.Reporting to the Head of Cyber Security Risk & Compliance, this role sits in the Risk & Compliance function, which is responsible for defining, implementing, and leading risk and compliance for the Company Global Trust Organisation.Working with the International CISO group, and alongside risk experts, the Cyber Risk Specialist is responsible for helping to build and manage the global information security's risk program, assisting in the development of cyber risk policies for internal use, and risk statements for external use, and describing risk requirements for business partners and service providers. In this role you will also help to facilitate regulatory compliance by coordinating the information security's approach to cyber risk and by supporting business units and legal colleagues. You will need to collaborate closely with business partners to ensure cyber risk controls are not adversely affected by other procedural or technology changes that may be implemented.This role forms part of the wider strategic Cyber Security and Privacy programme being developed focusing on the reduction of risk to Company. To be successful in this role you will need the ability to balance a hands-on approach to risk from a security risk management perspective, with an ability to self-direct, prioritise and manage your workload. You will need a good knowledge of information security activities across technology, process, and governance as well as in depth cyber risk management.Key Responsibilities Help provide information security and cyber risk assessment to be incorporated into risk assessments, focused on specific business processes or applications.Work alongside other global information security colleagues and architecture to ensure that cyber risk by design principles are incorporated into all designs.Help prioritise cyber risk treatment for Company and subsidiary companies, and work with legal colleagues to determine how to maintain and improve compliance with regulatory requirements and corporate policies.Help the information security awareness specialist in the team craft cyber risk training and awareness programs and set up and maintain a consistent cyber security breach response plan for each business unit.Improve the quality of service provided to Company and its subsidiary companies with respect to cyber risk.Work with the Head of Cyber Security Risk & Compliance and the International CISO as a virtual security team, to help define, regulate, and improve cyber risk processes and services.Tasks Act as a liaison and point of contact for Cyber Security risk to Company colleagues.Help to ensure effective execution of the Company risk management framework.Provide advice and instructions on how to conduct cyber security risk assessments to business units
