Principal IT Consultant Cybersecurity Risk Management

Job Summary

The Senior IT Consultant Cyber Risk Management is responsible for the implementation and further development of the IT Risk Management System. Additionally, IT risks are identified and assessed. The role significantly contributes to building a sustainable risk culture within ContiTechs IT department.

This role maintains and oversees the cyber risk landscape of ContiTech, creates transparency and ensures decent tracking of risk mitigation measures throughout the risk management lifecycle.

The following tasks are part of this role:

- Work with various data sources to identify cyber risks within the organization

- Market research, sourcing and management of 3rd party provider for cyber risk management

- Conduct cyber risk assessments to evaluate the impact and likelihood of identified risks.

- Prioritize risks based on their potential impact on the organization.

- Designs, implements and manages an IT Service framework for cyber risk management

- Design and implement Cyber risk lifecycle management (identification, control design, mitigation tracking)

- Active tracking of cyber risks, including evaluation of mitigation effectiveness

- Continuous review of security controls related to risk activities in the business and emerging within the cybersecurity industry, suggest new controls by identifying gaps.

- Support in the design phase of internal information security rules

- Risk Dialogue with senior management to establish business alignment of risk appetite to be accepted.

- Scope Cyber Risk insurance based on posture and risk acceptance.

- Risk Reporting