Cyber Risk & Control Officer
Vue: 188
Jour de mise à jour: 25-04-2024
Localisation: Genève Genève GE
Catégorie: R & D IT - Matériel / Réseaux Informatique Finance / Banque / Stock
Industrie: Finance
le contenu du travail
Your team
As theCyber Risk & Control Officer, you will be part of the Cybersecurity unit in the Technology & Operations division. The department comprises the Security Operations Center as well as several information security experts. You will work closely with multiple stakeholders — most importantly the teams in charge of network security, workplace security, datacenter infrastructure and Tech&Ops Risk & Compliance — as well as with the Group Chief Information Security Officer and his team, and play an active part in maintaining the highest level of security.
Your role
- Developing and maintaining the Internal Control System in relation to cybersecurity processes, in order to reduce cyber risks in a cost effective manner.
- Assessing the design and performance of first level cybersecurity controls performed by Tech&Ops, as well as helping establish and reviewing Risk & Control Self Assessments.
- Performing regular controls as part of the Security Operations Center activities (e.g. use of administrative privileges, Data Leakage Prevention, etc.).
- Performing risk analyses and contributing to assessing impact of emerging cyber threats on Pictet information systems.
- Developing, maintaining and auditing cybersecurity documentation, such as policies, standards and procedures.
- Contributing actively to the team’s activities, including KPI & KRI documentation and cybersecurity support to IT projects, as well as following up on improvement actions stemming from incidents or security assessments.
Your profile
- Bachelor’s or Master’s in Information Technology, Information Security or Computer Science (e.g. EPF, Uni, HES).
- Experience as an internal or external auditor with a focus on cybersecurity or similar experience.
- Security related certifications a plus (e.g. CISSP, CISM, CISA, CCSP).
- Ideally, experience with data analytics or automation tools (e.g. Python, PowerShell, Tableau).
- Good general knowledge of modern technologies and practices (e.g. containerization, hybrid cloud environments, infrastructure as code, DevSecOps).
- Willingness to share your knowledge and educate your colleagues.
- An easy-going person who will be readily accepted as a reference by stakeholders at multiple levels.
- An effective written communicator, ability to summarize and report on complex issues.
- Fluency in English and French (both spoken and written).
Note
Diversity & Inclusion
Date limite: 09-06-2024
Cliquez pour postuler pour un candidat gratuit
Signaler des emplois
MÊMES EMPLOIS
-
⏰ 27-05-2024🌏 Baar, Zug ZG
-
⏰ 27-05-2024🌏 Gland, Vaud VD
-
⏰ 27-05-2024🌏 Neuchâtel, Neuchâtel NE
-
⏰ 27-05-2024🌏 Arbon, Thurgau TG
-
⏰ 27-05-2024🌏 Aarau, Aargau AG
-
⏰ 27-05-2024🌏 Zürich, Zürich ZH
-
⏰ 27-05-2024🌏 Zürich, Zürich ZH
-
⏰ 27-05-2024🌏 Zürich, Zürich ZH
-
⏰ 27-05-2024🌏 Genève, Genève GE
-
⏰ 27-05-2024🌏 Einsiedeln, Schwyz SZ