Description
Overview:
We are seeking an experienced Senior Project Manager to lead the documentation and governance of cyber security incidents, risk management processes, and security controls. The ideal candidate will play a crucial role in ensuring that our clients cyber security frameworks, governance structures, and regulatory compliance measures are effectively documented and operationalized.
Key Responsibilities:
- Lead and oversee cyber security incident documentation, ensuring accuracy, completeness, and compliance with regulatory and internal policies.
- Develop and enhance risk management frameworks, governance processes, and cybersecurity controls to align with industry best practices.
- Implement and maintain governance structures to ensure compliance with security policies, standards, and regulatory requirements.
- Coordinate cross-functional teams, including IT, legal, compliance, and business units, to manage cybersecurity risks and incidents.
- Establish and improve processes for incident response, risk assessments,and mitigation strategies.
- Trackand report key performance indicators (KPIs) relatedto cybersecurity incidents,
governance,
andriskmanagement.
Provideexpertguidanceoncybersecurityriskmitigationstrategiesandbestpractices.
Leadpost-incidentreviewstoidentifygapsandareasforimprovementinsecuritycontrolsandgovernance.
Collaboratewithauditors,
regulatorybodies,
andinternalteamstoensurecompliancewithsecurityframeworkssuchasNIST,
ISO27001,
CIS,
andsOC2.
Developtrainingandawarenessprogramsrelatedtocybersecuritygovernanceandincientresponse.
Qualifications & Experience:
Bachelor’sorMaster’sdegreeinCyberSecurityInformationTechnologyBusinessAdministrationorarelatedfield.Minimumof7+years of experience in cybersecurity risk management governance or compliance.Strong experience with cybersecurity frameworks standards,and regulations (e.g., NIST ISO 27001 GDPR SOC 2 CIS controls).Demonstrated abilityto managecybersecurityincidentsanddocumentprocesseseffectively.Experiencewithriskmanagementtoolsandgovernanceplatforms.Strongprojectmanagementskillswith experience leading large-scale security projects Excellent written verbal communication skills with an ability topresentcomplexsecurityconceptstostakeholders.CertificationssuchasCISSPCISMCRISCPMPorequivalentarehighlydesirable.PreferredSkills:Handson-experiencewithSecurityInformationEventManagement(SIEM)tools.Knowledgeofregulatorycompliancerequirementsinfinancialserviceshealthcaregovernment sectors.Familiaritywithcloudsecuritygovernancendcontrols(AWSAzureGCP).Stronganalyticalskillsndabilitytointerpretsecuritydatatrends