Description
Responsibilities:
- Complete line 1 risk and control management covering aspects of the cybersecurity framework.
- Check technical data provided by analysts and ensure accuracy.
- Manage InfoSec 3rd party due diligence and report risks from non-conforming vendors to risk owners.
- Enhance security awareness across the business and align it with new threats.
- Operate within the NIST framework, ensuring alignment with InfoSec Standards, and report metrics.
- Serve as an escalation point for analysts, providing reliable security advice and guidance to the business.
Experience and Knowledge (Must Haves):
- 2 years' experience in a security function.
- Experience in 3rd party security due diligence.
- Experience with Risk Management Frameworks.
- Experience managing cyber metrics and deciphering raw data.