Application Security Risk Manager / Remote

DaBrein Solutions will be pre-selecting Application Security Risk Manager to join an important international company.
Risk Managers ensure that risk assessment outcomes are effectively communicated to application team members. They support ideation activities, facilitate meetings, and gather information from various teams. In addition to their Managerial duties, Risk Managers also take on the responsibilities of Risk Reviewers. This includes reviewing tickets for inconsistencies, managing ERV calls, and collaborating with Risk Reviewers to define the ticket review approach. They maintain a dashboard of ticket statuses, report on ticket status and metrics, and act on pending items in a timely manner.
Risk Managers assist in creating issues and mitigation plans, track ticket progress, and manage interactions with other NIS teams. They are responsible for presenting problems as opportunities and knowing when to escalate issues to senior management

Job Requirements and Preferences: 3 - 10 years of experience in a relevant role

Desired Certifications: But not mandatory. CISSP / CISM /CISA / CCSK / CCSP / CRISC

Roles & Responsibilities:

• Review tickets for inconsistencies, talking points, in advance of ERV calls/Initial conversation with customers
• Validate ticket, associated tasks and SDD information. Manage and run ERV calls
• Work with Risk Reviewer to understand questionable items and define approach to ticket review
• Maintain a dashboard of your ticket status' and be ready to report on status of any ticket and general metrics
• Review and action pending items/responses in a timely manner
• Be able to communicate with Seniors and Stakeholders
• Review related CRS and SRT tasks and manage calls upon request or when the Customer does not understand the record documentation
• Assist with creation of Issues and/or Mitigation Plans for Issues
• Track progress of the ticket through the Issue Mgmt. Stage and manage interactions with ancillary NIS teams: Global Workspace; m365; Third Party Risk Mgmt.; Splunk; Business Continuity; Mobile Application Mgmt.; BISO/CISO teams

Mandatory Skills:

• Customer service skills to create an exceptional customer experience
• Strong organizational and time management skills to support multiple concurrent reviews
• Self- Awareness
• Knowledge of the Information Security Policy, Application Readiness Standard, & Applicable Supporting
• Understand the purpose of Application Readiness process
• Ability to interact with customers, and ensure customers understand what actions they need to take
• Ability to review documentation analytically and assess control compliance based on information/ documentation provided.
• Ability to pull facts and details related to controls from different types of documentation and diagrams submitted
• Interface with customers to ask clarifying questions, prompt for responses to open items, provide guidance on next steps, schedule meetings
• Interface with AR Risk Manager(s) and AppSec Architects to provide status, raise flags
• Strong English written and verbal skills

Key Skills:

• Strong communication and organizational skills /Ability to manage multiple projects and teams
• Knowledge of information security policies and application readiness standards