{parent_widget_container=null, label=Choose the type of jobs banner, value=Global, choices=Global, Web, None, export_to_template_context=true, content_editable_values=[value], choices_list=[[Global, Global], [Web, Web], [None, None]], template_choices_list=[[Global, Global], [Web, Web], [None, None]], extra_wrapper_attrs={}, no_wrapper=true} -- --
We are currently looking for a Senior IT Security & Risk Consultant to work at our client, a big private bank.
Responsibilities
- Provide subject matter expertise in IT Security, Risk Management and Governance (GRC);
- Conduct IT and cybersecurity risk assessments using methodologies such as EBIOS and ISO 27005;
- Define and implement security policies, procedures and standards aligned with best practices and regulatory requirements;
- Ensure compliance with security frameworks and regulations (ISO 27001, NIST, DORA);
- Manage and coordinate third-party risk assessments and due diligence (contracts, SLAs, security clauses);
- Support and coordinate incident management, resilience and security governance frameworks;
- Lead Business Impact Analysis (BIA) and contribute to Business Continuity and Disaster Recovery (BCP/DRP) testing;
- Participate in the implementation and management of GRC tools and solutions;
- Provide advisory support to stakeholders on security, risk and compliance topics.
Qualifications
- Strong experience in IT Security, Risk Management and GRC;
- Solid knowledge of security standards and frameworks (ISO 27001/27005, NIST, DORA);
- Experience in banking, financial services or regulated environments;
- Experience with risk assessment methodologies and tools (e.g. Egerie Risk Manager);
- Experience with Business Continuity and Disaster Recovery planning;
- Good understanding of third-party risk and security compliance;
- Relevant certifications (or in progress) such as CISM, CRISC, ISO 27005;
- Fluent in English
