Role Description Support and advise on management of information security and associated controls; Support and advise on management of risk and provide a transparent view of risk posture to stakeholders; Support and advise on compliance with relevant control standards, regulation and audit requirements; Support the oversight and monitoring of risk in line with the ISMS; Collaborates with security and audit teams to ensure controls are operating in line with policies. Key Tasks
As part of the Governance, Risk and Compliance Team within ION Markets, the resource will deal with the following activities:
Document and monitor risk and control environment to identify existing and emerging risks and issues; Evaluate and document issues related to changes in the risk environment and risk priorities; Identify and aggregate thematic risk related to findings and trends, e.g. regulatory preparedness, thematic concerns; Engage Internal Audit to discuss risk posture and audit inputs; Required Skills, Qualifications, and Experience Knowledge of: Working within the technical financial services industry, or other highly regulated industries Information security management, governance, and compliance principles, practices, laws, rules and regulations; Information technology systems and processes, network infrastructure, data architecture, data processes and protocols; Cyber and cloud security standard frameworks Information systems auditing, monitoring, controlling, and assessment process; Incident response management Risk assessment and management methodology Skills in: Developing and implementing enterprise governance, risk, and compliance strategy and solutions; Researching and understanding security information related to internal and external organizations using online and other sources; Management of technology vulnerability and threat information; Security project management and planning; Risk management, information security and audit management lifecycles Ability to: Effectively communicate technical issues to diverse audiences, both in writing and verbally; Evaluate and update and/or revise programme materials; Handle sensitive and confidential matters, situations, and data; Understand and follow broad and complex instructions; Preferred Certifications:
At least one of the below
CISM; CISA; CRISC; CISSP.
#J-18808-Ljbffr