Cybersecurity Risk Manager
6 days ago
The Head of Cybersecurity Risk at SGS Société Générale de Surveillance SA is seeking a highly skilled Cybersecurity Risk Manager to join the Risk Management Department. This role will be responsible for evaluating overall cybersecurity risk, maintaining an active view, and reporting on the actual, mitigated, and residual cybersecurity risk in the organization.
Key Responsibilities- Perform Full Range of Technology and Information and Cyber Security Risk Management Lifecycle Activities
- Identify, assess, report, and oversee remediation planning and execution of technology and information and cyber security risks.
- Partner with the Chief Information Security Officer (CISO) and IT organizations to establish standards, policies, and develop Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs) for measuring and monitoring cyber risks on a continuous basis.
- Use standard risk taxonomy, such as FAIR, to develop and manage the Information Technology & Information Security Risk Program.
- Perform independent assurance and validation activities over common cybersecurity controls that include both administrative and technical.
- Assess the accuracy, completeness, and sufficiency of the risk management governance framework, processes, and methodologies.
- Identify and define emerging cyber threats and risks to the organization's environment.
- Develop cyber security risk scenarios to identify potential attack vectors and Tactics, Techniques, and Procedures (TTPs) to guide the continuous improvement of the firm's cyber defense posture.
- Lead and support selected cyber security remediation efforts, involved with strategic planning with the first line of defense.
- Recommend enhancements to data & technology architectures, processes, and controls to improve cybersecurity, data, and technology risk management capabilities for high-risk processes, regulatory reporting, and risk oversight.
- Develop and roll-out tools for the aggregation and surveillance of cybersecurity risk, data risk & technology risk.
- Identify legal, regulatory, and contractual requirements, and organizational policies and standards related to data management systems to determine their potential impact on the business objectives.
- Expand operational risk processes, data collection, and issues management tools to track and report data-related operational risks and issues.
- Participate in and review data breaches and technology incident/response escalation processes.
- Develop operational resiliency scenarios for stress testing and capital planning activities.
- Bachelor and/or Master's Degree in Computer Science, Engineering, or Relevant Technical Field
- Understanding of Financial Services and Cyber and Data Privacy-Related Laws, Regulations, Frameworks, and Guidelines
- Experience in Assessing Design and Operating Effectiveness of Technology Controls
- Solid Foundation in Information Technology and Information Security Principles
- Previous Working Experiences in Cybersecurity Operations and Relevant Security Design Knowledge
- Previous Work within Risk and/or Information Security/Cyber Security
- Background in IT Risk Assessment, IT Audit, Information Security Management
- Experience Integrating Vulnerability and Patch Management Tools with IT/IS Risk Program
- Knowledge of US IT Security Regulatory Requirements and Environment in Financial Services Industry
- Strong Leadership Skills with the Ability to Lead by Influence
Ability to communicate in English, both orally and in writing, is a requirement as the person in this position will need to collaborate regularly with colleagues and partners in the United States.
Due to US Federal Securities law applying to this position, candidates who will apply for this position will be required to submit to an enhanced background screening, including the collection of their fingerprints by a third-party vendor selected by the Financial Industry Regulatory Authority ('FINRA').
-
Cybersecurity Risk Management Specialist
4 weeks ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeKey ResponsibilitiesThe Risk Management Division plays a crucial role in the sustainable development of SGS Société Générale de Surveillance SA by leveraging its expertise in risk evaluation and management strategies. The primary objective of this department is to independently analyze, assess, manage, and monitor risk-taking activities to achieve...
-
Cybersecurity Risk Management Specialist
4 weeks ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeKey ResponsibilitiesThe Risk Management Division plays a crucial role in fostering the sustainable development of SGS Société Générale de Surveillance SA by leveraging its expertise in risk analysis and management methodologies. The primary mission of this division is to independently evaluate, monitor, and manage risk-taking activities to achieve...
-
Cybersecurity Risk Management Specialist
4 weeks ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeKey ResponsibilitiesThe Risk Management Division plays a crucial role in fostering the sustainable development of SGS Société Générale de Surveillance SA by leveraging its expertise in risk assessment and management methodologies. The primary objective of this department is to conduct independent evaluations, assessments, and monitoring of risk-related...
-
Cybersecurity Risk Management Lead
2 weeks ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Risk Management Lead to join our team at SGS Société Générale de Surveillance SA. As a key member of our Risk Management Department, you will play a critical role in helping us achieve our goal of sustainable growth through effective risk management.Key ResponsibilitiesEvaluate and Assess...
-
Operational Risk Manager
6 days ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeAbout the RoleThe Risk Management Department at SGS Société Générale de Surveillance SA is seeking a highly skilled Cybersecurity Risk Manager to join our team. As a key member of our organization, you will play a critical role in defining and implementing our 2nd line of defense processes, policies, and tools for our data and technology environments.Key...
-
Operational Risk Manager
6 days ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeAbout the RoleThe Risk Management Department at SGS Société Générale de Surveillance SA is seeking a highly skilled Cybersecurity Risk Manager to join our team. As a key member of our organization, you will play a critical role in defining and implementing our 2nd line of defense processes, policies, and tools for our data and technology environments.Key...
