Job Title: Cyber Security Risk Management Specialist
Job Summary:
We are seeking a highly skilled Cyber Security Risk Management Specialist to join our team. The ideal candidate will have experience in performing security risk assessments, creating security documentation, and providing input into system designs to achieve 'security by design'.
Duties and Responsibilities:
- Perform comprehensive security risk assessments using the Entity Risk Management Framework, and cyber security frameworks such as the ISM, and PSPF.
- Develop and maintain security documentation including Security Risk Management Plans (SRMP), and System Security Plans (SSP).
- Collaborate with stakeholders to develop risk treatment plans, and provide input into system designs to achieve 'security by design'.
- Monitor work queues and mailboxes to provide security help and expert advice.
- Advise stakeholders on security policy, procedures, and best practice.
- Provide input into security policy development and implementation.
Qualifications and Experience:
- Minimum 2 years of experience in vulnerability management would be beneficial.
- Strong understanding of Azure from a security perspective would be highly regarded.
- Relevant certifications and qualifications such as CRISC, CISM, ISO:27001, CISSP would be highly regarded.
Selection Criteria:
- Excellent written, verbal, and interpersonal skills.
- Ability to create reports and provide recommendations to achieve security outcomes.