Director - Information Security/Cyber Security - Big4

Director - Information Security/Cyber Security - Big4

Key Experience and Responsibilities:

- Conduct comprehensive assessments of technology risks inherent in business processes and systems.

- Analyse and evaluate the impact of emerging technologies on risk profiles.

- Identify potential vulnerabilities and recommend effective risk mitigation strategies.

- Develop and implement technology risk management strategies aligned with organizational goals.

- Work closely with senior leadership to define risk appetite and tolerance levels.

- Provide insights into emerging trends and regulatory changes affecting technology risk.

- Stay abreast of relevant laws and regulations related to technology risk.

- Ensure that the organization and its clients are compliant with industry standards and regulatory requirements.

- Collaborate with cross-functional teams, including IT, cybersecurity, and audit teams, to integrate technology risk management into overall risk frameworks.

- Work closely with technology and business leaders to align risk management efforts with business objectives.

Strategic Planning:

- Lead the development and execution of the overall technology risk strategy for the organization.

- Work closely with executive leadership to align technology risk management with long-term business objectives.

Thought Leadership:

- Establish yourself as a thought leader in the technology risk management field.

- Contribute to industry publications, speak at conferences, and actively participate in professional organizations to enhance the organization's reputation.

Innovation and Emerging Technologies:

- Drive innovation in technology risk management, keeping the organization at the forefront of industry best practices.

- Provide guidance on the impact of emerging technologies, such as AI, blockchain, and IoT, on the organization's risk landscape.

Client Advisory:

- Serve as a trusted advisor to clients on technology risk-related matters.

- Collaborate with clients to understand their business objectives and tailor risk management solutions accordingly.

- Deliver clear and concise recommendations to enhance technology risk resilience.

- Engage with C-level executives and board members to provide insights into technology risk and its impact on business strategy.

- Communicate complex risk concepts in a clear and compelling manner to gain support for risk management initiatives.

Team Leadership:

- Lead a team of technology risk professionals, providing guidance and mentorship.

- Foster a collaborative and innovative team culture.

- Oversee the development and execution of training programs for team members.

Qualifications:

- Bachelor's degree in B.Tech preferably; advanced degree (MBA, MS, etc.) preferred.

- Extensive experience (12-15+ Years) in technology risk management, with a focus on assessing and mitigating risks associated with emerging technologies.

- Professional certifications such as CISA, CRISC, CISSP, or equivalent are highly desirable.

- Proven success in influencing and gaining support from executive stakeholders.

- Strong leadership and people management skills with a proven ability to lead and motivate a team.

- Excellent communication and interpersonal skills, with the ability to convey complex technical concepts to non-technical stakeholders.

- In-depth knowledge of industry standards, regulatory requirements, and best practices related to technology risk.

- Strategic thinking and the ability to develop and implement effective risk management strategies.