VP Cyber and Information Risk, Independent Risk Review Manager jobs in United States
cer-icon
Apply on Employer Site
company-logo

HW3 · 1 week ago

VP Cyber and Information Risk, Independent Risk Review Manager

positionNew Jersey, United States
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff, Director/Executive
money$125K/yr - $160K/yr
date5+ years exp

HW3 is seeking a Cyber and Information Risk Independent Risk Review Manager at the VP level to join their Risk Management organization. This role is responsible for providing independent oversight and credible challenge of the firm's Information Security and Data Management programs, evaluating controls and overseeing risk remediation efforts.

RecruitingStaffing Agency
Hiring Manager
Ramone Jacobie
linkedin

Responsibilities

Execute horizontal reviews of top information security risks, identifying control gaps and recommending enhancements
Conduct thematic reviews of operational risk events and remediation actions to reduce risk of recurrence
Assess control capabilities against industry standards and evolving threat landscapes
Review and challenge remediation actions, monitor progress, and validate closure evidence
Prepare and present review results and status updates to Technology Leadership, Audit, and regulators
Evaluate the adequacy of remediation plans to address identified issues and regulatory expectations
Monitor remediation progress and validate the sufficiency of closure documentation
Provide clear, concise reporting to senior management and governance forums
Present regularly to management committees and forums on risk themes, remediation status, and control maturity
Serve as a trusted partner and point of contact across business and technology teams
Review and challenge policies, standards, and procedures related to information security and data management
Mentor and support junior team members
Influence stakeholders and build credibility across a matrixed organization

Qualification

Information security risk governanceData management risk frameworksCyber resilienceIncident responseCISSP certificationCISM certificationCISA certificationNIST CSFISO 27001Analytical skillsCommunication skillsLeadershipDetail-orientedSelf-motivated

Required

5+ years of experience in information security and data management risk governance, operations, or risk management
Experience in large-scale, highly regulated, high-availability transaction environments
Strong background working within complex, global, matrixed organizations
Deep knowledge of information security and data management risk frameworks and control environments
Hands-on exposure to areas such as cyber resilience, IAM, cloud security, network security, third-party risk, incident response, vulnerability management, security architecture, and data governance
Bachelor's degree in Computer Science, Cybersecurity, Information Management, Engineering, or related field (Master's preferred)
Relevant certifications preferred (CISSP, CISM, CISA)
Working knowledge of frameworks such as NIST CSF, NIST SP 800-53, ISO 27001, ISACA, DAMA-DMBOK
Proficiency in MS PowerPoint and Excel; experience with Project, Visio, and GRC tools such as Archer is a plus

Benefits

401(k) match
Comprehensive benefits

Company

HW3

twittertwittertwitter
Glassdoor3.0
company-logo
HW3 is a global recruitment consultancy that offers staffing and recruitment services within regulated industries.
dateFounded in 2011
location
London, England, GBR
people-size51-200 employees
web-link
https://www.hamlynwilliams.com/

Funding

Current Stage
Growth Stage
Total Funding
$7M
Key Investors
Meraki Capital
2024-07-30Series Unknown· $7M

Leadership Team

leader-logo
Nick Vaughan
Founder & CEO
linkedin
leader-logo
Mark DePanfilis
Client Growth Partner
linkedin
Company data provided by crunchbase