IT Risk Manager – Data

Gravity IT Resources

Apply Now

Title: IT Risk Manager
Location: Remote

IT Risk Manager (10+ years’ experience) who can work with multiple application development teams as they deploy code to production using their automated CI/CD pipelines (to make sure they are following procedures, controls are in place, and raise issues), create RCSAs (alongside the app dev teams). Initial focus is understanding / ramping on the data gov policies / procedures and executing on the risk assessments and controls that are in place for data encryption and data loss prevention. This individual will report to CDO, CRO and CTO on gaps, exceptions, etc.

The role can be fully remote; however, there may be some travel to NYC as needed.

Required Skills:

  • Data Framework and Data Governance Audit experience
    • Encryption and Data Loss Prevention are the highest priority
    • Policies and Procedures in the Data Framework
    • RCSAs
    • Inform Chief Data Officer of Gaps, Gap Analysis, review and implement policies and procedures in Data Framework
  • DevOps Methodology experience  – How to run project from End-to-end in DevOps
  • Infrastructure Change Management/Infrastructure as a code
  • Security Incident Management (CISO Office), ISO, NIST Framework, SecOps
  • CyberSec experience from a risk perspective
    • Done a risk assessment from a tech landscape in cybersec

Duties / Responsibilities: 

  • Data risk assessment project in Q1 ‘23
    • Scope for assessment
    • Perform assessment
    • Transactional data, client data, PII data, etc
  • System development lifecycle assessment Q2
    • Execute data governance
  • Reporting to IT risk committees
  • Responding to incidents (second line risk)
  • Responsible for IT risk across organization

Apply Now