Referentienr.: NK382
Voorstelling bedrijf Bekijk de andere vacatures

Computer Recruitment Services - Information Risk Analyst (IRPA)

Ref.: NK382

Nk382 Information Risk analyst (IRPA) : Banking, Brussels

 

 

Background

 

The Business Continuity and Assurance team within the Cyber Security Department defines, establishes and provides information assurance. The team manages regulatory adherence for security, supports security response to external RFPs, manages client queries regarding security policies/controls, provides assurance in response to client due diligence, and manages the first-line internal controls framework. These sub-functions collaborate across security capabilities, with IT and business teams and functions such as HR, Risk Management and Compliance.

 

 

Role 

  • Based on our consolidated of IT Assets Inventory, the objective of the project is to obtain a differentiated view of business applications risk profile according to their Confidentiality, Integrity and Availability, aligned with bank's risk management methodology:
    • evaluating the inherent risk of the application from a business perspective;
    • assessing separately the financial impact, the regulatory impact and the client impact in case of respectively confidentiality, integrity or availability incident;
    • ultimately slotting the applications in one of the 5 buckets of different risk profile.
  • Assessments will be conducted through workshops with business owners of the applications, business managers, Risk Management and enterprise architects.
  • This project is key to support the prioritisation for the deployment of the bank's security initiatives.

  

Profile  

  • Handles standard situation by relying on existing procedures and methods, covering several but known domains of expertise.
    • Relies on existing processes and policies to take decisions.
    • Focuses on execution in his domain, according to defined processes and methods. Runs and maintains the operational process.
    • Works autonomously on standard activities or non-complex demands. Organises, co-ordinates and plans activities independently. Priorities are set by the job. Uses expertise to challenge the goals and scope of new requests and evaluates the impact of these new requirements.
  • Knowledge of security risk management, risk governance.
    • Strong oral and written skills to translate complex risk requirements.
    • Experience with security and controls frameworks, such as ISO 27001, COBIT5, Sans Top 20 Controls and NIST CyberSecurity Framework.
    • Experience with audit good practice.
    • Knowledge of onsite risk assessments and managing targeted risk remediation activities.

 

You must be an EU national to be considered for this role

 

Reference: Nk382

Location: Brussels

Language: English

Duration: 6 months

Start date: ASAP

Rate: 550-575 euros per day

Beschrijving bedrijf

CRS is a specialist recruitment business providing resource solutions to the Financial Markets. With its focused teams of specialist recruitment consultants, we supply permanent and contract personnel at all levels. Our market expertise and established procedures have positioned us as the specialist of choice with many blue chip organisations. With a proven track record in Financial Markets we have been expanding into related specialist market sectors including Energy Trading, the Utility and Telco sectors. Our established client base includes Preferred Supplier status with major corporations throughout the UK and mainland Europe.

Toon volledige beschrijving
Gelijkaardige vacatures
Gelijksoortige vacatures gebaseerd op de criteria : Security Engineer Risk & Compliance Manager Governance Specialist
Mijn account Nog niet ingeschreven?