Director
Full Time
Job Description
- Build cybersecurity Process Risk & Control frameworks for clients that are rationalized against applicable laws and standards.
- Conduct Risk Assessment and Maturity Assessments for clients.
- Audit Control definition and control testing against client’s Internal Audit framework, or against industry standards or laws & regulations.
- Conduct Cybersecurity and Data Privacy Compliance readiness assessments for clients
- Guide clients in establishing cybersecurity policies, standards, and procedures.
- Manage cybersecurity training & awareness services for clients from design to implementation.
- Advise clients on cybersecurity functions’ metrics and reporting for various levels of client audiences including Audit Committee, and Board of Directors.
- Be the client’s Subject Matter Expert on compliance questions for cybersecurity regulations and industry practices.
- Provide governance services for clients to oversee their cybersecurity functions and practices, including governance over: Policies & Procedures, Risk Management, Vulnerability Management, Incident Management, etc.
- Build Risk Management practices for clients, including policies, procedures, Risk Register, etc.
- Assist clients in implementing market GRC tools.
- Lead Third Party Risk Management (TPRM) for clients, including designing and operationalizing a TPRM framework, reviewing existing and new vendors for client, and provide ongoing monitoring services.
- Needs strong understanding/experience of the UK regulatory compliance landscape in Cybersecurity / Data Privacy space and its impact on businesses.
Required Knowledge, Skills, and Abilities
- Ability to prioritize and multitask. Flexibility and adaptability in work approach.
- Ability to manage project plans for client various data privacy engagements, including creating tasks, timeline and budgets.
- Ability to report to leadership and clients on status updates periodically, including progress and challenges.
- Strong interpersonal and communication skills; experience with cross-cultural communications.
- Calmness and clarity of thought under pressure and ability to maintain confidentially.
- Train other staff and external clients, as necessary.
- Agile and flexible, capable of dealing with ambiguity, and confronting challenges and opportunities with speed, endurance, and decisiveness.
- Manage a team of consultants and managers on various projects.
- Bachelor’s degree in business, computer science, information systems, engineering, or a related discipline.
Reference no: 105293