Risk Reporting Manager
- Advansys
- مدينة نصر، محافظة القاهرة، مصر
- Full-time
وصف الوظيفة
- Alignment with Business Priorities: Sr. Manager IS GRC aligns his actions and those of his departments with the strategic objectives of the business.
- Ownership and Accountability: Sr. Manager IS GRC takes full responsibility for his activities and his department’s, holding himself and his team accountable for their outcomes.
- Driving Security Risk Reduction: Sr. Manager IS GRC proactively drives initiatives that reduce security risks.
- Focus on Outputs and Impact: Sr. Manager IS GRC focuses on delivering outputs that create meaningful impact such as enhanced security culture and security posture of the bank.
- Innovation and Automation: Sr. Manager IS GRC continuously seeks innovative solutions and automates processes for efficiency.
- Cost-Benefit Optimization: Sr. Manager IS GRC strives to optimize the cost-benefit ratio of his and his department’s actions.
- Continuous Learning and Improvement: Sr. Manager IS GRC is committed to learning from experience and continuously improving his processes and outcomes.
متطلبات الوظيفة
- A mid senior level officer with sound knowledge and expertise in information security risk management with experience of managing enterprise projects and of direct and in-direct relationship with senior and executive management.
- Strong experience and knowledge across the Information Security and Cyber Security domains including governance, policy procedures, compliance management, risk management and security incident response etc.
- Strong experience in Banking environment with strong understanding on key security frameworks such as ISO27001.XX, NIST 800.xx, PCI-DSS, SWIFT CSP, COBIT etc.
- Strong analytical skills with the ability to interpret complex data and translate it into actionable insights.
- Proficiency in data analysis tools (Excel, SQL, etc.) and data visualization platforms (Power BI, Tableau, etc.).
- Strong knowledge of data aggregation, analysis, and reporting techniques.
- Experience with reporting automation and process optimization tools
- Strong interpersonal, analytical, and technical skills with strong decision making and prioritization skills.
- Sound knowledge of evolving advanced tech stacks and related control and risk universe.
- Sound knowledge and expertise in conducting risk assessment.
- Have over 10+ years of rich experience in information security domain and at least 2-3 years of dedicated experience in one of the GRC domains (Policy, Governance and Culture, Cyber Strategy & Program Management and Risk and Compliance).
- Master’s degree in IT/Information Security
- Professional certifications: CISA, CISM, CISSP, CRISC, etc.
