Cybersecurity Risk Management

Summary: The role of Cybersecurity Risk Management involves driving risk assessment engagements and managing risk acceptance documentation processes. The candidate will lead risk assessments, interact with stakeholders, and ensure compliance with risk management frameworks. Additionally, the position requires proactive monitoring of risks and maintaining accurate reporting for stakeholders. The ideal candidate will have extensive experience in cybersecurity risk management and familiarity with industry best practices.

Key Responsibilities:

• Drive overall Risk Assessment engagement and execution.
• Guide and interact with app owners and critical stakeholders on all Risk Management processes.
• Process Risk Assessments using approved Risk Acceptance documentation.
• Monitor risks in the risk register to ensure active engagement and security posture.
• Maintain and develop Risk Management documentation.
• Support onboarding of RM processes to GRC tooling (Service Now or other).
• Ensure accurate weekly reporting to stakeholders and team leadership.
• Perform any other assigned duties pertinent to the overall program.

Key Skills:

• Minimum 10 years of experience with Cybersecurity Risk Management.
• Understanding of risk management control frameworks: NIST RMF, ISO 27005, ISO 31000.
• Experience in leading and providing guidance on Risk Assessments.
• Proficiency in risk monitoring and reporting.
• Knowledge of industry best practices in Risk Management, including healthcare standards.

Salary (Rate): undetermined

City: undetermined

Country: USA

Working Arrangements: remote

IR35 Status: outside IR35

Seniority Level: undetermined

Industry: IT