Information Security Risk Manager - Zurich, Schweiz - EFG International

EFG International

Geprüftes Unternehmen

Zurich, Schweiz

vor 1 Woche

Geschrieben von:

Lena Schneider

beBee Recruiter

Beschreibung

To support the business and its future growth, the Information Security team is well embedded in the operational risk management framework, to ensure EFG does operate within its risk appetite.

In addition, they support the business strategic change projects by providing the required skills and know-how to warrant successful outcomes.

To be able to achieve these objectives, we are looking for a seasoned
Information Security Manager (Governance, Change & Assurance).

This individual will be reporting directly to the Group CISO, based in Switzerland, and must drive the global strategic initiatives to further mature and strengthen our cyber defence capabilities and overall protection of the data of EFG, its clients and third parties.

In addition, the role must provide adequate assurance that these capabilities remain fit-for-purpose against the evolving threat landscape and increased sophistication of attacks, taken into the account the complex and hybrid technical environments we operate in and the new and emerging technologies and services that are being embedded.

Main responsibilities

Define, implement, and maintain a cyber capability framework, which defines the required capabilities, its objectives, minimum requirements, related controls and key (risk) indicators.
Define, oversee and steer the strategic cyber and information security programs.
Oversight and assessments of regulatory developments related to directives and requirements.
Define, maintain, and report (KPIs / SLAs) on the interentity outsourced information security services.
Manage and oversee internal and external audits on cyber and information securirty services and capabilities, including tracking mitigation till closure.
As part of assurance services, manage and lead red team, crisis management, and tabletop exercises. Furthermore, provide threat intelligence briefings and overall risk landscape reporting to senior management, as well the overall maturity of our cyber capabilities

Skills and experience

10+ years of Financial working experience, preferably in large international/multicultural enterprise environments.
Certified Certified Information Systems Security Professional (CISSP)
Proven experience in building cyber capability framework.
Led red team exercises (based on CBEST / TIBER).
Reporting to senior management regarding threat intelligence and overall risk landscape.
Master's degree in computer science, information systems or a related technical discipline, or equivalent professional experience.
Private Banking experience preferred but not a must.
Excellent communications skills (verbal and written), ability to produce accurate documentation.
Ability to speak clearly with various stakeholders, senior executives as well as technical experts
Fluent in English, proficiency in any Swiss national language is a plus.

Our values

Accountability: Taking ownership for tasks and challenges as well as seeking continuous improvement.
Handson: Being proactive to rapidly deliver highquality results.
Passionate: Being committed and striving for excellence.
Solutiondriven: Focusing on client outcomes and treating clients fairly with a riskaware mindset.
Partnershiporiented: Promoting collaboration and teamwork. Working together with an entrepreneurial spirit.

Our Company

EFG Bank is the Swiss private banking subsidiary of EFG International.

Headquartered in Zurich, it has an international network spanning Europe, Asia Pacific, and Latin America, and manages assets for private clients all over the world.

The bank's services comprise asset management and investment counselling, investment funds, securities brokerage, estate planning and a full array of banking services.

EFG Bank offers a stimulating and dynamic work environment.