Senior Risk Assessor (TPIS)

Your role

Are you a highly experienced in identifying, assessing, and managing risks? Do you have a knack for cloud technology? Do you have an analytic mind? Do you enjoy working within collaborative team to improve the risk posture of the organization and want to support UBS against Data Exfiltration and Data Misplacement Threats.

We’re looking for someone who can/ has:

 complete understanding of cloud deployment and service model with deep understanding of the responsibility matrix and its relationship with cloud deployment and service model
 define cloud centric controls specifically for Third party IT services and independently perform IT Risk Assessments
 guide a team of control and risk assessors in managing Third Party IT Services control and governance operations
 coordinate and manage all the aspects of operational management related to Third Party IT services governance and control process including but not limited to the achievement of KPAs for the process, process improvement etc.
 interact with senior stakeholders and communicate security issues and control requirements in non-technical language
 handle queries / clarifications from requestor / application teams on Third Party IT Service specific controls
 demonstrate strong investigative and analytical skills
 participate in initiatives to improve Risk Assessment processes, and related tools/templates and provide feedback

Your team

You'll be working in a global team that is responsible for governing controls for third party provided IT services based out of Pune. The team is spread at global locations and comprises of cloud security experts, cyber and technology risk specialists involved in design, implementation, monitoring and reporting of cloud controls.

Your expertise

You have:
 proven experience in a role like this
 excellent analysis skills
 prior experience working with multiple teams (local, virtual/global) and ability to co-ordinate and manage tasks
 exceptional communication and interpersonal skills
 prior working experience in Banking and/or Finance industries
 the ability to take responsibility and stay focused on objectives with a can-do-attitude
 experience in data management – corelating data from different data sources to join the dots and provide insights into patterns

You have/are:


 bachelor’s/master’s degree or equivalent in Information Technology / Cyber Security / Computer Science or related disciplines
 ideally 6+ years of experience in Risk Management/ Control implementation and remediation
 preferably have professional qualifications/certifications (e.g., CRISC, CISA, CCSP, CISM, CCSA)
 a strong communicator, comfortable interacting with colleagues at all levels
 able to effectively guide IT Risk Assessment & data management teams and manage process independently
 able to apply technical understanding to practical problems
 a result-oriented worker, with the ability to set priorities
 innovative and capable of using data and digital solutions to transform
 showing drive and are accountable