Chief Cybersecurity Risk Management Officer
7 days ago
The Chief Cybersecurity Risk Management Officer will join our team to help further define the 2nd line of defense processes, policies, and tools for SGS Societe Generale de Surveillance SA's data and technology environments. The role covers various cybersecurity risk areas, including Reference data, transaction processing, digital transformation, threat intelligence, Identity and Access Management, data protection, and cybersecurity incident/response.
Key Responsibilities:- Evaluate overall cybersecurity risk, maintain an active view, and report on actual, mitigated, and residual cybersecurity risk in the organization.
- Help further define Cybersecurity Risk 2nd line of defense practices, including assessments, life-cycle practices, operational incident/response, service delivery, and BCP.
Day-to-Day Responsibilities:
- Perform full range of technology and information security risk management lifecycle activities, including risk identification, assessment, reporting, and oversight of remediation planning and execution (e.g., third-party, application, database, infrastructure, network penetration testing, etc.).
- Partner with Chief Information Security Officer (CISO) and IT organizations to establish standards, policies, and develop KRIs and KPIs for measuring and monitoring cyber risks on a continuous basis.
- Develop and manage Information Technology & Information Security Risk Program, using standard risk taxonomy, such as FAIR.
- Provide and perform independent assurance and validation activities over common cybersecurity controls that include both administrative and technical.
- Assess the accuracy, completeness, and sufficiency of the risk management governance framework, processes, and methodologies. Identify and define emerging cyber threats and risks to SG's environment.
- Perform effective challenge of all critical and highly sensitive processes & controls, and business continuity.
- Develop cybersecurity risk scenarios to identify potential attack vectors and TTP (tactics, techniques, and procedures) to guide the continuous improvement of the firm's cyber defense posture. Lead and support selected cybersecurity remediation efforts, involved with strategic planning with 1LOD.
- Recommend enhancements to data & technology architectures, processes, and controls to improve cybersecurity, data, and technology risk management capabilities for high-risk processes, regulatory reporting, and risk oversight.
- Develop and roll-out tools for the aggregation and surveillance of cybersecurity risk, data risk & technology risk.
- Identify legal, regulatory, and contractual requirements, and organizational policies and standards related to data management systems to determine their potential impact on the business objectives.
- Expand operational risk processes, data collection, and issues management tools to track and report data-related operational risks and issues.
- Participate in and review data breaches and technology incident/response escalation processes.
- Develop operational resiliency scenarios for stress testing and capital planning activities.
- Lead or support selected cybersecurity remediation efforts.
We are looking for a highly skilled professional with a solid foundation in information technology and information security principles. The ideal candidate should have experience in assessing design and operating effectiveness of technology controls and a strong understanding of financial services specifically within cyber and data privacy related laws, regulations, frameworks, and guidelines (NYSDFS - 23NYCRR500, ECB, GDPR, GLBA, Regulation S-P, etc.).
- Bachelor and/or master's degree in computer science, Engineering, or relevant technical field.
- Understanding of financial services specifically within cyber and data privacy related laws, regulations, frameworks, and guidelines.
- Experience in assessing design and operating effectiveness of technology controls.
- Solid foundation in information technology and information security principles. Familiar with common cybersecurity frameworks and standards such as NIST SP 800-53, NIST CSF, Mitre Attack, FFIEC CAT, CSC Top 20, COBIT, ISO 27000 series.
- Previous working experiences in cybersecurity operation and relevant security design knowledge.
- Previous work within Risk and/or Information Security/Cyber Security. Ideally, has worked in a 2 LOD Cyber Security Risk function.
- Background in IT Risk Assessment, IT Audit, Information security management.
- Experience integrating vulnerability and patch management tools with IT/IS risk program.
- Knowledge of US IT Security regulatory requirements and environment in financial services industry a plus (i.e., FFIEC, FINRA rules, SEC, NIST cybersecurity frameworks).
-
Chief Information Security Risk Manager
7 days ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeJob SummaryWe are seeking an experienced Chief Information Security Risk Manager to join our Enterprise Cybersecurity team. This role will be responsible for evaluating overall cybersecurity risk, maintaining an active view, and reporting on actual, mitigated, and residual cybersecurity risk in the organization.The successful candidate will have a solid...
-
Chief Cybersecurity Compliance Officer
7 days ago
Montreal, Quebec, Canada Mindsec Full timeJob Title: Chief Cybersecurity Compliance OfficerAbout Mindsec:Mindsec is a leading provider of security compliance and risk management solutions. Our mission is to empower organizations to protect their digital assets and maintain compliance with industry standards.Job Description:We are seeking an experienced Chief Cybersecurity Compliance Officer to join...
-
Cybersecurity Risk Management Expert
17 hours ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Risk Manager to join our team at SGS Société Générale de Surveillance SA. This is an exciting opportunity for a professional with expertise in cybersecurity risk management to contribute to our organization's success.Job DescriptionThe Cybersecurity Risk Manager will be responsible for...
-
Chief Cybersecurity Risk Manager
3 weeks ago
Montreal, Quebec, Canada Société Générale Assurances Full timeJob Description:At Société Générale Assurances, we are seeking a highly skilled Cybersecurity Risk Manager to join our team. This role is responsible for evaluating overall cybersecurity risk, maintaining an active view, and reporting on the actual, mitigated, and residual cybersecurity risk in the organization.About the Job:The Chief Information...
