Beschreibung
In Search of Excellence – also your philosophy for success?Bosshard & Partner’s business activities follow this guiding principle. The company offers its first-class services to selected top companies in banking, industry, insurance and public sectors. Bosshard & Partner defines its market position in a unique manner in three different IT business segments covering job markets consisting of discerning clients, partners and IT specialists. We are the Preferred Supplier of numerous companies – check our company and open mandates at www.bosspub.ch.
Bosshard & Partner is looking with
Mandate 2440
for an IT Security Risk Manager (f/m) in the Banking Area
Project environment
The Investment Bank Divisional Information Security Officer (IB DISO) of a global Swiss Bank will lead the Information Risk Management (ISRM) capability for the Investment Bank.
ISRM will protect information from inappropriate access, use, disclosure, disruption, modification, loss or destruction which would negatively impact the bank’s legal, regulatory or financial standing.
The Information Security Risk Manger role will report to the IB DISO with direct responsibility for delivering the ISRM strategy globally, supporting the IB in all matters related to IT security ensuring effective risk management across the organisation establishing the security baseline, managing compliance with this baseline and liaising with other business and IT functions, such as Legal & Compliance.
Tasks
• Assess and develop responses to Operational Risks & external threats and Audit issues.
• Attend Operating Committee and Forums to present IS posture.
• Manage, and report on, security-related incidents and events.
• Support Group initiatives ensuring IB requirements / investments are represented.
• Determine regional security operations requirements across people, process and technology.
• Conduct risk assessments, report outcome and support mitigation activities and projects.
• Develop response recommendations (accept / mitigate).
• Engage Legal & Compliance to maintain view of IS requirements.
• Support COO’s and business activities as SME for security risk and compliance.
• Develop region-specific standards to support IS policy framework and syndicate.
• Provide approvals for change and drive security culture / awareness.
• Support regulatory engagements and periodic internal controls assessment processes.
• Drive compliance with group policies standards and local regulatory requirements.
Requirements
• Broad knowledge of IT security.
• Understanding of access control, data protection leakage and approvals workflow.
• Understanding of IT activities such as software development, production support, deployment and release processes & testing.
• Advanced Excel, PowerPoint & Access skills.
• Strong verbal and written communication.
• Analytical and problem solving skills with attention to detail.
• Familiar with financial industry or large corporate organisations.
Workload: 100%
Start Date: 02.06.2014
End Date: 01.12.2014
Workplace: Zurich
Did we gain your interest? Please do not hesitate to contact Mr. Hanspeter Himmel at or