Cyber Risk & Assurance Lead

Southern WaterWorthington, MN
95d
Match Resume

About The Position

As the Cyber Risk and Assurance Lead, you lead the Cyber Risk and Assurance team, part of the wider Cyber Security team. The Cyber Risk and Assurance team is our second line in technology working with stakeholders to ensure the implementation of proportionate controls to mitigate Southern Waters cyber risk exposure. You are responsible for continually improving insights in your area of specialism and driving process/tooling improvements as required to achieve security outcomes. Working with cross-functional stakeholders to break down complex problems and identify possible solutions. You will support team members and stakeholders seeking help with matters relating to management of cyber risk.

Requirements

  • Maintain up-to-date understanding of cyber threat landscape and applicable laws and regulations (e.g. NIS1/NIS2, GDPR)
  • Line manages a team of between 3-10, develop and mentor junior Cyber team members
  • Lead, plan, and conduct complex cyber risk assessments (aligned to industry-recognised frameworks)
  • Ensure delivery of high-quality assessment reports with clear conclusions and recommendations
  • Identify and drive initiatives to improve control effectiveness/compliance across cyber domains
  • Engage stakeholders across Security, wider Technology, and the business to assess the impact of deficient controls
  • Lead the Southern Water Cyber Security awareness campaigns
  • Build strong relationships with Security and Technology colleagues as well as Legal, Internal Audit and other business teams
  • Identify and implement process improvement opportunities across various initiatives within the Cyber Risk and Assurance team

Nice To Haves

  • Technical Knowledge of cyber security and information security controls best practice
  • In-depth knowledge and working understanding of security, assessment, risk management, and compliance frameworks
  • Understanding of cloud service models, application security best practices, vulnerability and patch management
  • Knowledge of cyber incident trends and their impact on financial losses
  • Familiarity with cyber risk models (e.g., RMS, CyberCube, Cyence, etc)
  • 10+ years of security experience or advanced degree + 8 years of security experience
  • Strong background in Cloud Security, Network Security, Identity & Access Management
  • Hands on experience with different security frameworks and standards
  • Experience and knowledge of information security related laws and regulations

Responsibilities

  • Risk and Assurance (40%)
  • IT and Cyber Security Operations (10%)
  • Maintaining policies, standards and processes (30%)
  • Staff awareness (20%)

Benefits

  • Opportunities for personal growth and professional development
  • Support for flexible working arrangements where possible
  • Engagement in meaningful work that positively impacts society and the environment

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Career Level

Senior

Education Level

Bachelor's degree

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service