IT Risk Manager

ACS Consultancy Services, Inc • Albany, NY, US • 5m ago

Job Title: IT Risk Manager

Location: Albany, NY (Hybrid)

We are currently seeking candidates who meet the following qualifications

Responsibilities

Develop and implement IT risk management frameworks and strategies.
Conduct risk assessments and identify potential IT risks, vulnerabilities, and threats.
Collaborate with IT and business units to develop risk mitigation plans and ensure effective risk controls.
Monitor and report on the effectiveness of risk management initiatives.
Ensure compliance with regulatory requirements and industry standards related to IT risk and security.
Provide guidance and training to staff on IT risk management practices and policies.
Conduct regular reviews and audits of IT systems and processes to identify areas for improvement.
Stay up-to-date with the latest developments in IT risk management, cybersecurity, and regulatory changes.
Coordinate incident response efforts and lead investigations into security breaches or IT-related incidents.
Prepare and present risk assessment reports to senior management and stakeholders.

Qualifications

Proven experience as an IT Risk Manager or in a similar role within IT risk management.
Strong knowledge of IT risk management frameworks, methodologies, and best practices.
Experience with cybersecurity principles and practices.
Familiarity with regulatory requirements and industry standards such as ISO 27001, NIST, GDPR, etc.
Excellent analytical, problem-solving, and decision-making skills.
Strong communication and interpersonal skills, with the ability to work collaboratively across departments.
Certification in IT risk management or related fields (e.g., CRISC, CISM, CISSP) is preferred.
Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related field is preferred.

Preferred Qualifications

Experience with risk management tools and software.
Knowledge of cloud computing security and risk management.
Understanding of business continuity and disaster recovery planning.
Experience in developing and delivering training programs related to IT risk and security.
Advanced degree in a related field.

If you meet these qualifications, please submit your application via link provided in Linkedin.

Kindly do not call the general line to submit your application.