Website IT Recruiters for Tech Jobs - itrecruiters.technology
IT Recruiting Company and Staffing Firm
Manager, Cybersecurity Governance and Risk, Washington, DC
The Manager, Cybersecurity Governance and Risk will lead IT risk management (ITRM) initiatives to increase the transparency of risk impacts to the firm, manage the Cyber risk register, issue log, facilitate the Risk Operating Committee (ROC), and support the Governance and Risk team in identifying and implementing industry standards (e.g., NIST, ISO and COBIT) in accordance with applicable regulatory or client guidelines. The Manager will also assist in developing methodologies, policies, processes, and tools to support InfoSec and Governance and Risk initiatives. The role will contribute to evolving ITRM’s oversight, reporting, governance, communications, and education efforts from an Information Security perspective. This position is 100% Onsite and not open for Remote.
Manager, Cybersecurity Governance and Risk Responsibilities:
– Assist with the development, implementation and management of the governance and risk strategic plan and roadmap, including evolving the reporting structure and frequency to InfoSec stakeholders.
– Serve as a key contributor in identifying, managing and communicating governance and risk across InfoSec policy domains, providing expertise to prioritize and manage risk, while facilitating the adoption in conjunction with the Controls Manager of IT Risk policies, standards and guidelines across the enterprise.
– In conjunction with the Controls and TPRM Managers, evolve, develop and manage the development, maintenance and evaluation of organizational InfoSec governance and risk procedures, processes and guidelines in accordance with Firm and Client requirements.
– Work with the Controls Manager and other stakeholders to identify, validate and document deficiencies in ITRM governance, processes and risk management practices, propose remediations, and enforce cross functional POAM initiatives and status reporting requirements in accordance with prioritization requirements.
– Manage the Cyber risk and issue registers and remediations, including supporting monthly ROC meetings (e.g., agenda, data calls, etc.), tracking and aggregating the risk registers and performing risk to policy domain to control(s) mapping to provide prioritization and transparency into control and policy domains requiring remediation.
– Evolve risk methodologies, as well as conduct and support risk assessments to support InfoSec the identification of risk across policy domains, identify opportunities for control enhancement and risk mitigation.
– Assist InfoSec’s TPRM and Client InfoSec Assessments, including assessment activities (completion and quality control reviews), developing or revising control narratives and supporting reporting efforts to InfoSec leadership and stakeholders.
– Facilitate the definition and maintenance of InfoSec governance and risk measures and metrics; and handle additional related projects as assigned.
Manager, Cybersecurity Governance and Risk Qualifications:
– Bachelor’s degree in information security, Information Assurance, Computer Science, Information Systems, or other related field (2 years of additional experience may be substituted for 2 years of college credits).
– At least 7 years of combined information technology, information security and risk management experience.
– Advanced awareness of current information security standards and developments (CSF, NIST, ISO), the COSO framework, as well as the emerging cyber threat landscape.
– Advanced understanding of risk management concepts, frameworks, and methodologies.
– Strong understanding of information security concepts and technologies.
– Strong project management skills and understanding of the technology and operational risks as related to technology solutions.
– Fundamental knowledge of the operation of law practices and advanced knowledge of MS Outlook, Word, Excel, Visio, and PowerPoint.
– Third party assessment experience, including the evaluation of SOC 2 Type 2, SIG, Pen Test, etc., reports.
– Strong understanding of Operational Risk from a Technology perspective.
– Excellent analytical and problem-solving skills, inquisitive nature and comfort challenging current practices.
– Understanding of governance, risk and compliance (GRC) practices and technologies across governance, process and technical domains.
– Background in consulting preferred.
– Ability to develop and maintain solid working relationships across the departments, and high-level technical understanding of security applications, platforms and architectures.
– CISA, CISM, GSEC, CISSP, CRISC or other security-related certification preferred.
Benefits include medical insurance, retirement plan, Dental, Vision, PTO, etc.
Keywords: Washington DC Jobs, Manager, Cybersecurity Governance and Risk, Information Security, Risk Management, Methodologies, Outlook, Word, Excel, Visio, PowerPoint, Project Management, CFS, NIST, ISO, COSO Framework, GRC, Governance Risk and Compliance, SOC 2 Type 2, SIG, Pen Test, CISA, CISM, GSEC, CISSP, CRISC, Washington DC Recruiters, Information Technology Jobs, IT Jobs, Washington DC Recruiting
Looking for a top IT recruiter to help your company hire for similar positions in Washington, DC or in other cities? Our IT recruiting company and staffing companies can help.
We help companies that are looking to hire Managers, Cybersecurity Governance and Risk for jobs in Washington, DC and in other cities too. Please contact our IT recruiters for tech jobs and IT staffing company today! Phone 630-428-0600 ext. 14 or email us at jobs@itrecruiters.technology. Click here to submit your resume for this job and others.
Atlanta Tech Recruiters, Austin Technology Headhunters, Baltimore Technology Headhunters, Boston Massachusetts IT Recruiters, Charlotte North Carolina IT Recruiters, Chicago IL IT Recruiters, Cincinnati Executive Staffing, Cleveland IT Recruiters, Columbus IT Recruiters, Dallas Recruiting Agency, Denver Executive Search Firms, Detroit Executive Tech Recruiting, Fort Lauderdale Technical Recruiters, Houston Recruiters for IT, Indianapolis Technology Headhunters, Jacksonville IT Headhunters, Kansas City Information Technology Recruiters, Los Angeles IT Recruiters, Miami IT Recruiters, Minneapolis IT Recruiters, Nashville IT Recruiters, New Jersey IT Recruiters, New York IT Recruiters, Phoenix IT Recruiters, Raleigh IT Recruiters, Salt Lake City Tech Recruiters, San Antonio IT Recruiters, San Diego IT Recruiters, San Francisco IT Recruiters, San Jose IT Recruitment, Seattle Information Technology Recruiters, Silicon Valley Executive Staffing, St Louis Executive Search Firms, Tampa Executive Tech Recruiting, Washington DC Technical Recruiters
Information For Employers > General Information | About Us | How We Work | Trading Industry | Healthcare Information Technology | Government Contract Expertise | Request Services
Information For Job Seekers > General Information | Find A Job | Submit Resume | How We Work | Trading Industry Tech Pros | Healthcare (HIT) | Security-Cleared | Successful Interviewing | Sample Interview Questions
General Information > About Us | Our Values | Meet Our President | Position Types | Technologies | Blog | Coverage Area