Senior Information Risk Consultant – Cybersecurity Assurance
Location: Ireland/Remote • Type: Contract – US Shift
Client: United Nations Financial Agency – a major international financial institution funded by 191 member countries, headquartered in Washington, D.C.
Overview
The Senior Information Risk Consultant (Cybersecurity Assurance) will provide expertise in the definition, design, engineering, and validation of security configuration of technology platforms in the cloud and on‑premises. The candidate will work with project teams, service providers, and business units internal and external to the Fund’s IT function, bringing pragmatic cloud security and risk management experience to meet the Fund’s present and emergent business needs. The candidate will advise and influence technology and business personnel regarding the value and methods of safeguarding information, applications, systems, infrastructure, and activities to ensure optimal technology performance and optimized risk management.
Responsibilities
* Provide cybersecurity assurance expertise for a broad range of IT initiatives.
* Define, guide the engineering and validate implementation of technology‑agnostic security control standards, technology‑specific configuration baselines and implementation guidelines for all technology platforms (both cloud and on‑prem) and services.
* Maintain impartiality around IT systems to produce unbiased reports on information security risk.
* Conduct quality assurance reviews of security requirements and audit recommendations for the implementation of identified solutions.
* Effectively communicate requirements and educate stakeholders in IT divisions on appropriate security design and technical configuration of related controls throughout their lifecycle.
* Work closely with IT project teams to develop implementation plans for new security‑related products and services.
* Advocate information security and proactively collaborate with IT stakeholders, service providers, and business units to provide security‑related technical solutions, identifying opportunities to improve business practices or IT security‑related processes.
* Prioritize, monitor, and assess compliance and audit recommendation results to ensure comprehensive, robust, and high‑quality outcomes.
* Support the information security assurance manager in maintaining the Fund’s ISO 27001 certification by promoting self‑compliance to policies and standards by IT staff and managers.
* Keep abreast of international information security codes of practice such as ISO 27001/27002, information security and privacy regulations and how these measures could affect information assets owned by, or administered by, the Fund.
* Analyze, recommend, and implement process improvements within the context of information security.
Experience
* Prior work in a technical security assurance/engineering function at organizations with security‑related regulatory requirements.
* Technical security working experience with a broad range of Azure services.
* Advanced working knowledge of:
o Azure Cloud and Microsoft 365 security controls, solutions, and future roadmaps.
o Microsoft Entra, Azure Key Vault, Microsoft Defender for Cloud/O365, Azure Monitor, Azure API Management, Azure Network Security, Azure Policy, Microsoft Defender External Attack Surface Management, and Azure Kubernetes Service.
o Security configuration of Microsoft Purview to ensure the principle of least privilege for complex use‑cases.
* Demonstrated cybersecurity expertise with infrastructure, applications, and database system technologies.
* Hands‑on security configuration of platforms (cloud and non‑cloud).
* Basic IT consultancy skills. Ability to consult and deliver on the security hardening of application and infrastructure components, including tools and techniques to ensure security of application, database, and infrastructure components.
* Pragmatic security expert with an inherent ability to balance security demands with business reality; quick grasp of how new technologies work and how security controls should be applied to achieve business goals.
* Knowledge of security solutions, latest threats, and countermeasures.
Soft Skills
* Analytical skills enabling synthesis of inputs from many sources and strategic thinking.
* Compelling, convincing, and reassuring spoken and written communications; ability to articulate complex technical ideas to non‑technical stakeholders.
* Ability to think laterally and propose detailed, complex solutions to technical issues.
* Interpersonal skills that create openness and trust among colleagues.
* Ability to work well under pressure, meet tight deadlines, and demonstrate high motivation, confidence, integrity, and responsibility.
* Organized, responsive, and effective multi‑tasking with a focus on driving results.
* Excellent interpersonal and relationship management skills; ability to work independently, effectively in a team, and with senior staff and managers.
* Facilitation and conflict management skills enabling effective working relationships.
Education
* Bachelor’s degree in information security, computer science, engineering, mathematics, business, or related field plus a minimum of 12 years of relevant experience in regulated industries working as an information risk manager or IT security architect.
* Advanced degree in Information Security, computer science, engineering, mathematics, business, or related field plus a minimum of 6 years of relevant experience in regulated industries working as an information risk manager or IT security architect.
Certifications (Minimum plus at least 2 preferred)
* CISSP or CISM (minimum required)
* CCSP (preferred)
* Microsoft Certified: Cybersecurity Architect Expert (preferred)
* Microsoft Certified: Azure Solutions Architect Expert (preferred)
* Other Microsoft cloud security related certifications at the Expert level (preferred)
* GIAC certifications (preferred)
* Offensive security related certifications (preferred)
Contact
If you are interested in this role or would like to discuss further, please call Nidhi on +353 1 645 5244 or email nidhi.tripathi@experis.ie.
Candidate must have valid visa to work in Ireland (Stamp 1G/Stamp 4/EU Passport).
#J-18808-Ljbffr