Cyber Risk Manager


Minimum Education Level: Bachelor's

Job Description
As we aim to rapidly grow our Cybersecurity and Privacy practice, we are looking for consultants who are passionate about how strategy and technology can improve the role of cybersecurity, privacy and data protection in our digital world.

We are looking for consultants with extensive consulting, technological and industry experience who will help our clients solve their complex business issues from strategy through execution. A Cybersecurity and Privacy consulting career will provide the opportunity to grow and contribute to our clients’ business issues every day, applying a collection of information and Cyber security capabilities, including security and privacy strategy and governance, IT risk, security testing, technology implementation/operations, and cybercrime and breach response.

Our Strategy and Transformation services help clients understand the current cybersecurity and privacy landscape, make cybersecurity a collective priority, and develop and implement solutions across people, processes, and technologies. We provide the foundations to design, manage and operate a cybersecurity program aligned to business strategy, and increase organizational resilience in the face of an ever-changing threat landscape.

Position/Program Requirements

  • Minimum Year(s) of Experience: 6
  • Minimum Degree Required: Bachelor’s degree
  • Certification(s) Preferred: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), ISACA, Certified in Risk and Information Systems Control (CRISC)

Knowledge Preferred:

  • Demonstrates proven extensive knowledge and success in roles managing cyber-risk management, including the following areas:
    • Being recognized as an industry leader, providing industry-leading practices in cyber-risk management and the financial services industry
    • Managing and overseeing large projects involving information security, technology risk management, cybersecurity or cyber-risk management
    • Familiarity with common regulatory requirements such as OCC HS, FFIEC, GLBA, NY DFS etc. as well as industry frameworks such as NIST CSF, COBIT, COSO and PCI

Skills Preferred:

  • Demonstrates proven and extensive abilities solving complex cyber-risk management issues, including the following areas:
    • Design and development of IT Risk and Cyber security programs using industry frameworks and methodologies
    • Designing KRIs and metrics to build risk reports for management
    • Implementation and maintenance of enterprise-wide cyber risk governance frameworks
    • Assessment of enterprise-wide business risks and cyber threats
    • Development of detailed business risk scenarios and cyber threat models
    • Design and implementation of cyber risk management controls
    • Monitoring and reporting of cyber risks, threats and vulnerabilities
    • Development, implementation and periodic testing of cyber resiliency plans
    • Use of tools and technology to provide data analytics and business intelligence on cyber threats, risks and vulnerabilities
    • Advising clients on complying with regulatory requirements such as OCC HS, FFIEC, GLBA, NY DFS etc. as well as industry frameworks such as NIST CSF, COBIT, COSO and PCI
    • Developing frameworks, strategies, and operating models on IT risk management and cyber security for clients
    • Building and operationalizing complex IT risk management and cyber security programs for clients
    • Demonstrates proven extensive abilities to manage and deliver client engagements that identify and address client needs, including the following areas:
      • Leading project workstreams and associated staff on complex cyber risk management engagements
      • Participating actively in client discussions and meetings
      • Managing and overseeing engagements
      • Preparing concise and accurate documents, leveraging and utilizing MS Office and Lotus Notes to complete related project deliverables
      • Managing project financials in line with agreed-upon budgets
    • Demonstrates proven extensive abilities, competency and success with managing business functions and teams, including:
      • Creating a positive working environment by monitoring and managing workloads of the team
      • Balancing client expectations with the work-life quality of team members
      • Providing candid, meaningful feedback in a timely manner to team members
      • Keeping leadership and engagement management informed of progress and issues
Posted: July 7, 2018
<< Back to Job-Board