Assistant Manager, Information Security Risk and Governance

Our client is seeking an Assistant Manager in Information Security Risk and Governance to join their Information Systems department on a permanent basis. This role will operate in a hybrid workplace structure, allowing for both remote and in-office work. The purpose of this position is to support the IT Security Team in managing and overseeing the daily operations relating to information security risk and governance controls, ensuring the ongoing security and efficiency of the global system. Responsibilities include deploying control oversight, assurance, testing, and due diligence as part of the Group’s comprehensive Information Security strategy. The successful candidate will support the implementation of Information Security Policies and Standards, perform necessary governance duties, and maintain the Information Security Risk Register. They will also assist with business continuity planning, conduct proactive risk assessments, and participate in audits. The role necessitates a strong focus on continuous improvement and adherence to regulatory requirements.

Job Duties:

• Support the implementation of control requirements specified in Information Security Policy and Standards.
• Serve as a central point of reference for queries related to Information Security Policies and Standards.
• Perform necessary Information Security Governance duties.
• Maintain and update the Information Security Risk Register, including necessary escalations.
• Conduct proactive Information Security Risk Assessments for identifying control gaps.
• Assist with managing, reviewing, and maintaining Business Continuity Plans (BCPs) and Business Impact Analyses (BIAs).
• Participate in client due diligence assessments and internal/external audits.
• Aid in the monthly analytical reporting related to IT security, delivered to key stakeholders.
• Stay updated with the latest information technology security trends and vulnerabilities.
• Assist with user access reviews and document security-related risks.
• Maintain comprehensive documentation and adhere to Risk & Compliance procedures.

Job Requirements:

• Relevant academic and/or professional certification(s).
• Experience in Information Security Risk and Governance.
• Strong technical skills with a risk-based approach, including familiarity with Governance, Risk and Compliance (GRC) solutions and Azure infrastructure.
• Understanding of Information System frameworks, policies, and controls.
• Strong attention to detail and excellent communication skills, both verbal and written.
• Ability to demonstrate an innovative approach to emerging changes in information security risk and governance.

What You’ll Love:
​​​​​​​
This role offers the opportunity to play a key part in maintaining and enhancing the jurisdiction’s reputation. You will work in a collaborative environment with opportunities to develop your skills in regulatory oversight, policy creation, and risk-based supervision. The organisation values professional growth and offers ample opportunities for training and career development.

Interested? Register today, confidentially, with one of our friendly and dedicated recruitment specialists by clicking here