Upvote
Downvote
IT And InfoSec Operational Risk Officer
Share Job
- Suggest Revision
Full-time
- The IT and InfoSec Operational Risk Officer within the second line of defense Operational Risk organization is responsible for the independent oversight of front-line Information Technology (IT) and Information Security (IS) units to socialize risk concepts, frameworks and promote the organizations' risk culture, including education and training.
- The IT and InfoSec Operational Risk Officer must adapt previous experience and industry leading practices to fit Northwest.
- The position also partners with functional and operational leadership in the development of risk mitigation plans, consistent with the Bank's enterprise risk management framework.
- Help mature and execute an IT and IS risk management framework using industry leading practices (e.g., NIST CSF, COBIT, SCF) taking into consideration regulatory expectations
- Leverage the current ERM framework and partner with first-line IT and IS teams to further mature IT risk assessments, document controls, identify gaps, and create action plans for critical IT and IS processes, including validation and testing to ensure IT risk programs are implemented and executed appropriately
Active Job
Updated 3 months agoSimilar Job
Relevance
Active