Cybersecurity Engineer focused on threat monitoring and incident response for Verizon's network security. Collaborating on security architecture and vulnerability management across multiple locations.
About the role
- ICT & Security Risk Manager at BCR driving ICT risk management and team collaboration with Technology & Security teams. Executing enterprise-wide risk assessments and ensuring effective reporting and compliance.
Responsibilities
- Drive the execution of the ICT risk management framework;
- Provide constructive challenge to Technology & Security teams;
- Ensure risks are monitored and reported effectively;
- Maintain and enhance the ICT & Security Risk Policy, procedures, and assessment methodology;
- Execute and coordinate enterprise-wide ICT risk assessments and targeted thematic reviews;
- Assess security findings and control weaknesses, validate risk severity, and ensure structured, risk-based remediation tracking;
- Provide effective 2nd line challenge to 1st line risk assessments; deliver pragmatic and actionable recommendations;
- Own and improve the ICT/Cyber risk register;
- Monitor risk treatment plans and mitigation effectiveness;
- Support NFR/Risk Acceptance governance;
- Build and maintain a meaningful KRI framework;
- Analyze trends across incidents, downtime, vulnerabilities, audit findings for forward-looking risk insights;
- Contribute to severe-but-plausible scenario analysis and resilience assessments;
- Lead the ICT change risk component by assessing high-risk changes.
Requirements
- 4+ years of experience in ICT/cyber risk, tech audit/controls, security governance, or operational risk with strong IT exposure;
- Hands-on experience performing risk assessments, control evaluation, and preparing management-level risk reporting;
- Good understanding of regulatory expectations and industry best practices (DORA, NIST CSF, ISO 27001/27002, COBIT, ITIL);
- Strong analytical mindset and the ability to translate technical vulnerabilities into clear business risk implications;
- Confidence to act as a constructive challenger when working with senior technical stakeholders;
- High standards for documentation and evidence-based writing, delivering audit-ready outputs;
- Comfortable working with KRIs, thresholds, and trend analysis;
- Integrity, independence, and sound professional judgment in risk-based decision making;
- Certifications such as CISM, CISSP, CRISC, CISA, ISO 27001 LA/LI, ITIL, COBIT are an advantage;
- Exposure to third-party ICT risk, cloud risk governance, scenario analysis or operational resilience exercises is considered a plus.
Benefits
- Monthly budget for flexible benefits through the Benefit Online platform;
- Performance-based bonus;
- Banking facilities, benefits for private pension and discounts on insurance policies;
- Gifts for special occasions;
- Private medical services for you and your family;
- Hybrid and flexible work schedule;
- Up to 27 vacation days depending on your professional experience;
- Extra 7 days off per year if you have used up your vacation days;
- One day off for your birthday;
- Wellbeing, personal and professional development programs, and platforms that allow you to learn anytime, anywhere, and from any device;
- Subscription to Bookster.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Manager of Application Security leading initiatives to protect applications at Nordstrom through strategic leadership and AI - driven tooling. Collaborating with engineering to ensure secure software development practices.
Information Security Engineer responsible for deploying and supporting security tools across cloud and on - premise systems. Collaborating with IT to mitigate security risks in a hybrid work environment.
Casual Retail Security Officer for MSS Security ensuring safety at Tweed Mall in Tweed Heads. Responsible for patrols, incident response, and customer service.
Financial security advisor at Desjardins developing client relationships and selling life and health insurance products. Focusing on customer satisfaction and personalized financial solutions.
Principal Information Security Consultant at Westpac focusing on security protocols and employee benefits for staff. Hybrid role centrally located with opportunities for professional development and employee perks.
Engineer supporting secure development lifecycle processes for product lines in the energy sector. Collaborating with R&D on security requirements and compliance audits.
Automation Oversight Engineer providing oversight of compliance in automated device configurations for Comcast Business. Managing configuration checks and reporting, ensuring reliable oversight and improvement strategies.
Principal Systems Engineer - Cybersecurity role in protecting our nation's products as part of Integrated Platform Solutions team. Develop solutions utilizing RMF, Anti - Tamper, Software Assurance, and more.
Agent de Sécurité assurant la sécurité des usagers du réseau de transport TBM. Rattaché au Manager de Proximité Sûreté, garantissant la qualité de service public de transport en commun.