Cyber Security Manager

Synergy Interactive • united states, united states, us • 3m ago

Synergy Interactive is partnering with a growing emergency care practice to fill a Cyber Risk Manager position. This direct hire position is hybrid based in White Plains, NY and requires experience with Risk Management frameworks including OCTAVE, NIST RMF, and COSO and will focus on third party risk management and cyber governance.

NOTE: NO 3RD PARTY CANDIDATES OR RESUME SOLICITATIONS WILL BE ACCEPTED

RESPONSIBILITIES:

Develop and lead a comprehensive risk management program aimed at identifying, assessing, and mitigating cyber risks across the organization.
Review, assess, and manage third-party risks, ensuring that vendors and partners align with security and compliance requirements.
Establish, update, and maintain a detailed risk register to track all identified risks, their potential impact, and mitigation status.
Develop key risk indicators (KRIs) to continuously monitor emerging risks and track their progression.
Perform regular risk assessments to prioritize risks based on their potential impact and likelihood, with a focus on those that could critically affect operations.
Create and implement mitigation strategies for high-priority risks, ensuring these are closely monitored and adjusted as needed.
Present risk findings and mitigation plans to the Risk team, providing clear and actionable insights for decision-making.
Stay adaptable and proactive in managing an ever-evolving risk landscape, constantly reassessing priorities as new threats emerge.
Manage Third Party Risk Management processes, ensuring robust controls and oversight of vendor risk management programs.

QUALIFICATIONS:

Strong understanding of industry-standard risk management frameworks such as OCTAVE, NIST RMF, and COSO.
At least 5 years of hands-on experience in cybersecurity risk management or a related field.
Bachelor's degree in Information Security, Computer Science, or a related discipline.
Excellent analytical and problem-solving skills, with the ability to communicate complex risk scenarios effectively to various stakeholders.
Proactive, adaptable, and comfortable working in a fast-paced, dynamic environment with changing priorities.