Director, Information Security Risk Management
7 meses atrás
**Job Overview**
- Leading risk-related projects
- Maintaining ongoing testing and development of Information Security Risk Management framework, liaising with senior stakeholders and providing regular updates to stakeholders.
- Producing risk reports when required
- Working closely with other senior leaders within the team regarding training and guidance to support the business.
- Working with Business Units and stakeholders to ensure adequate, cost effective and timely protection/risk transfer for business activities.
- Creating a Supplier Risk Management Framework
**Key Responsibilities**:
- Own the development and integration of the Information Security Risk Management Framework, Risk Appetite Statements, and Risk Policies and Procedures across the organization.
- Work closely with business and senior management to identify and manage risks aligned with the organization’s strategy and risk appetite.
- Provides strategic and tactical guidance to business decision-makers.
- Contribute to a strong governance structure and risk management across all business entities.
- Assess the impact of emerging risks and regulations, providing input and support for pragmatic solutions.
- Establish a comprehensive risk reporting system and process.
- Assist to remediate risks identified through established processes and procedures.
- Provides recommendations for remediation based on the reviews and risk assessments performed.
- Assist key business stakeholders in identifying and responding effectively to risk.
- Define key risk and performance indicators (KRIs/KPIs) for evaluating risk management performance.
- Integrate business continuity and crisis management into the organization's risk management strategies.
- Support the configuration of the TPRM & Risk Management solution for consistency with local processes.
- Assist in reviewing third parties, including due diligence reviews.
- Perform review of vendor engagements, understanding the functions of effective third-party risk.
**Qualifications**:
- Bachelor's Degree Computer Science, a related field, or equivalent experience required.
- 10 years of experience within the information security domain managing Risk frameworks.
- Deep understanding and demonstrated experience of end-to-end risk management lifecycle, including key components and their relationships with internal and external stakeholders.
- Experience in non-financial/operational risk - developing and implementing risk frameworks, policies, and procedures.
- Demonstrated experience leading risk management workshops, obtaining and synthesizing inputs from technical and non-technical stakeholders throughout the enterprise.
- Experience in conducting Third Party reviews is advantageous.
- Experience operating as a part of a GRC program in alignment with common information technology management frameworks such as NIST, ITIL, ISO 27001 etc.
- Security-related qualifications such as CISM or CISSP, CRISC are a plus.
-
Information Security Risk Management Lead
2 semanas atrás
Sao Paulo, Brasil Bitso Tempo inteiroAs an Information Security Lead, you will be a key player in the planning, design, implementation, operation and maintenance of the organization's Information Security Risk Management program, guaranteeing that it complies with the legal and regulatory requirements, as well as implementing and promoting the adoption of security and risk standards such as...
-
São Paulo, São Paulo, Brasil Cyber Crime Tempo inteiroCyber Crime is a leading organization in the field of information security risk management. We are seeking a highly skilled and experienced Chief Information Security Risk Management Specialist to join our team.About Cyber Crime:Cyber Crime is dedicated to helping organizations protect themselves against cyber threats and ensure compliance with regulatory...
-
Information Security Risk Manager
2 semanas atrás
São Paulo, Brasil IQVIA Argentina Tempo inteiroJob OverviewThe Information Security Risk Manager is a crucial role within IQVIA organization, responsible for helping to establish and maintain IQVIA's risk management program, which is designed to ensure that the company's IT systems and information assets are adequately protected.The individual in this position will be responsible for identifying and...
-
Information Security Risk Manager
2 meses atrás
São Paulo, SP, Brasil IQVIA Tempo inteiro**Job Overview** The Information Security Risk Manager is a crucial role within IQVIA organization, responsible for helping to establish and maintain IQVIA's risk management program, which is designed to ensure that the company's IT systems and information assets are adequately protected. The individual in this position will be responsible for identifying...
-
Information Security Risk Manager
Há 5 dias
São Paulo, Brasil IQVIA Tempo inteiroIQVIA Solutions to help life sciences organizations drive healthcare forward and get the right treatments to patients, faster.Job OverviewThe Information Security Risk Manager is a crucial role within IQVIA organization, responsible for helping to establish and maintain IQVIA's risk management program, which is designed to ensure that the company's IT...
-
Business Information Security Officer
3 semanas atrás
Sao Paulo, Brasil Bank of America Tempo inteiro**LATAM GIS BISO searches for a Business Information Security Officer** **Responsibilities**: Advise LOB management on risk issues related to information security and recommend actions in support of the bank's wider risk management and compliance programs; - Monitor information security trends internal and external to the bank and keep LOB leadership...
-
Information Security Risk Manager
2 meses atrás
São Paulo, Brasil IQVIA Tempo inteiroIQVIASolutions to help life sciences organizations drive healthcare forward and get the right treatments to patients, faster. Job Overview The Information Security Risk Manager is a crucial role within IQVIA organization, responsible for helping to establish and maintain IQVIA's risk management program, which is designed to ensure that the company's...
