Cybersecurity Risk Manager

Softchoice is seeking a Cybersecurity Risk Manager to lead the development and implementation of a risk-based cybersecurity management program. The role involves strategic leadership, risk assessment, and mitigation to ensure the company's financial health, legal compliance, and reputation.

Requirements

• 10-15 years' experience in IT including security operations (SOC)
• 5 years experience managing people directly and indirectly
• At least 5 years working in cybersecurity governance, risk, and compliance (GRC)
• Demonstrated knowledge of risk management in the context of cybersecurity, IT compliance, risk assessment, and control
• Demonstrated understanding of security practices, trends, and compliance audits
• Knowledge of auditing against information security management frameworks (SOC2T2, ISO 27001:2022)
• Proven project management approach to drive outcomes
• Experience as a Security Analyst and/or IT Infrastructure work is desirable
• Familiarity with industry compliance standards and regulations (e.g., GDPR, Occupational Safety and Health Act)
• Strong computer and research skills; knowledge of analysis software preferred (e.g., Statistical Analysis Software, or SAS)
• Analytical mind with problem-solving aptitude
• Bachelor's or master's degree in computer science, engineering, information security, or a related field
• Relevant certifications such as CISSP, CISM, CISA, CRISC
• Professional Risk Manager (PRM) certification is a plus

Benefits

• Flexible work arrangements
• Award-winning workplace
• Inclusive culture
• Competitive benefits
• Opportunities for career development and advancement

Originally posted on Himalayas