Talent.com
No longer accepting applications
Senior Risk Analyst

Senior Risk Analyst

ConfidentialHyderabad / Secunderabad, Telangana, Bengaluru / Bangalore
30+ days ago
Job description

Key Accountabilities and Responsibilities

  • Support and drive key ICS Strategic and Risk Management initiatives across all business domains, as defined by objectives, and see them through to completion
  • Support the development of the ICS Risk Management Strategy, as well as the evolution of the overall ICS Strategy from the focus point / driver of reducing risk to within acceptable / tolerable levels
  • Support the definition, implement and maintenance of the Risk Management Framework in an ever evolving and changing risk landscape
  • Create and communicate supporting artefacts regarding strategic development and risk management i.e. Documented processes, strategies, milestones, risk actions, KPIs
  • Capture, develop and present relevant ICS metrics and reports for management information as required, to articulate tangible risk reduction progress
  • Support the Policy Exception process from a risk perspective
  • Receive, manage and progress risk and strategy related tickets / business queries
  • Develop companywide (including 3rd party), best practices and processes for Information Security risk
  • Support IT and the business in documenting, sizing and planning responses to Information Security risk in adherence to documented policies, standards and procedures, providing Education & Awareness on these where relevant
  • Conduct risk assessments across business and IT domains and work with product / service managers to ensure effective management of these risks
  • Maintain and evolve risk management systems and data quality to ensure accurate reporting
  • Research and consider policy, standard and process enhancements across the GRC space with the view of further reducing risk
  • Any other activities as reasonably directed by management.

Key Interactions- This role will develop and maintain relationships with outside their own immediate team

  • ICS Team
  • Senior IT & Business Leadership
  • Office of the General Counsel
  • Corporate Security & Business Protection
  • Enterprise Risk
  • Product Engineering
  • JLR Affiliates and Subsidiary companies
  • Supplier Management / Purchasing
  • IT Program & Project Delivery
  • IT Service Delivery
  • IT Comms
  • IT Domains (Product Managers)
  • Enterprise Architecture
  • Specialist Security Agencies
  • External vendors
  • Delivery partners
  • Analyst organizations / consultancies / third parties

    • Knowledge, Skills and Experience Essential :

  • Understanding of Information Security processes, functions and practices, particularly in the GRC space
  • Understanding and experience managing and assuring security controls
  • Proven analytical skills with the ability to manage simultaneous priorities under pressure and in line with changing deadlines.
  • Strong analysis skills, Excel expert with experience creating insight from analysis and data.
  • Able to present a professional, approachable image of Information Security to all stakeholders through verbal and written interactions
  • Exceptional customer service skills and abilities.
  • Proven experience in working with external global third party vendor and Managed Services Providers including software vendors
  • Strong analytical, problem solving, persuasion negotiation, and conflict resolution skills with a strong sense of
  • urgency, without the requirement for explicit deadlines
  • Good understanding of relevant industry standards and frameworks (e.g. GDPR, COBIT, NIST, ISO 27001)
  • Desirable :
  • Previous Security team experience working within the GRC space would be beneficial
  • Experience of authoring governance documentation (standards, policies, reporting, proposals, analysis)
  • Experience of authoring governance documentation (standards, reporting, proposals, analysis) Powerpoint expert with experience of creating presentations for senior stakeholders
  • Experience or knowledge of Agile practices (e.g. SAFe, SCRUM)
  • Degree or equivalent experience.
  • Knowledge and experience in managing information security in a highly regulated business (Financial Services, Pharma)
  • Knowledge and experience in Information Security Auditing Techniques
  • Certifications : CRISC, CISM, CISSP.
  • Experience gained in consulting or working in service provider environment
  • Experience of working globally, culturally astute and sensitive.

    • Essential :

  • A strong team player who owns their agenda and is able to work with light touch supervision.
  • An ability to work collaboratively, with experience of working with external third-party vendors and service providers.
  • Proven analytical and problem-solving skills.
  • Good stakeholder experience, able to engage using in plain and technical language as befits the audience.
  • Outcome driven, demonstrating tenacity and drive.
  • Good communication skills, with a professional and approachable demeanor.
  • Customer centric, easy to do business with and makes people feel special. Delivers experiences that are personalized, transparent and dependable.

    • Skills Required

    Risk

    Create a job alert for this search

    Senior Risk Analyst • Hyderabad / Secunderabad, Telangana, Bengaluru / Bangalore