About Our Client The client is a multinational financial services company operating on a global scale.
Job Description Governance, Risk Management, and Compliance:Develop, implement, and maintain GRC frameworks in alignment with industry standards (e.g., ISO 27001, NIST, PCI-DSS).Conduct risk assessments to identify vulnerabilities and recommend appropriate mitigation strategies.Ensure compliance with regulatory requirements specific to the financial services industry (e.g., GDPR, SOX, FFIEC).Monitor and report on compliance metrics, ensuring adherence to established policies and procedures.Vulnerability Assessment:Lead regular vulnerability assessments and penetration testing activities to identify security weaknesses within the organization's infrastructure.Analyze assessment results, prioritize vulnerabilities based on risk levels, and coordinate remediation efforts.Develop and maintain a vulnerability management program, including monitoring, patch management, and incident response planning.Policy Development and Training:Establish and maintain information security policies, procedures, and standards to manage risk effectively.Conduct training and awareness programs to educate employees on security best practices and compliance requirements.Serve as a point of contact for security-related questions and policy guidance across the organization.Incident Response:Participate in the development and execution of incident response plans, ensuring readiness to respond effectively to security breaches or incidents.Collaborate with internal teams to investigate security incidents, conduct root cause analysis, and implement corrective actions.Collaboration and Communication:Work closely with IT, legal, and compliance teams to enhance the organization's security posture.Prepare and present reports to senior management and stakeholders on security posture, risk management, and compliance status.The Successful Applicant Minimum of 5 years of experience in information security, with a focus on GRC and vulnerability assessment, preferably in the financial services industry.Relevant certifications such as CISSP, CISM, CRISC, or CISA are highly desirable.Strong knowledge of security frameworks, risk management practices, and regulatory compliance requirements.Experience with vulnerability assessment tools and techniques, as well as incident response methodologies.Excellent analytical, problem-solving, and communication skills.Ability to work independently and collaboratively in a fast-paced environment.What's on Offer Competitive salary packageExtensive healthcare + HMO package (with dependents)Leave incentivesPerformance-based bonusDevelopment & Training
#J-18808-Ljbffr