JobsPortal logo

Search Jobs In Finland

Cyber Risk Expert

Published date more than one year ago
Posted: more than one year ago
Company Nordea
Company: Nordea
End date Aug. 9, 2020
Due date: Aug. 9, 2020
Location Helsinki
Location: Helsinki
Apply!

About this opportunity

  • Build upon the development of the risk landscape, regulatory changes, the business strategy, the risk appetite, internal, external and regulatory findings, results from benchmarking assessments (such as the PwC NIST assessment) and considers the ongoing implementation of earlier security objectives (such as GISP);
  • Improve transparency on cyber risks and maturity of Nordea’s cyber defence capabilities. Build up on international standards and best practices where possible;
  • Further improve Nordea’s cyber defence capabilities to drive the risk of Organised Crime Advanced Persistence Threat below “Critical”; and
  • Keep Nordea compliant with regulatory requirements.
  • Support development and implementation of top down security risks, including risk appetite definition and management of Top Risks and their KPIs/KRIs;
  • Provide advice to the business in understanding, identifying, managing, and monitoring information security risks;
  • Define, build and help implement a robust reporting structure with focus on key risks and relevant KPIs so we can provide senior stakeholders with timely and accurate security reporting;
  • Help and support the team in i.e. assurance and monitoring;
  • Interact with other teams in CSO to help mature risk awareness and properly understand how to adequately report on key risks;
  • Provide advice to first line on security processes, regulatory compliance and control appropriateness; and
  • Partner engage and collaborate with stakeholders to enable the business to reach and maintain a risk profile within appetite.

Who you are

  • Have a sound understanding of Risk Management processes, and industry practices preferable within security and technologies;
  • Have a sound, competent and fine-tuned security risk judgement and ability to translate this to influence the first line’s risk profile to meet agreed risk appetite;
  • Are structured, analytical and have a high ability to provide timely and accurate security reporting;
  • Are a proactive, independent and pragmatic team-player with a solution-oriented mindset; and
  • Can collaborate with employees on all levels of the organization.
  • High ambition level to develop and self-motivate to help improve deliveries and adapt to transformation;
  • Compliance experience;
  • Data Analytics capabilities;
  • Risk Management experience;
  • You have superior English spoken & written skills, and the following qualifications are well regarded but not a pre-requisite:
    • Relevant security qualifications, e.g.: CRISC, CISM, CISSP or other risk relevant experience.

Next steps