Go to our website »

Jobs at MetaOption, LLC

Information Risk Manager (IRM) Lead

Location: Boston, MA

Type: Contracted

Min. Experience: Experienced

Position: Information Risk Manager (IRM) Lead

Location: Boston, Massachusetts

Duration: 1+ year contract

Phone/Skype, then FTF paid for by client.  FTF MANDATORY

 

Job Description:

Our Financial Services client is looking for a Information Risk Manager (IRM) Lead. The IRM Lead manages the IRM team and works with business unit staff to identify and prioritize risk components, understanding and reporting on the overall risk posture of the business. IRM also ensures IT Control Policies are followed within the line of business and monitoring action plans that are developed and executed to address any non-compliance with policy requirements. Responsible for three principle activities of risk awareness, advisory and compliance.


Specific responsibilities include but are not limited to: 

•    Provides leadership to IT risk identification, assessment and remediation across the firm.
•    Identify, synthesize, and communicate the information risks and associated controls for assigned business units. Analyze all identified risks to extrapolate trends across business units and the overall impact to the enterprise. Determine remediation plans to address critical enterprise risk trends. 
•    Joint accountability with the business unit to address identified risks
•    Regularly report information risk metrics to business unit management 
•    Lead the communication of technology related policies and standards and how they should be applied within the business units to ensure risk is managed to an acceptable level and compliance achieved where it represents a significant risk to the business. 
•    Collaborate with Information Risk Consultants to proactively identify potential risk exposures within new technology solutions being designed and implemented, and partner with application development teams and Core Information risk services groups to implement appropriate solution to mitigate exposure. 
•    Ensure various risk analysis assignments, including application assessments, due diligence reviews, and vendor reviews are completed, reviewed, and analyzed in a timely manner. 
•    Identify areas of unmanaged information risk within the current environment and institute the appropriate controls to mitigate exposure.
 
Customer Facing Program and Business Initiatives: 
•    Support customer information risk reviews, including self assessments 
•    Support the customer-facing associates to respond quickly and consistently to inquiries on topics such as RFPs, Information Security, SAS 70, and Internal Controls. 
 
Proactive Risk Analysis: 
•    Support end-to-end information risk analysis of business process, application portfolio, and computing environment. 
•    Support end-to-end compliance reviews and where risks cannot be appropriately mitigated, assist in preparation and execution of the Risk Acceptance process, describing the level of risk, areas of non-compliance, and identification of mitigating controls. 
•    Identify control deficiency trends and work with Core Information Risk Services to develop and implement solutions.
 

Minimum Requirements:  
•    Subject matter expert with industry standard Information Technology Control Policies and Standards frameworks 
•    Ability to manage by influence and establish effective working relationships with all levels of management
•    Displays a strong ability to lead and direct
•    Demonstrates a strong ability to identify, analyze, and solve problems
•    Effectively resolves conflicts between individual needs and requirements of the organization
•    Excellent oral and written communication skills 
•    10+years technology background with significant exposure to Information Risk, Information Security, or Audit.  
•    CISSP or CISA qualified or relevant experience
•    Strong project management experience 
Strong communication, relationship building and presentation skills

Mastery

•    This Mastery level role handles complex long-term focused projects involving multiple disciplines or business units 
•    Works independently and with management on high visible, divisional/cross-divisional complex projects 
•    Sought as a key resource for resolution of unique or complex business problems 
•    Advances the interest of the company by serving on teams that are external to the organization when appropriate 
•    Drives continuous improvement and efficiencies beyond own scope of responsibility 
•    Individual typically has at least 8+ yrs of related experience 

Forward this Position
Recipient email address (one)
Your name
Your email address
Enter a message (optional)
Human Check*
Apply for this Position
* Required fields
First name*
Last name*
Email address*
Location
Phone number*
Resume*

Attach resume as .pdf, .doc, or .docx (limit 2MB) or paste resume

Paste your resume here or attach resume file

Cover Letter*
In 150 characters or fewer, tell us what makes you unique. Try to be creative and say something that will catch our eye!*