Key tasks:
- Perform security and compliance assessments on new and existing infrastructure and applications to ensure adherence and effective controls are in place.
- Implement existing and new compliance requirements.
- Collaborate with stakeholders to ensure corrective actions are in place; document lessons learned.
- Provide support in due-diligence and third party risk assessment efforts.
- Ensure adherence of risk policies with SAP NS2 standards.
- Provide reports on analysis and corrective actions in the event of security incidents and alerts.
- Support internal and external audit processes, as needed.
- Perform business impact analysis and develop/maintain risk register.
- Collaborate with leadership to develop risk metrics and dashboard; generate periodic reports as defined by the metrics and as needed by management.
- Assist business and IT partners with risk vulnerability remediation activities.
- Stay abreast on emerging regulatory updates, technological trends, and changing threat landscape to inform new policies and standards.
Experience and Education Requirements:
- Bachelor’s degree or relevant professional experience
- 2-5 years of experience working in risk management and compliance functions
- Familiarity with Risk Management solutions and processes
- Familiarity with security laws, strategies, processes, standards, and services
- Security Certifications like CISSP, CISA, CISM, GCFA, GCIH, GCIA, GNFA, GREM, GCCC, or Security+ are an asset