Security Risk Senior Consultant - inglés alto

We are looking for the service of an external Security Risk Senior Consultant. The mission is not about coordinating other team members but rather a senior doer, responsible for delivery of the service allocated engagement. Advanced PPT presentation expertise and basic XLS expertise are necessary. Transversal team playing is required.

The objective of the mission is to roll out in 2024 an asset-based risk assessment framework at scale in the Company. This includes the update of our existing instructions.

This includes coordination, planning preparation, workshops with entities, and organizing live sharing sessions (150 participants).

The service must have a level of expertise in applying best practices from an operational standpoint.

We already have an Application Infosec Risk Assessment (AISRA) that we’ll augment with PSS security assessments, seeking convergence.

We’ll also ensure that the AI and Healthcare requirements are included, but we already have the supporting libraries.

Required Expertise :

• Expertise of DORA & Regulations
• Extended expertise of Risk & Control environment with a focus on security
• Proven design and delivery of asset-based risk assessment frameworks
• Extended expertise of Security Risk Framework & Risk Assessments
• Expertise in designing and evaluating risk reduction in a pragmatic and operational fashion for security
• Expertise of IT GRC, ERM, CMDB, Vulnerability Management
• Expertise of what is an SMS for Security and the link with other capabilities starting with Risk Management
• Expertise of KRI, KPI and how they support decision making
• Expertise of assurance testing and how this feeds risk assessment approaches
• Expertise of Risk Management as a 2nd Line and how security operates within that model

J-18808-Ljbffr