Job Description
Vice President, Information Security(Risk & Maturity)
Overview & Responsibilities
VP Information Security (Risk & Maturity)
Job summary
The VP of Risk & Maturity job role requires a very motivated goal driven individual with good interpersonal, communication and organizational skills. Must be detail oriented, with a good work ethic, able to work with minimal supervision and direct security resources to support the best possible security outcomes.
The main purpose of this role is to it drive forward the global risk and maturity management agenda focused on establishing and embedding a risk and maturity management framework, including the identification, measurement, monitoring, assessment and reporting of information security risks across the business.
In addition, this role will support the SVP of Information Security on regionally focused security activities across all security domains to reduce risk to Paramount Information and Information Systems as deemed appropriate
The role will work with the SVP of Information Security based in London.
Key responsibilities
• Leads the development of an information security risk and maturity management model fit for the business.
• Develops a risk appetite framework with appropriate risk metrics for ongoing reporting and monitoring.
• Ensures that Paramount has an effective risk policy suite and that such risk policy suite is embedded in the business to minimize and monitor information security risk.
• Oversees and coordinates function risk registers and provides effective challenge with respect to the adequacy and effectiveness of front-line controls.
• Assist the CISO with the preparation of reports to relevant boards and committees, highlighting any specific high-risk areas, management of actions and risk appetite metrics.
• Acts as a key risk contact/liaison point for all information security risk related information
• Participates and provides risk input into projects and acquisitions, where required.
• Provides, as required, domain experienced guidance to the global Paramount business on Information Security Risk matters.
• Represents the Information Security Team on forums which require risk related expertise.
• Builds an operational level of risk assessment capability for each global site which supports other information security field leads to better focus their efforts to minimize risk to the wider enterprise.
• Supports the SVP of Information Security with all regional (International) security activities across all domains as deemed appropriate and where necessary deputies.
• Owns the information security policy exception program and enable the flawless feeding of upcoming risks in the consolidated enterprise risk tracking and reporting processes.
• Coordinate global response effort to internal and external compliance exercises related to information security processes and technology.
• Lead the enterprise internal risk assessment effort to evaluate the information security posture of all lines of business and geographic areas within the company's business segments.
Basic Qualifications
• 10+ years' experience of frontline information security at a management level
• University degree in information technology, computer science, information assurance or a related field
• Superb communication skills – providing verbal and written communication that is effective to both direct reports and senior management as well as other stakeholders
• Additional Qualifications
• Certified Information Systems Security Professional (CISSP) or Certified Information Systems Auditor (CISA) or Certified Information Security Manager (CISM) is preferred
• Flourishes with change, showing an impressive ability to drive the IT security risk and maturity strategy forward
• Analytical mind capable of handling numerous information sources and providing data analysis reports to senior management
• Strong customer focus – able to meet the demands of internal and external customers
• Flexible and adaptable – capable of changing direction where required and showing flexibility to meet new demands!
• Forms business partnerships that help drive the IT security strategy forward
• Ability to understand product and services layers as well
• Can make decisions that are well informed and timely
• Creative thinking! – able to look at alternatives and consider new ways of thinking to problem tackle
• Multi-tasking – can lead several concurrent projects and prioritize demands
#LI-PS1
Paramount is an equal opportunity employer (EOE) including disability/vet.
Jobcode: Reference SBJ-g34e6n-44-210-237-223-42 in your application.