1 of 1 Remote Contract ISO 31000 Jobs

assess application-related risks Facilitate the risk evaluation process , including formatting, data collection, and impact assessments Perform control assessments to determine control effectiveness Use defined risk methodologies (eg FAIR, ISO 31000) to rate risks and update internal risk registers Propose, document, and follow through on remediation plans and action items Monitor risk remediation efforts and ensure timely updates … experience in Risk Management and/or Information Security Proven experience conducting application-level security risk assessments Strong understanding of: Secure software and network architecture Risk management frameworks (eg ISO 3100X, NIST 800-30/37/39, ENISA, EBIOS, OCTAVE, FAIR) OWASP Top 10, encryption, data classification, and secure data flows Ability to read and interpret HLDs/… environments with cross-functional collaboration Strong attention to detail with advanced analytical and reporting capabilities Preferred Qualifications Industry certifications (eg CISSP, CISM, CRISC ) Experience working with Mitre ATT&CK, ISO 27001 , or similar InfoSec frameworks Exposure to enterprise-grade risk management tools and reporting platforms Networking People (UK) is acting as an Employment Business in relation to this vacancy. More ❯