The Principal Cyber Security Risk Manager identifies, understands, and mitigates cyber-related risks. They provide risk and service owners with advice to help them make well-informed risk-based decisions. Reporting to the Head of Cyber, the role will collaborate with other teams in Cyber and the broader DDaT community and is responsible for the IRAP service, process enhancements, IRAP case approvals to medium, and liaising with SIRO for high-risk cases.
You’ll need to possess cloud expertise, experience, integrity, and be able to communicate across all levels and professions within the department, working with teams that are under pressure to provide the most informed risk assessment possible to decision makers. It will take strong collaboration skills to work across the department and with external stakeholders to protect and promote a governed, Cyber risk-aware and compliant DBT.
There are four key areas of this role:
1. Assess – leading risk and threat assessments activities at pace
2. Explain – creating tailored oral and written communications, briefings, and preparing advice on regulation, guidance, policy, standards, and risk assessment documentation
3. Influence – establishing a reputation of authority & influence to enable risk owners, suppliers, developers, and project leads to make well-informed decisions
4. Inspire – line managing SEOs and below in the team and supporting their progression
#J-18808-Ljbffr