-
Information Security Specialist
2 semanas atrás
Sao Paulo, Brasil SumUp Tempo inteiroAt SumUp our vision is to be a global leader in the FinTech industry and build a world where small businesses can be successful doing what they love. To get there, we are putting together a team that is passionate about what they do, committed to one another and to our merchants. The Information Security Team is a key component in SumUp's Governance, Risk...
-
Information Security Risk Manager
2 semanas atrás
São Paulo, Brasil IQVIA Tempo inteiroIQVIASolutions to help life sciences organizations drive healthcare forward and get the right treatments to patients, faster.Job OverviewThe Information Security Risk Manager is a crucial role within IQVIA organization, responsible for helping to establish and maintain IQVIA's risk management program, which is designed to ensure that the company's IT systems...
-
Information Security Risk Manager
Há 5 dias
São Paulo, Brasil IQVIA Argentina Tempo inteiroJob OverviewThe Information Security Risk Manager is a crucial role within IQVIA organization, responsible for helping to establish and maintain IQVIA's risk management program, which is designed to ensure that the company's IT systems and information assets are adequately protected.The individual in this position will be responsible for identifying and...
-
Information Security Risk Manager
3 semanas atrás
São Paulo, Brasil IQVIA Argentina Tempo inteiroJob Overview The Information Security Risk Manager is a crucial role within IQVIA organization, responsible for helping to establish and maintain IQVIA's risk management program, which is designed to ensure that the company's IT systems and information assets are adequately protected.The individual in this position will be responsible for identifying...
-
Business Security Management
3 semanas atrás
Sao Paulo, Brasil Santander Tempo inteiroBusiness Security Management SAO PAULO, Brazil **WHAT YOU WILL BE DOING** Descrição do cargo The Business Security Management function is implemented by a distributed team that collaborates closely with business lines to ensure security is appropriately considered as part of all business activities - internal and key suppliers. Business Security...
-
Information Security Risk Manager IQVIA
2 meses atrás
São Paulo, Brasil Cyber Crime Tempo inteiroIQVIASolutions to help life sciences organizations drive healthcare forward and get the right treatments to patients, faster. Job Overview The Information Security Risk Manager is a crucial role within IQVIA organization, responsible for helping to establish and maintain IQVIA's risk management program, which is designed to ensure that the company's...
-
Senior Manager, Security Risk Management
2 semanas atrás
Sao Paulo, Brasil Kroll Tempo inteiroIn a world of disruption and increasingly complex business challenges, our professionals bring truth into focus with the Kroll Lens. Our sharp analytical skills, paired with the latest technology, allow us to give our clients clarity—not just answers—in all areas of business. We embrace diverse backgrounds and global perspectives, and we cultivate...
-
Business Information Security Officer
2 semanas atrás
Sao Paulo, Brasil Bank of America Tempo inteiro**Responsibilities**: - Advise LOB management on risk issues related to information security and recommend actions in support of the bank's wider risk management and compliance programs. - Monitor information security trends internal and external to the bank and keep LOB leadership informed about information security-related topics. - Collaborate with risk...
-
Business Information Security Officer
3 semanas atrás
Sao Paulo, Brasil Bank of America Tempo inteiro**LATAM GIS BISO searches for a Business Information Security Officer** **Responsibilities**: - Identity and Access Management end-to-end process, including but not limited to: Access Management / Control (RBAC, users, roles, password mgmt., approvals workflow), Authentication/MFA, Privileged Access, Entitlement / Access Review Process, Straight Through...
-
Information Security Analyst
3 semanas atrás
Sao Paulo, Brasil Eurofins Brazil Tempo inteiroCompany Description Eurofins Scientific is an international life sciences company which provides a unique range of analytical testing services to clients across multiple industries. The Group believes it is the world leader in food, environment and pharmaceutical products testing and in agroscience CRO services. It is also one of the global independent...
-
Information Security Officer
7 meses atrás
Sao Paulo, Brasil Pay Retailers Tempo inteiroAt PayRetailers, we are committed to providing cutting-edge solutions that empower businesses to succeed in Latin America. Our collaborative and inclusive work environment encourages creativity and growth, where every employee's contribution is valued. Get ready to embark on an exciting journey with us, as we strive to make a meaningful impact on the world...
-
Information Security Specialist
Há 6 dias
Sao Paulo, Brasil SumUp Tempo inteiro**Information Security Specialist (GRC)** At SumUp our vision is to be a global leader in the FinTech industry and build a world where small businesses can be successful doing what they love. To get there, we are putting together a team that is passionate about what they do, committed to one another and to our merchants. The Information Security Team is a...
-
Director, Global Security Investigations
2 semanas atrás
Sao Paulo, Brasil Pfizer Tempo inteiroAt Pfizer we are a patient centric company, guided by our four values: courage, joy, equity, and excellence. Our culture lends itself to our dedication to transforming millions of lives. Pfizer’s Global Security team is responsible for identifying and mitigating risk to public health, patients, and core business functions to enable the delivery of...
