The Cyber & Disaster Resilience SME will play a vital role in the Resilience project team by leading resilience assessment workshops with technical teams and dev-ops teams of the Bank.
Job Description:
The Cyber & Disaster Resilience SME will play a vital role in the Resilience project team by leading resilience assessment workshops with technical teams and dev-ops teams of the Bank.
In this role you need to understand the various IT landscapes of different applications and technology stacks, assess the current security posture of the applications, evaluate the threats and risk exposure.
You need to collaborate with various engineers, technical experts, architects, dev-ops teams and show a basic level of expertise in system architecture, good knowledge in cyber security, IT risk management and business resiliency.
Key skills:
• Demonstrate specialized expertise in establishing and maintaining Cyber Risk Resilience Management through the implementation of Enterprise Risk Management and Business Continuity Management to fortify the organization's security posture.
• Maintain oversight and foster effective relationships with business-level risks, technology, and cyber security teams to ensure operational resilience within the businesses, promoting knowledge sharing and best practice adoption.
• Understand current cyber threats and the technical aspects of the attacks (TTPs)
• Evaluate existing applications to identify areas of attack with the Dev-Ops team
• Work with different Dev-Ops team members leading resilience workshops and assist in creating the DR assessment worksheets
• Mix quantitative and qualitative metrics to measure cyber resilience and evaluate existing controls in place
• Raise resilience awareness and understanding amongst the Dev-Ops teams to minimize potential impacts on the business.
• Integrate resilience with other consultancy offerings, such as risk management and IT transformation, to provide comprehensive support to clients.
• Provide oversight and influence on the Bank’s cyber assessment capabilities
• Lead through influence and collaboration supporting constructive input and challenge
• Ability to work effectively in a fast-paced, collaborative environment
• Able to communicate complex topics to the different levels of the organization
Qualifications:
• A relevant degree in IT, information security or equivalent experience
• A minimum of 3-5 years of experience. We’re looking for a candidate from the Medior to Senior level range.
• Proficiency in the main cyber resilience and security management frameworks like ISO22301 and ISO 27000 nice to Have
• Have significant experience working in cybersecurity threat management
• Experience in designing and implementing cyber resilience strategies
Nice to have:
• Experience in the Banking industry is a plus
• Understanding of cloud computing platforms (Azure) and hybrid Experience in Disaster Recovery and/or assembling Disaster Recovery Plans
• Basic knowledge of the various technologies used by development teams, Java, Mainframe, Azure, AWS
• Cyber security certification such as CISM, CISSP is a plus
