Archiviertes Projekt - Security Risk Assurance / Assessment Expert (m/f/d), asap, parttime, remote, 6 months+
Firmenname für PREMIUM-Mitglieder sichtbar
- April 2024
- Oktober 2024
- D-Großraum Köln
- auf Anfrage
- Remote
- 15.03.2024
- 2152
Projektbeschreibung
For our customer we are looking for a Security Risk Assurance / Assessment Expert:
Focus on risk assessment of applications and infrastructure.
Summary:
Manage the organisation's cybersecurity-related risks aligned to the organisation’s strategy. Develop, maintain and communicate the risk management processes and reports. Continuously manages (identifies, analyses, assesses, estimates, mitigates) the cybersecurity-related risks of ICT infrastructures, systems and services by planning, applying, reporting and communicating risk analysis, assessment and treatment. Establishes a risk management strategy for the organisation and ensures that risks remain at an acceptable level for the organisation by selecting mitigation actions and controls.
Tasks
• Develop an organisation’s cybersecurity risk management strategy
• Manage an inventory of organisation’s assets
• Identify and assess cybersecurity-related threats and vulnerabilities of ICT systems
• Identification of threat landscape including attackers’ profiles and estimation of attacks’ potential
• Assess cybersecurity risks and propose most appropriate risk treatment options, including security controls and risk mitigation and avoidance that best address the organisation’s strategy
• Monitor effectiveness of cybersecurity controls and risk levels
• Ensure that all cybersecurity risks remain at an acceptable level for the organisation’s assets
• Develop, maintain, report and communicate complete risk management cycle
Skills
• Implement cybersecurity risk management frameworks, methodologies and guidelines and ensure compliance with regulations and standards
• Analyse and consolidate organisation’s quality and risk management practices
• Enable business assets owners, executives and other stakeholders to make riskinformed decisions to manage and mitigate risks
• Build a cybersecurity risk-aware environment
• Communicate, present and report to relevant stakeholders
• Propose and manage risk-sharing options
Knowledge
• Risk management standards, methodologies and frameworks
• Risk management tools
• Risk management recommendations and best practices
• Cyber threats
• Computer systems vulnerabilities
• Cybersecurity controls and solutions
• Cybersecurity risks
• Monitoring, testing and evaluating cybersecurity controls' effectiveness
• Cybersecurity-related certifications
• Cybersecurity-related technologies
Starting date: asap, 2-3 days/week
Location: remote
Duration: 6 months +
Focus on risk assessment of applications and infrastructure.
Summary:
Manage the organisation's cybersecurity-related risks aligned to the organisation’s strategy. Develop, maintain and communicate the risk management processes and reports. Continuously manages (identifies, analyses, assesses, estimates, mitigates) the cybersecurity-related risks of ICT infrastructures, systems and services by planning, applying, reporting and communicating risk analysis, assessment and treatment. Establishes a risk management strategy for the organisation and ensures that risks remain at an acceptable level for the organisation by selecting mitigation actions and controls.
Tasks
• Develop an organisation’s cybersecurity risk management strategy
• Manage an inventory of organisation’s assets
• Identify and assess cybersecurity-related threats and vulnerabilities of ICT systems
• Identification of threat landscape including attackers’ profiles and estimation of attacks’ potential
• Assess cybersecurity risks and propose most appropriate risk treatment options, including security controls and risk mitigation and avoidance that best address the organisation’s strategy
• Monitor effectiveness of cybersecurity controls and risk levels
• Ensure that all cybersecurity risks remain at an acceptable level for the organisation’s assets
• Develop, maintain, report and communicate complete risk management cycle
Skills
• Implement cybersecurity risk management frameworks, methodologies and guidelines and ensure compliance with regulations and standards
• Analyse and consolidate organisation’s quality and risk management practices
• Enable business assets owners, executives and other stakeholders to make riskinformed decisions to manage and mitigate risks
• Build a cybersecurity risk-aware environment
• Communicate, present and report to relevant stakeholders
• Propose and manage risk-sharing options
Knowledge
• Risk management standards, methodologies and frameworks
• Risk management tools
• Risk management recommendations and best practices
• Cyber threats
• Computer systems vulnerabilities
• Cybersecurity controls and solutions
• Cybersecurity risks
• Monitoring, testing and evaluating cybersecurity controls' effectiveness
• Cybersecurity-related certifications
• Cybersecurity-related technologies
Starting date: asap, 2-3 days/week
Location: remote
Duration: 6 months +
Kontaktdaten
Als registriertes Mitglied von freelance.de können Sie sich direkt auf dieses Projekt bewerben.
Kategorien und Skills
IT, Entwicklung:
Management, Unternehmen, Strategie:
Sie suchen Freelancer?
Schreiben Sie Ihr Projekt aus und erhalten Sie noch heute passende Angebote.
Jetzt Projekt erstellen