Security Risk Manager

IntroductionThis role will be responsible for managing and reporting on information security risks. This will include the Information Security and Safeguarding of Assets, as part of our Risk Universe items. In addition, this role will manage and report on the cross-sector Security risk register.Job MissionEnsure information security risks stays within the risk appetite by (early) identification of information security risks, performing risk assessments and drive risk mitigationJob DescriptionMaintain and develop wide Information Security Risk Management means and methodsPerform information security risk assessments and propose mitigating controlsDrive risk mitigation based on agreed controlsMaintain the Security risk register and Cross-Sector Security Risk Register.Perform and support risk reporting including tracking KRIsAlignment with the Sectors and their security risk registersManage the Exception process including reporting on a regular basisKeep up with relevant international legislation, best practices, emerging threats, policies and benchmarksDrive the GRC tooling implementationBe the lead for the following focus groupsInformation Security Risk ManagementStrategic focus group developmentMeans and methods developmentCompetence and knowledge managementContext of the positionThe position is based out of the CIS Office reporting to the Manager, CIS Office which is reporting hierarchically and functionally to the CISO
staffing groep
17-04-2020 00:00