We are seeking an experienced external Security Risk Senior Consultant. The role involves delivering specific services for an engagement, with a focus on operational expertise rather than team coordination. Proficiency in advanced PowerPoint presentations and basic Excel skills is required. The candidate should demonstrate strong team collaboration skills.
The primary objective is to implement a scalable asset-based risk assessment framework within the company in 2024, including updating existing instructions.
Responsibilities include coordination, planning, preparing workshops with various entities, and organizing live sharing sessions for approximately 150 participants.
The service delivery must reflect best practices from an operational perspective.
We currently utilize an Application Infosec Risk Assessment (AISRA) and plan to enhance it with PSS security assessments to achieve convergence.
Additional considerations include integrating AI and Healthcare requirements, supported by existing libraries.
Required Expertise :
* Knowledge of DORA regulations
* Extensive experience in Risk & Control environments with a focus on security
* Proven ability to design and deliver asset-based risk assessment frameworks
* Deep understanding of Security Risk Frameworks & Assessments
* Practical expertise in designing risk reduction strategies for security
* Knowledge of IT GRC, ERM, CMDB, Vulnerability Management
* Understanding of Security Management Systems (SMS) and their link to Risk Management capabilities
* Expertise in KRI, KPI, and their role in decision-making
* Experience with assurance testing and its integration into risk assessment approaches
* Understanding of Risk Management as a 2nd Line function and security operations within that model
#J-18808-Ljbffr