IT and Security Risk Assurance Manager

1 week ago

London, Greater London, United Kingdom Mastercard, Inc. Full time

About the Role

We are seeking a highly skilled IT and Security Risk Assurance Manager to join our team at Mastercard, Inc. This is a critical role that requires a strong understanding of risk management and assurance principles, as well as excellent communication and interpersonal skills.

Key Responsibilities

  • Provide independent and objective assurance and advisory services to assess and enhance the effectiveness and efficiency of Mastercard's governance, risk management, and internal control environment.
  • Plan and execute IT, Security, and operational assurance projects, and support the department's risk assessment and development of the annual Risk and Control Assurance plan.
  • Independently manage and deliver the annual ISAE 3000 Audit, ISO Information Security, and ISO Business Continuity audits, and other external regulatory internal assessments in line with the Risk Assurance framework and process.
  • Work in the Second Line of Defence (2LoD) Risk Assurance team to support the Risk Assurance Director with the delivery of the annual Risk and Control Assurance plan.
  • Understand the business and technology environment, and partner with stakeholders to provide relationship management of the associated risk and control environment.
  • Contribute to the annual risk assessment process and the development of the annual 2nd Line Risk and Control Assurance plan.
  • Deliver high-quality assurance and review projects, managing them end-to-end throughout the assurance phases.
  • Evaluate compliance against legal, regulatory, policy, and procedural requirements, and industry frameworks.
  • Assess design and operating effectiveness of controls through inquiry, observation, and inspection testing.
  • Identify, draft, and vet issues with business partners, accounting for impact, root cause, and risk severity.
  • Provide credible check and challenge to stakeholders in all areas of the 1st Line business.
  • Liaise with and support the risk and control owners to resolve any questions, queries, and problems relating to ISAE 3000 and scheme requirements.
  • Perform Internal Audits of ISO 27001 and ISO 22301, identifying areas of improvement or nonconformities and validating the effectiveness of corrective actions.
  • Liaise with external auditors to provide support and challenge to achieve fair presentation, design, implementation, and operational effectiveness of the control environment.

Requirements

  • Experience as a Technology Risk Management professional (first/second line of defense, internal/external audit) or equivalent experience in a large, regulated organization with exposure to both infrastructure and applications.
  • Extensive experience designing and optimizing policies, practices, and procedures, including assurance methodology, requirements, templates, and tools.
  • Experience implementing corporate governance, risk, and compliance programs, as well as developing relationships with external regulatory bodies.
  • Extensive experience performing ISAE 3000, 3402 SOC, and SOX testing of internal controls over financial and non-financial reporting.
  • Knowledge of IT general computer controls, Information Security controls, and related processes and frameworks.
  • Experience covering Mainframe, UNIX/Linux, HP Nonstop, and Windows environments.
  • Excellent written and verbal communication skills (in English, additional languages are a plus).

Corporate Security Responsibility

  • Abide by Mastercard's security policies and practices.

  • Security Risk Consultant

    6 days ago

    London, Greater London, United Kingdom CornerStone - Risk, Cyber & Security Full time

    About the RoleCornerStone - Risk, Cyber & Security is a leading independent Security Risk Consultancy seeking a highly skilled Technical Security Consultant to join our award-winning team in a UK-wide capacity.We are looking for an individual who thrives in a fast-paced, collaborative environment that values innovation, teamwork, and personal development. As...

  • IT and Security Risk Assurance Manager

    5 days ago

    London, Greater London, United Kingdom MasterCard Full time

    About the RoleWe are seeking a highly skilled IT and Security Risk Assurance Manager to join our team at MasterCard. As a key member of our Risk Assurance department, you will play a critical role in ensuring the effectiveness and efficiency of our governance, risk management, and internal control environment.Key ResponsibilitiesProvide independent and...

