Listing Description

About the Position

We’re looking for a Cybersecurity Governance and Risk Specialist to join our existing efforts to enhance, expand and champion our cybersecurity GRC activities. 

You’ll focus on maturing and managing our vendor risk management program and undertaking vendor assessments. You will also:  

• Develop, maintain and communicate cybersecurity policies and help colleagues apply those security policies to their daily work


• Perform control assessments, help identify control gaps or weaknesses and work with the relevant teams to implement improvements to reduce our risk exposure 


• Support the development, automation and maintenance of appropriate metrics to drive informed decision-making


• Monitor regulatory requirements, note any changes that could impact the firm and collaborate with the relevant teams to ensure we stay in compliance

As a member of the Cybersecurity team, you’ll join a skilled group of security experts dedicated to keeping the firm safe. The scope of our work is wide and touches everything from software engineering to security governance and cyber awareness.

About You

• Has experience in a similar role and can demonstrate a good understanding of industry standards and regulatory requirements 


• Familiar with the auditing processes; has participated in both internal and external audits


• Has a positive and collaborative attitude; understands that a key component of  cybersecurity is having open and clear communication with others


• Works well with a team and can admit to and learn from mistakes


• A strong written and verbal communicator who can promote consistent messaging while tailoring information to suit the audience's needs


• Motivated self-starter who can handle competing priorities


• Detail-oriented and organised


• Fluency in English required