The Cyber and Information Risk, Independent Risk Review Lead is responsible for leading the execution of independent reviews of the efficacy of the firms Information Security and Data Management programs, including review and challenge of large-scale risk remediation efforts. The successful candidate will provide review and credible challenge of the effectiveness of information security and data management processes and controls in mitigating key risks to the firm. This position is highly engaged with the firm-wide Information Security and Data Management teams who provide security and data management solutions as well as corporate departments that own information security and data management risks.

Essential Function / major duties and responsibilities of the job

Strategic

Risk Culture – Assist the Head of Technology and Information Risk Management and Head of Enterprise Risk and Operational Risk Management in driving the culture of engagement, teamwork and accountability. Independent Reviews – Lead horizontal reviews of top information security and data management risks, identifying gaps in control coverage and recommending control improvements to address identified gaps. Complete thematic reviews of information security and data management operational risk events and associated proposed actions to ...