Cyber Risk Manager (Second-line Controls)

Overview

Operating in a highly regulated banking environment (FINMA, EBA, DORA, etc.) and amid accelerating digital transformation – including the expansion of e-banking and mobile banking services, the Group Risk Department is seeking a senior cybersecurity specialist to carry out second-line control activities. Independent of first-line operational teams, the role holder contributes to ensuring the effectiveness, consistency, and regulatory compliance of the Bank’s cybersecurity framework.

Main responsibilities

• Execute the second-line control plan across the full cybersecurity perimeter: IAM, PAM, endpoints, cloud, networks, e-banking and mobile banking.
• Conduct periodic and thematic controls on security processes and measures implemented by first-line operational teams, to ensure that information security risks are identified, assessed, treated, and reported to relevant stakeholders.
• Verify compliance with banking regulator...