Cyber Risk Assurance Specialist, Group Risk Assurance, Dublin
تفاصيل الوظيفة
This role is being offered on a permanent basis. Summary of role: Group Risk Assurance (GRA) is a vibrant team, playing an important role in informing senior management and the Board on our risk management and the adequacy and effectiveness of the control environment. Our Assurance team is led by the Head of Group Risk Assurance within Risk and reports to the Head of Second Line Assurance, Chief Risk Officer, Group Risk Committee and Board Risk Committee. GRA are experts in different specialist areas – including Cyber, Data, Financial Crime, Data Protection, Digital Technology, Resilience, Consumer Protection, Finance, Regulation & more – accessing senior stakeholders within the organisation and plenty of opportunities to obtain great exposure and experience across all areas of the Bank. We are now looking for a Cyber Assurance Specialist to join the team, who will be responsible for evaluating and improving the effectiveness of our cyber and information security measures and IT controls. Key Responsibilities Include:
- Assist the review lead in defining a review scope, test strategy, and execute testing to assess cyber risks and identify vulnerabilities.
- Interact professionally and efficiently with IT, cybersecurity and business teams and other key stakeholders.
- Complete comprehensive testing to allow for the identification of issues, and provide recommendations to improve cybersecurity measures, IT controls and overall governance.
- Assist the Lead reviewer in preparing and agreeing detailed final review reports for senior management.
- Contribute to committee and board reports to ensure senior management are up to date and aware of key cyber risk and control issues.
- Minimum 2 years experience in Cyber or Information Security Risk Management, Technology, Assurance or Audit in a Banking environment.
- Understanding and knowledge of technology, cyber security risk assessment and controls management including an understanding of industry frameworks such as NIST, COBIT, ISF, and ISO27001.
- Have experience in at least one of the following: Cyber, Information Security or Technology management.
- For this role, there is a preference for professionally qualified candidates (ideally CISA / CISM / CRISC) or candidates undergoing or willing to take these exams.
- Has a lot of initiative, excellent attention to detail and ability to work to deadlines and remain calm under pressure.
Apply safely
To stay safe in your job search, information on common scams and to get free expert advice, we recommend that you visit SAFERjobs, a non-profit, joint industry and law enforcement organization working to combat job scams.