  • Security Risk Management Business Development Manager

    4 days ago

    London, Greater London, United Kingdom CornerStone - Risk, Cyber & Security Full time

    About CornerStone - Risk, Cyber & SecurityCornerStone is a leading, award-winning, independent international Security Risk Consultancy, and we are now seeking a Business Development Manager to join our growing team. We are looking for an individual who enjoys working in a fast-paced, collaborative environment that is built upon innovation, teamwork, taking...

  • Security Risk Management Business Development Manager

    6 days ago

    London, Greater London, United Kingdom CornerStone - Risk, Cyber & Security Full time

    About CornerStone - Risk, Cyber & SecurityCornerStone is a leading, award-winning, independent international Security Risk Consultancy, and we are now seeking a Business Development Manager to join our growing team. We are looking for an individual who enjoys working in a fast-paced, collaborative environment that is built upon innovation, teamwork, taking...

  • Business Development Manager

    6 days ago

    London, Greater London, United Kingdom CornerStone - Risk, Cyber & Security Full time

    Job Description**About CornerStone - Risk, Cyber & Security**We are a leading, award-winning, independent international Security Risk Consultancy, and we are now seeking a highly skilled Business Development Manager to join our growing team. Our company culture is built upon innovation, teamwork, taking ownership, and supporting each other. We invest in our...

  • Business Development Manager

    4 days ago

    London, Greater London, United Kingdom CornerStone - Risk, Cyber & Security Full time

    About CornerStone - Risk, Cyber & SecurityCornerStone is a leading, award-winning, independent international Security Risk Consultancy, and we are now seeking a Business Development Manager to join our growing team. We are looking for an individual who enjoys working in a fast-paced, collaborative environment that is built upon innovation, teamwork, taking...

  • Business Development Manager

    6 days ago

    London, Greater London, United Kingdom CornerStone - Risk, Cyber & Security Full time

    About CornerStone - Risk, Cyber & SecurityCornerStone is a leading, award-winning, independent international Security Risk Consultancy, and we are now seeking a Business Development Manager to join our growing team. We are looking for an individual who enjoys working in a fast-paced, collaborative environment that is built upon innovation, teamwork, taking...

  • Business Development Manager

    5 days ago

    London, Greater London, United Kingdom CornerStone - Risk, Cyber & Security Full time

    About CornerStone - Risk, Cyber & SecurityCornerStone is a leading, award-winning, independent international Security Risk Consultancy, dedicated to providing expert advice and guidance to clients across various sectors.Job SummaryWe are seeking a highly skilled Business Development Manager to join our growing team. As a key member of our sales team, you...

  • Business Development Manager

    3 days ago

    London, Greater London, United Kingdom CornerStone - Risk, Cyber & Security Full time

    About CornerStone - Risk, Cyber & SecurityCornerStone is a leading, award-winning, independent international Security Risk Consultancy, and we are now seeking a Business Development Manager to join our growing team. Personal and career development is important to us, and you can expect our investment in you to include personalized development opportunities...

  • Business Development Manager

    2 days ago

    London, Greater London, United Kingdom CornerStone - Risk, Cyber & Security Full time

    About CornerStone - Risk, Cyber & SecurityCornerStone is a leading, award-winning, independent international Security Risk Consultancy, and we are now seeking a Business Development Manager to join our growing team. Personal and career development is important to us, and you can expect our investment in you to include personalized development opportunities...

  • Risk Management Expert

    6 days ago

    London, Greater London, United Kingdom CornerStone - Risk, Cyber & Security Full time

    Job DescriptionCornerStone - Risk, Cyber & Security is a leading independent Security Risk Consultancy, and we are seeking a highly skilled Technical Security Specialist to join our award-winning team in a UK-wide capacity. We are looking for an individual who thrives in a fast-paced, collaborative environment that is built upon innovation, teamwork, taking...