-
Chief Cybersecurity Risk Manager
1 week ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeJob DescriptionWe are seeking a highly skilled Chief Cybersecurity Risk Manager to join our team at SGS Société Générale de Surveillance SA. This is an exciting opportunity to lead our cybersecurity risk management efforts and play a key role in ensuring the security and integrity of our data.Responsibilities:Lead the development and implementation of...
-
Cybersecurity Risk Management Lead
7 days ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Risk Management Lead to join our team at SGS Société Générale de Surveillance SA. In this role, you will be responsible for evaluating overall cybersecurity risk, maintaining an active view, and reporting on actual, mitigated, and residual cybersecurity risk in the organization.Key...
-
Cybersecurity Risk Management Lead
7 days ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeAbout the RoleWe are seeking an experienced Cybersecurity Risk Management Lead to join our team at SGS Société Générale de Surveillance SA. In this role, you will be responsible for evaluating overall cybersecurity risk, maintaining an active view, and reporting on the actual, mitigated, and residual cybersecurity risk in the organization.Key...
-
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeSociete Generale is seeking an experienced IT Cybersecurity Risk Manager to join their team in the United States. This role will be responsible for evaluating overall cybersecurity risk, maintaining an active view, and reporting on the actual, mitigated, and residual cybersecurity risk in the organization.The ideal candidate will have a solid foundation in...
-
Cybersecurity Risk Management Specialist
1 week ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeWe are seeking a highly skilled Cybersecurity Risk Management Specialist to join our team at SGS Société Générale de Surveillance SA. The successful candidate will play a key role in evaluating overall cybersecurity risk, maintaining an active view, and reporting on the actual, mitigated, and residual cybersecurity risk in the organization.The ideal...
-
Cybersecurity Risk Management Specialist
7 days ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeWe are seeking a seasoned Cybersecurity Risk Management Specialist to join our team at SGS Société Générale de Surveillance SA. This exciting opportunity will involve evaluating and managing cybersecurity risks across our organization, ensuring the confidentiality, integrity, and availability of our data and technology assets.Job Description:The...
-
Cybersecurity Risk Management Specialist
7 days ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeAt SGS Societe Generale de Surveillance SA, we are seeking a skilled Cybersecurity Risk Management Specialist to join our team.About the JobThis is a critical role that requires a deep understanding of cybersecurity risks and mitigation strategies. As a Cybersecurity Risk Management Specialist, you will be responsible for evaluating overall cybersecurity...
-
Senior Cybersecurity Risk Management Lead
7 days ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeSociete Generale offers a unique opportunity for an experienced Senior Cybersecurity Risk Management Lead to join our team. This exciting role will be responsible for evaluating overall cybersecurity risk, maintaining an active view, and reporting on the actual, mitigated, and residual cybersecurity risk in the organization.As a Senior Cybersecurity Risk...
-
Cybersecurity Risk Manager
7 days ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeSociete Generale offers a unique opportunity for a Cybersecurity Risk Manager to join its team in the US. As a key member of the Risk Management Department, you will contribute to the sustainable growth of the organization through your expertise and risk management techniques.The ideal candidate will have a bachelor's or master's degree in computer science...
-
Cybersecurity Risk Management Specialist
7 days ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeAbout the JobAt SGS Société Générale de Surveillance SA, we are seeking a highly skilled Cybersecurity Risk Manager to join our team in the Americas Region. This role is responsible for evaluating overall cybersecurity risk, maintaining an active view, and reporting on actual, mitigated, and residual cybersecurity risk in the organization.The successful...
-
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeAbout the RoleSGS Société Générale de Surveillance SA is seeking a skilled Cybersecurity Risk Manager to join their team. This role will be responsible for evaluating overall cybersecurity risk, maintaining an active view, and reporting on actual, mitigated, and residual cybersecurity risk in the organization.Key ResponsibilitiesEvaluate technology and...
-
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeAbout the RoleAs a Cybersecurity Risk Manager at SGS Societe Generale de Surveillance SA, you will play a crucial role in evaluating and mitigating cybersecurity risks across our financial institution. This position requires strong technical skills, excellent communication abilities, and a deep understanding of cybersecurity frameworks and standards.Job...
-
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Risk Manager to join our team at SGS Société Générale de Surveillance SA. As a key member of our risk management department, you will be responsible for evaluating and managing cybersecurity risks across our organization.ResponsibilitiesEvaluate overall cybersecurity risk and maintain an active...
-
Cybersecurity Risk Management Expert
7 days ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeCybersecurity Risk Management ExpertWe are seeking a highly skilled Cybersecurity Risk Management Expert to join our team at SGS Société Générale de Surveillance SA. The ideal candidate will have a strong background in cybersecurity risk management, with experience in assessing and mitigating risks associated with data and technology environments.About...
-
Cybersecurity Risk Management Professional
7 days ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeJob SummarySociete Generale seeks a highly skilled Cybersecurity Risk Management Professional to join our team in the United States. This role requires expertise in assessing and mitigating cybersecurity risks, developing risk management programs, and collaborating with IT organizations to establish standards and policies.About the JobThe successful...
-
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeSociete Generale de Surveillance SA is seeking a seasoned IT Cybersecurity Risk Manager to join our team in the United States. The ideal candidate will have a deep understanding of financial services, cybersecurity, and data privacy laws and regulations.As an IT Cybersecurity Risk Manager, you will play a crucial role in evaluating overall cybersecurity...
