About the job Associate Lead Cyber Security Governance
Associate Lead – Cyber Security Governance
Our client, a leading player in the telecom and technology sector, is looking for an Associate Lead – Cyber Security Governance to join their dynamic team. This role offers a unique opportunity to ensure robust cyber security governance and help shape the organization's security strategies.
Key Responsibilities:
Vendor Risk Management: Identify, assess, and mitigate vendor risks. Conduct vendor due diligence and monitor compliance.
Cyber Security Frameworks: Assist in the development and implementation of comprehensive cyber security governance frameworks, policies, and procedures. Ensure alignment with industry standards and regulatory requirements.
Risk Assessments: Conduct thorough risk assessments to identify vulnerabilities and recommend effective mitigation strategies.
Compliance & Reporting: Monitor the effectiveness of risk management practices and ensure compliance with internal policies and external regulations. Prepare and present detailed compliance reports to senior management.
Cyber Security Awareness: Develop and deliver training programs to enhance cyber security awareness across the organization, promoting a culture of security awareness among all employees.
Incident Response: Collaborate with the incident response team to manage and respond to security incidents. Participate in post-incident reviews to identify lessons learned and improve processes.
Cross-Department Collaboration: Work closely with IT, legal, and other departments to ensure a cohesive approach to cyber security governance. Engage with external stakeholders, including auditors and regulatory bodies, as needed.
Qualifications:
Education: B.Sc. in Engineering (Computer Science, Electrical, Electronic Engineering, or similar) or equivalent academic qualification, OR certifications such as:
Certified Information Security Auditor (CISA)
Security+
ITIL Foundation
Certified Information Security Manager (CISM)
Experience: 2–3 years in cyber security governance, risk management, compliance, or related fields (e.g., IT/Telco Network, Cyber Security, Technology Assurance, Internal Audit).
Knowledge:
In-depth understanding of cyber security frameworks (e.g., NIST, ISO 27001, ISO 27701).
Familiarity with risk assessment tools and methodologies.
Strong knowledge of security technologies and best practices.
Skills:
Strong analytical and problem-solving abilities.
Excellent communication and interpersonal skills.
Highly organized, with strong attention to detail.
Ability to work independently and as part of a team.
Relevant certifications (e.g., CISM, CRISC) are a plus.
This is an exciting opportunity to work in a fast-evolving industry, managing cyber security governance for a leading organization. You’ll play a crucial role in shaping and improving the company’s security posture while working with cross-functional teams to implement best practices and innovative solutions.
If you're passionate about cyber security and ready to contribute to the governance and risk management strategy of a global organization, we'd love to hear from you!