The opportunity
You will be a core member of a highly skilled and rapidly growing team of Technical Security specialists.
As a member of the team, you will have the opportunity to grow your career in leading the delivery of security architecture and design solutions with a significant opportunity for leadership experience and career progression.
We are looking for an experienced Cybersecurity Governance, Risk, and Compliance (GRC) Manager to lead our efforts in ensuring compliance with key cybersecurity regulations, including the Digital Operational Resilience Act (DORA), the NIS2 Directive, and the NIST Cybersecurity Framework (CSF). The successful candidate will play a critical role in developing and implementing our cybersecurity governance framework, risk management strategies, and compliance programs to safeguard our information assets and ensure regulatory adherence.
Key Responsibilities:
1. Governance:
* Develop and maintain a comprehensive cybersecurity governance framework aligned with DORA, NIS2, and NIST CSF.
* Establish and enforce cybersecurity policies, standards, and procedures that reflect regulatory requirements and best practices.
* Collaborate with senior leadership to integrate cybersecurity governance into overall business strategy and operations.
* Conduct risk assessments to identify, evaluate, and prioritize cybersecurity risks in accordance with DORA and NIS2 requirements.
* Develop and implement risk mitigation strategies and action plans to address identified vulnerabilities.
* Monitor and report on the effectiveness of risk management initiatives and controls.
1. Compliance:
* Ensure compliance with DORA, NIS2, and NIST CSF, as well as other relevant regulations and standards.
* Stay informed about changes in cybersecurity regulations and assess their impact on the organization’s compliance posture.
* Coordinate and facilitate internal and external audits related to cybersecurity compliance.
2. Training and Awareness:
* Design and deliver training programs to educate employees on cybersecurity regulations, policies, and best practices.
* Foster a culture of compliance and security awareness across the organization.
* Work closely with IT, legal, and other departments to ensure a unified approach to cybersecurity governance and compliance.
* Serve as the primary point of contact for all matters related to cybersecurity regulations and compliance.
Qualifications:
* Bachelor’s degree in Cybersecurity, Information Technology, Business Administration, or a related field; Master’s degree preferred.
* Years of experience in cybersecurity governance, risk management, and compliance, with a focus on DORA, NIS2, and NIST CSF.
* Strong understanding of cybersecurity regulations, frameworks, and best practices.
* Relevant certifications (CISSP, CISM, CRISC, CISA) are highly desirable.
* Excellent analytical, communication, and interpersonal skills.
* Proven ability to work collaboratively in a dynamic, team-oriented environment.
#J-18808-Ljbffr