Principal - Cyber Risk and Assurance

Company Overview

Company information is not specified.

Job Summary

The Principal - Cyber Risk and Assurance is a critical role responsible for assessing and managing cybersecurity risks within the organization. This role entails developing and implementing strategies to ensure the security of information systems and compliance with relevant regulations. The Principal will work closely with various teams to enhance the overall cybersecurity posture of the organization, ensuring that both technology and business processes are secure and resilient.

Responsibilities

• Lead the development and implementation of cybersecurity risk management frameworks.
• Conduct risk assessments and audits to identify vulnerabilities and recommend mitigation strategies.
• Collaborate with cross-functional teams to ensure adherence to security policies and procedures.
• Provide expert guidance on regulatory compliance and industry best practices related to cybersecurity.
• Develop and deliver training programs to raise awareness about cyber risks and best practices among employees.
• Monitor the threat landscape and adjust security strategies accordingly to protect organizational assets.

Qualifications

• Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field (Master’s preferred).
• Minimum of 8 years of experience in cybersecurity, risk management, or related areas.
• Strong knowledge of risk management frameworks such as NIST, ISO 27001.
• Excellent analytical and problem-solving skills.
• Effective communication and interpersonal skills for collaboration across teams.
• Relevant certifications (CISSP, CISM, or equivalent) are highly desirable.

Preferred Skills

• Experience with regulatory compliance (GDPR, HIPAA, PCI-DSS).
• Ability to work in a fast-paced environment and manage multiple priorities.
• Familiarity with security tools and technologies used in cybersecurity.

Experience

At least 8 years of relevant experience in the field of cyber risk management and assurance.

Environment

The typical work setting is expected to be either in-office or hybrid, with possible remote work depending on organizational policies. The role may involve interacting with various stakeholders in different locations.

Salary

Salary information is not specified.

Growth Opportunities

Opportunities for career advancement within the organization may include senior leadership roles in cybersecurity and risk management, subject to performance and organizational needs.

Benefits

Information regarding offered benefits is not specified.