  • Cyber Security Assurance Specialist

    3 days ago

    London, Greater London, United Kingdom Iceberg Cyber Security Full time

    We are seeking a highly skilled Cyber Security Assurance Specialist to play a crucial role in safeguarding our systems and data at Iceberg Cyber Security. If you hold a Security Clearance and are passionate about protecting critical information, this opportunity may be of interest to you.Key Responsibilities:Conduct comprehensive security assessments and...

  • Cyber Security Assurance Specialist

    3 days ago

    London, Greater London, United Kingdom Iceberg Cyber Security Full time

    We are seeking a highly skilled Cyber Security Assurance Specialist to play a crucial role in safeguarding our systems and data at Iceberg Cyber Security. If you hold a Security Clearance and are passionate about protecting critical information, this opportunity may be of interest to you.Key Responsibilities:Conduct comprehensive security assessments and...

  • Risk Management Business Development Professional

    6 days ago

    London, Greater London, United Kingdom CornerStone - Risk, Cyber & Security Full time

    Job Description**About CornerStone - Risk, Cyber & Security**We are a leading, award-winning, independent international Security Risk Consultancy, and we are now seeking a highly skilled Business Development Manager to join our growing team. Our company culture is built upon innovation, teamwork, taking ownership, and supporting each other. We invest in our...

  • IT Risk Assurance Specialist

    8 hours ago

    London, Greater London, United Kingdom Locke and McCloud Full time £45,000 - £55,000

    About the RoleWe are seeking an experienced IT Risk Auditor to join our team at Locke & McCloud. As a leading cyber security and information security staffing company, we have a strong reputation for delivering high-quality services to our clients.Key ResponsibilitiesAssist and engage in a diverse range of IT consulting and assurance projects, including IT...

  • IT Risk Assurance Specialist

    5 hours ago

    London, Greater London, United Kingdom Locke and McCloud Full time £45,000 - £55,000

    About the RoleWe are seeking an experienced IT Risk Auditor to join our team at Locke & McCloud. As a leading cyber security and information security staffing company, we have a strong reputation for delivering high-quality services to our clients.Key ResponsibilitiesAssist and engage in a diverse range of IT consulting and assurance projects, including IT...

  • Cyber Security Risk Management Specialist

    3 days ago

    London, Greater London, United Kingdom Locke and McCloud Full time £45,000 - £60,000

    About the RoleWe are seeking a highly skilled Cyber Security Risk Management Specialist to join our team at Locke & McCloud. As a Cyber Security Risk Management Specialist, you will play a key role in supporting our clients with ISO27001 and NIST audits, ensuring their security postures are robust and compliant.Key ResponsibilitiesConduct thorough audits and...

  • Cyber Security Risk Management Specialist

    2 days ago

    London, Greater London, United Kingdom Locke and McCloud Full time £45,000 - £60,000

    About the RoleWe are seeking a highly skilled Cyber Security Risk Management Specialist to join our team at Locke & McCloud. As a Cyber Security Risk Management Specialist, you will play a key role in supporting our clients with ISO27001 and NIST audits, ensuring their security postures are robust and compliant.Key ResponsibilitiesConduct thorough audits and...

  • Cyber Security Risk Management Specialist

    5 days ago

    London, Greater London, United Kingdom Locke and McCloud Full time £45,000 - £60,000

    About the RoleWe are seeking a highly skilled Cyber Security Risk Management Specialist to join our team at Locke & McCloud. As a Cyber Security Risk Management Specialist, you will play a key role in supporting our clients with ISO27001 and NIST audits, ensuring their security postures are strengthened and risks are mitigated.Key ResponsibilitiesConduct...

  • Cyber Security Risk Management Specialist

    6 days ago

    London, Greater London, United Kingdom Locke and McCloud Full time £45,000 - £60,000

    About the Role:We are seeking a highly skilled Cyber Security Risk Management Specialist to join our team at Locke & McCloud. As a Cyber Security Risk Management Specialist, you will play a key role in supporting our clients with ISO27001 and NIST audits, drafting articulate and comprehensive audit findings, and advising on ISO and NIST compliance and...