Your new company

Our client is a global organization committed to maintaining the highest standards of cybersecurity and risk governance. With a focus on proactive risk management and cross-functional collaboration, the company is expanding its security governance team to strengthen its enterprise-wide compliance and resilience posture.

Your new role

As a Senior Cyber Risk Management Specialist, you will play a key role in assessing and enhancing the organization’s cybersecurity and technology risk posture. This individual contributor role is responsible for evaluating risks against established frameworks, analyzing business impact, and driving continuous improvement in security governance. You’ll collaborate with stakeholders across IT, OT, compliance, audit, and business units to ensure risks are clearly communicated and effectively mitigated. This role requires a strong understanding of IT principles, hands-on technical experience, and the ability to translate risk into business language for senior leadership.
Key Responsibilities:
• Perform risk analysis through interviews, documentation review, and technical assessments
• Identify risk drivers, preventive and mitigating controls, and potential business impacts
• Collaborate with Information Security, Privacy, Compliance, Third Party Risk, and Internal Audit teams
• Lead the development of treatment plans with business owners to address risk drivers
• Facilitate communication and education of policies and standards across the organization
• Analyze current risk and governance models and identify gaps or areas for improvement
• Serve as a liaison between IT Security, Risk, and business departments
• Report findings to senior business leaders and respond to inquiries with clarity and context
• Support ongoing risk remediation projects stemming from NIST maturity assessments
• Conduct deeper assessments on areas scoring lowest and coordinate follow-up actions

What you'll need to succeed

• Bachelor’s degree in Computer Science, Information Security, or related field
• 5+ years of experience in IT Security, Governance, or Risk Management
• Active certifications preferred: FAIR, CRISC, CISA, CISSP
• Strong understanding of risk concepts and business impact analysis
• Experience with GRC platforms (ServiceNow, Archer, LogicGate, OneTrust)
• Familiarity with application security, containerization, APIs, and AI technologies
• Advanced Excel skills and proficiency with MS Office Suite
• Ability to communicate risk findings to non-technical stakeholders (VP, SVP level)
• High integrity, proactive mindset, and ability to manage complex assignments
• Experience attending GRC-related conferences and staying current with industry trends

What you'll get in return

• Opportunity to influence enterprise-wide risk strategy and governance
• Exposure to high-impact projects and cross-functional collaboration
• Relocation support available
• Hybrid work model for flexibility
• Competitive compensation and benefits package

What you need to do now

If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.

If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion on your career.

#LI-DNI