-
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Risk Management Lead to join our team at SGS Société Générale de Surveillance SA. As a key member of our Risk Management Department, you will play a critical role in helping us achieve our goal of sustainable growth through effective risk management.Key ResponsibilitiesDevelop and Implement...
-
Operational Risk Manager
7 days ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeAbout the RoleThe Risk Management Department at SGS Société Générale de Surveillance SA is seeking a highly skilled Cybersecurity Risk Manager to join our team. As a key member of our organization, you will play a critical role in defining and implementing effective cybersecurity risk management processes, policies, and tools to protect our data and...
-
Operational Risk Manager
6 days ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeAbout the RoleThe Risk Management Department at SGS Société Générale de Surveillance SA is seeking a highly skilled Cybersecurity Risk Manager to join our team. As a key member of our organization, you will play a critical role in defining and implementing effective cybersecurity risk management processes, policies, and tools to protect our data and...
-
Lead Cybersecurity Risk Manager
4 weeks ago
Montreal, Quebec, Canada SITA Switzerland Sarl Full timeOverviewWELCOME TO SITAAt SITA, we are dedicated to transforming the travel and transport industry. Our mission is to innovate how the sector operates, fostering seamless connections and interactions. We strive to enhance journey experiences, promote agility and resilience, and address the urgent challenges of sustainability. Our technological and...
-
Operational Risk Manager
5 days ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeAbout the RoleThe Risk Management Department at SGS Société Générale de Surveillance SA is seeking a highly skilled Cybersecurity Risk Manager to join our team. As a key member of our Risk Management team, you will play a critical role in evaluating and managing cybersecurity risks across the organization.Key ResponsibilitiesPerform full range of...
-
Operational Risk Manager
5 days ago
Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full timeAbout the RoleThe Risk Management Department at SGS Société Générale de Surveillance SA is seeking a highly skilled Cybersecurity Risk Manager to join our team. As a key member of our Risk Management team, you will play a critical role in evaluating and managing cybersecurity risks across the organization.Key ResponsibilitiesPerform full range of...
-
Cybersecurity Risk Management Leader
4 weeks ago
Montreal, Quebec, Canada SITA Switzerland Sarl Full timeOverviewWELCOME TO SITAAt SITA, we are dedicated to transforming the travel and transport sectors. Our mission is to innovate the way our industry operates, enhancing connectivity and interaction. We strive to create seamless travel experiences, ensuring agility and resilience while addressing the urgent challenges of sustainability. Our technological and...
-
Cybersecurity Risk Management Specialist
6 days ago
Montreal, Quebec, Canada Produits forestiers Résolu Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Risk Management Specialist to join our team at Produits forestiers Résolu. As a key member of our IT Security Governance team, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk assessments.Key...
-
Cybersecurity Risk Management Specialist
1 week ago
Montreal, Quebec, Canada Produits forestiers Résolu Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Risk Management Specialist to join our team at Produits forestiers Résolu. As a key member of our IT Security Governance team, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk assessments.Key...
-
Cybersecurity Risk Management Specialist
4 weeks ago
Montreal, Quebec, Canada Domtar Full timeJob Overview The Cybersecurity Risk Management Specialist will play a vital role in supporting the IT Compliance & Governance Security team at Domtar. This position is essential for enhancing the IT risk management framework, overseeing IT exceptions, and conducting assessments of third-party vendors. The specialist will engage in both Business and IT...
-
Cybersecurity Risk Management Specialist
4 weeks ago
Montreal, Quebec, Canada Domtar Corporation Full timeCybersecurity Risk Management SpecialistIn collaboration with the IT Compliance & Governance Security team, the Cybersecurity Risk Management Specialist will play a vital role in enhancing the IT risk management strategy at Domtar Corporation. This position involves refining the IT risk management framework, overseeing IT exceptions, and conducting...
-
Cybersecurity Risk Management Specialist
4 weeks ago
Montreal, Quebec, Canada Domtar Corporation Full timeCybersecurity Risk Management SpecialistIn collaboration with the IT Compliance & Governance Security team, the Cybersecurity Risk Management Specialist will play a vital role in enhancing the IT risk management practices at Domtar Corporation. This role involves the ongoing maintenance and enhancement of the IT risk management framework, overseeing IT...
-
Cybersecurity Risk Management Specialist
6 days ago
Montreal, Quebec, Canada Domtar Corporation Full timeCybersecurity Risk Management SpecialistIn collaboration with the IT Compliance & Governance Security team, the Cybersecurity Risk Management Specialist will play a vital role in enhancing the IT risk management strategy at Domtar Corporation. This position involves refining the IT risk management framework, overseeing IT exceptions, and conducting...
-
Cybersecurity Risk Management Specialist
7 days ago
Montreal, Quebec, Canada Domtar Corporation Full timeCybersecurity Risk Management SpecialistIn collaboration with the IT Compliance & Governance Security team, the Cybersecurity Risk Management Specialist will play a vital role in enhancing the IT risk management practices at Domtar Corporation. This role involves the ongoing maintenance and enhancement of the IT risk management framework, overseeing IT...