Senior Manager, Information Risk
Posted:
Job Title: Information Risk Lead
KCB Group is seeking an experienced Information Risk Lead to provide strategic leadership in technology and information risk management across the organization. This role will oversee risk assessments, advisory assignments, and compliance with industry standards while managing a team of information risk professionals.
Key Responsibilities
- Provide leadership in individual Information Risk / Technology related Risk and advisory assignments for the assigned scope.
- Conduct Technology and Information risk assessments through Information Risk Managers and Analysts to develop the annual Group Information Risk action plan.
- Provide leadership in cyber security risk related reviews and advisory assignments, IT general and IT application control risk reviews on information systems and Technology environment to give assurance on the effectiveness and efficiency of the preventive control and compliance to KCB Group policies, International Standards (ISO 27001, ISO 22301, PCI DSS, NIST 800 series, etc.), and Regulatory requirements and guidelines.
- Provide leadership in emerging risks, threat hunting, Cloud computing & AI/ML by working with business functions in Technology in providing mitigations.
- Provide regular updates to group senior leadership and the board on the latest trends in information risk.
- Coordinate Red Team exercises across the group and SWIFT attestation program in a timely manner.
- Track outstanding risks in DORCCO, GORCCO, CAB meetings and ensure follow-up.
- Be a member of CAB representing the Information Risk Department.
- Conduct, follow up, and validate closure of PIR & KCSA review issues action plans as per stakeholder engagement agreements and track to completion within agreed timelines.
- Design and monitor implementation of the Information risks awareness program across KCB Group.
- Oversee and challenge Information risks across KCB Group, including Information Security, Technology, and Data quality risks.
- Lead and mentor a team of Information Risk Managers and Analysts, fostering a collaborative and high-performing environment.
- Conduct comprehensive reviews and provide independent assurance on projects, cybersecurity, and governance initiatives.
- Offer objective and insightful recommendations to enhance the bank's information systems and ICT infrastructure.
- Ensure the bank's data and systems are secure and compliant with industry standards and regulations.
- Stay updated with emerging technologies and trends, identifying potential risks and opportunities for the bank.
- Collaborate with various departments to understand their information risk needs and provide tailored solutions.
- Develop and implement risk assessment frameworks and methodologies to identify and mitigate potential risks.
- Prepare and present risk reports to senior management, offering clear and actionable insights.
- Build and maintain strong relationships with internal stakeholders and external partners to ensure effective risk management.
- Stay informed about industry best practices and contribute to the bank's overall risk management strategy.
Qualifications
- Bachelor's degree in Computer Science, Information Technology, or a related field; Master's degree preferred.
- Minimum of 8 years of experience in information risk management, with a proven track record of leading teams.
- Certified Information Systems Auditor (CISA) or Certified Information Security Manager (CISM) certification is an advantage.
- Strong knowledge of information security principles, risk assessment methodologies, and industry standards.
- Excellent leadership and mentoring skills, with the ability to inspire and develop a high-performing team.
- Analytical mindset with a problem-solving approach, able to identify risks and propose effective solutions.
- Effective communication skills, both written and verbal, to present complex information to diverse audiences.
- Ability to work independently and manage multiple projects simultaneously, ensuring timely delivery.
- Strong interpersonal skills to build relationships and collaborate with stakeholders at all levels.
- A proactive and innovative mindset, constantly seeking opportunities to enhance the bank's information risk management practices.
CV Job Description Matcher See how well your CV matches this job and get tips to improve your chances AI Tool
This tool helps you see how closely your CV matches a job description. It also gives you simple suggestions on what to improve so you have a better chance of getting shortlisted.
Never pay anyone for job applications, interview tests, or job interviews. A genuine employer will never ask you for payment under any circumstances.
