IT Risk Analyst and Reporting Manager

Posted 16 Days Ago
Be an Early Applicant
Porto
Mid level
Information Technology • Consulting
The Role
The IT Risk Analyst and Reporting Manager is responsible for maintaining cloud cybersecurity risk cartography, managing data quality in cloud risk references, building risk reporting templates, and conducting risk assessments based on ISO 27005 standards. The role also involves contributions to risk governance and third-party onboarding studies in the cloud environment.
Summary Generated by Built In

Job Description

Main Responsibilities:


 Maintain cloud cybersecurity risk cartography :

 

  • Follow-up data quality and comprehensiveness in cloud assets referential (Cloud Register) and cloud risks referential (cloud risks in the Risk Register) in ServiceNow tooling
  • Build, improve and provide risk reportings templates using ServiceNow or an external tool (such as Tableau)
  • Provide periodic cloud risk reportings
  • Active role in the preparation of quarterly cloud risk committees

Risk assessments:

 

  • Understand risk assessments already produced (based on ISO 27005/EBIOS Risk Manager) and impacts of remediations plans progresses on risks.
  • Skills to follow up/challenge remediation plans implemented by service providers or entities.
  • Contribute actively in risk assessments of cloud platforms and cloud applications.
  • Ideally, skills to lead risk assessments following on ISO 27005/EBIOS Risk Manager methods.

Other activities:

 

  • Contribute in (cloud) third parties onboarding studies (risk assessment, review of cases studies, …)
  • Contribute to governance/organization topics on third party cases.
  • Contribute to governance/organization topics related to the team.
  • Contribute to follow-up of third-party governance in run


Technical skills:


  • Certification ISO 27001
  • Certification ISO 27005 Risk Manager and/or EBIOS Risk Manager
  • Knowledge of a risk management tool such as ServiceNow or reporting tool such as Tableau
  • Knowledge on Cloud specific Cyber Security (such as SOC2, CSA, ISO27017)
  • Knowledge on Cyber Security control frameworks (such as NIST, CIS)
  • Knowledge in project management
  • English (Mandatory)
  • French (nice to have)

Top Skills

Servicenow
Tableau
The Company
HQ: Versailles
616 Employees
On-site Workplace
Year Founded: 2006

What We Do

The Alter Solutions Group is an IT Consultancy group, promoter of Digital Transformation, created in 2006, in Paris. In 2022, Alter Solutions joined the act digital group, constituting a global community of talent in Technology, with presence in twelve countries: Germany, Belgium, Brazil, United States of America, Canada, Morocco, Spain, France, Luxembourg, Poland, Portugal and Serbia. In 2023, we were recertified as a Great Place to Work®. Know more about Life at Alter: https://www.linkedin.com/company/alter-solutions-group/life/altersolutionsgroup

Similar Jobs

Generix Logo Generix

ITSM Analyst

Artificial Intelligence • Cloud • Software
Leça do Balio, Matosinhos, Porto, PRT
1092 Employees

FARFETCH Logo FARFETCH

Payments Optimization Analyst

eCommerce • Fashion • Retail
Hybrid
Porto, PRT
5294 Employees

FARFETCH Logo FARFETCH

Fraud Data Analyst

eCommerce • Fashion • Retail
Hybrid
Porto, PRT
5294 Employees
Hybrid
Porto, PRT
197 Employees

Similar Companies Hiring

Silverfort Thumbnail
Security • Sales • Information Technology • Cybersecurity • Automation
GB
357 Employees
Jobba Trade Technologies, Inc. Thumbnail
Software • Professional Services • Productivity • Information Technology • Cloud
Chicago, IL
45 Employees
InCommodities Thumbnail
Renewable Energy • Machine Learning • Information Technology • Energy • Automation • Analytics
Austin, TX
234 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account