We count on your authenticity, exceptional work, and strong integrity. In return we are committed to supporting you in discovering the most fulfilling career journey possible-and unlocking your potential to advance the world. Our team called Global Services (GS) provides corporate support to business areas such as Finance, Legal, HR, Marketing and IT. This diverse team of experts, operators and specialists represent all levels from Partner to entry level staff, operating across the globe in multiple countries. Global Services is in short, the backbone of BCG.
YOU BRING (EXPERIENCE & QUALIFICATIONS)
- Experience and Skills: 7+ years in a Global Information Security function, preferably within high-stakes or rapidly changing industries, driving Information Security Strategy and Governance. Candidate should be driving Information Security Strategy and Governance with a deep and broad understanding of information security principles including threat, vulnerability, risk, and controls, specifically around policies, security practices, and risk management methodologies.
- Technologies: Advanced proficiency with AuditBoard is preferred. Experience with other key cybersecurity technologies such as SIEM, firewall management, and intrusion detection systems is highly regarded.
- Education: Bachelor's degree in computer science, information security, or a related field; a graduate degree is a plus.
- Competencies: Candidates must exhibit technical and functional expertise in IT and security, including advanced project management skills and proficiency in leading cross-functional teams. Excellent interpersonal skills, such as motivational capabilities and organizational effectiveness, are crucial. Must possess outstanding problem-solving and analytical capabilities, with a proven track record of innovative solutions in past roles.
- Communication Skills: Excellent oral and written communication skills in English. Ability to work independently, follow a disciplined approach, and have an analytical mindset with a desire to learn and work bi-modally.
- International Experience: Experience in working in a global, multi-national organization. Additional experience with global security operations and understanding the complexities of multi-regional compliance and data protection laws are essential.
- Certifications: Certifications like CISSP, CISM, CRISC are definitely a plus
Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, protected veteran status, or any other characteristic protected under federal, state or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws.
YOU'RE GOOD AT
- Information Security: You should demonstrate a deep and comprehensive understanding of information security risk principles including threat, vulnerability, risk, and controls.
- Practical application of risk management should be your fundamental competency.
- Risk Management: You excel in developing, maintaining, and continuously updating a comprehensive risk register that tracks all known information security risks, their potential impacts, and mitigation strategies.
- Operational Leadership: You are adept at leading the day-to-day operations of identifying, evaluating, and mitigating risks, ensuring alignment with internal policies and external regulations.
- Strategic Planning: You have a strong capability in crafting strategic risk management plans that are in harmony with the organization's objectives and security standards, and coordinating these efforts across various company levels.
- Stakeholder Engagement: You are proficient in communicating risk-related issues and strategies to stakeholders, including executive leadership and external partners, providing clear and concise reports and presentations.
As part of the Global Risk team - Information Security Risk Managment you will work with people around the global, mostly with the functions IT, Enterprise Risk Management, Assurance and Advisory, Information Security and Lega.l#J-18808-Ljbffr
-
Risk Management and Security Project Manager
6 days ago
London, United Kingdom EOS Risk Group Full timeEOS Risk Group is a UK-based corporate and private client security risk and crisis management practice. We provide proactive risk mitigation strategies customized to client requirements, supported by our team of analysts, consultants, and accredited 24/7/365 Security Operations and Crisis Response Centre. Our portfolio includes a holistic range of services...
-
Risk Management and Security Project Manager
3 weeks ago
City of London, Greater London, United Kingdom EOS Risk Group Full timeEOS Risk Group is a UK-based corporate and private client security risk and crisis management practice. We provide proactive risk mitigation strategies customized to client requirements, supported by our team of analysts, consultants, and accredited 24/7/365 Security Operations and Crisis Response Centre. Our portfolio includes a holistic range of services...
-
Information Security Risk Manager
1 day ago
London, Greater London, United Kingdom Yolk Recruitment Ltd Full timeConexus has partnered with a Global Pharmaceutical Company to source an Information Security Risk Manager who will be responsible for assessing, reporting, and managing information security risks identified in our systems and data, business processes, and third-party service providers. You will work closely with IT colleagues and business stakeholders based...
-
Information Security Risk Manager
2 weeks ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DO As the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and operational...
-
Information Security Risk Manager
5 days ago
London, United Kingdom Yolk Recruitment Ltd Full timeConexus has partnered with a Global Pharmaceutical Company to source an Information Security Risk Manager who will be responsible for assessing, reporting, and managing information security risks identified in our systems and data, business processes, and third-party service providers. You will work closely with IT colleagues and business stakeholders based...
-
Information Security Risk Manager
1 week ago
London, United Kingdom Conexus DX Limited Full timeConexus has partnered with a Global Pharmaceutical Company to source an Information Security Risk Manager who will be responsible for assessing, reporting, and managing information security risks identified in our systems and data, business processes, and third-party service providers. You will work closely with IT colleagues and business stakeholders based...
-
Information Security Risk Manager
2 days ago
London, Greater London, United Kingdom Conexus DX Limited Full timeConexus has partnered with a Global Pharmaceutical Company to source an Information Security Risk Manager who will be responsible for assessing, reporting, and managing information security risks identified in our systems and data, business processes, and third-party service providers. You will work closely with IT colleagues and business stakeholders based...
-
Information Security Risk Manager
1 month ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DOAs the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and operational...
-
Information Security Risk Manager
1 month ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DOAs the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and operational...
-
Information Security Risk Manager
2 weeks ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DO As the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and operational...
-
Information Security Risk Manager
1 month ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DOAs the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and operational...
-
Information Security Risk Manager
2 weeks ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DOAs the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and operational...
-
Information Security Risk Manager
2 weeks ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DOAs the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and operational...
-
Information Security Risk Manager
2 weeks ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DOAs the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and operational...
-
Information Security Risk Manager
3 days ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DO As the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and operational...
-
Information Security Risk Manager
2 weeks ago
London, United Kingdom Experis LTD Full time**Information Security Risk Manager** **Location: City of London** **Salary: £80,000** An exciting opportunity for an **Information Security Risk Manager** to join one of our clients, who are a multinational reinsurance company and number one in their space! You will be responsible for engaging in the development, implementation and embedding of a...
-
Information Security Risk Manager
1 day ago
London, Greater London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DO As the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and operational...
-
Head of Security Operations
1 week ago
London, United Kingdom Information Security Solutions Full timeTitle: Head of Operational Security Reference No: 2181 Company: Online Location: London, UK Reports to CISO Day Rate: TBC Duration 5 months The Role This role reports to the CISO and is part of the security leadership team. The Person: An analytical problem solver with demonstrable long-term experience leading and improving operational security...
-
Information Security Risk Manager
3 weeks ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DO As the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and...
-
Information Security Risk Manager
3 weeks ago
London, United Kingdom Boston Consulting Group Full timeWHAT YOU'LL DO As the Information Security Risk Manager at BCG, you will be a key player in our efforts to protect digital assets and manage cybersecurity risks. This pivotal role involves overseeing the risk management framework, maintaining the risk register, and managing the overall risk operations within the organization. Your strategic and...
