HireDirect is looking for a Cyber Security Risk Hunter to:
serve as a subject matter expert in a subset of Cyber and Information Security (CIS) domains and capabilities, providing active risk oversight for these areas to proactively identify emerging risks
be a power user of the firm’s automated data driven cyber risk identification solution, the Risk Identification Engine, which is currently under development.
help to drive continuous improvement of the Risk Identification Engine, identifying additional data sources to drive improved risk identification and firm-wide visibility
develop a strong network across the firm’s CIS SMEs to ensure rapid investigations and escalations of potential CIS risks and perform reviews of the bank’s CIS capabilities, in support of conclusions on the firm’s residual risk
proactively and constructively challenge the status quo identifying operational risks, proposing realistic remediation or improvement solutions while understanding potential tradeoffs and minimizing risks
build and develop long-term relationships with security professionals and other stakeholders across the bank and collaborate across multi-disciplinary teams from different geographies and business divisions on change initiatives
streamline and standardize process for CIS risk identification and reporting by facilitating reusability of information and knowledge accumulated over time in the team
You’ll be joining as a member in a newly formed risk hunting team within the CIS Risk Identification and Measurement service. The team is part of our Cyber Information Security Service and supports all divisions and functions. As a CIS Risk Hunter, you’ll help the firm to proactively identify CIS risks through data driven analysis, enabling transparent risk-based decision making.
Diversity helps us grow, together. That’s why we are committed to fostering and advancing diversity, equity, and inclusion. It strengthens our business and brings value to our clients.
knowledge in multiple areas like network security, database security, cloud security, application security, infrastructure and system hardening, technical security controls implementation and ability to judge effectives of security control implementation against threats and risk scenarios
technical expertise in one or more areas among Data Protection, Identity and Access Management, Cyber Security and strong technical knowledge and passion for enabling technologies to operate securely (e.g. Cloud)
knowledge of both Information and Cyber Security risk management and control frameworks (e.g. ISO27001, NIST CSF) and operational threat management frameworks (e.g. MITRE ATT&CK)
exposure to technology and cyber and information security regulatory requirements, with experience balancing compliance with pragmatic risk management approach
experience in operational security role with the desire to shift toward a risk management role, while maintaining technical skills and knowledge of security tools
industry recognized certifications like CISSP, CCSP, CISM, CISA, OSCP, SANS etc. are a bonus
understanding of the financial industry and especially of control and business enabling functions (e.g. Technology Risk, Operations, etc.) is preferred
UBS is the world’s largest and only truly global wealth manager. We operate through four business divisions: Global Wealth Management, Personal & Corporate Banking, Asset Management and the Investment Bank. Our global reach and the breadth of our expertise set us apart from our competitors.
With more than 70,000 employees, we have a presence in all major financial centers in more than 50 countries. Do you want to be one of us?
How we hire:
This role requires an assessment on application. Learn more about how we hire: www.ubs.com/global/en/careers/experienced-professionals.html
At UBS, we embrace flexible ways of working when the role permits. We offer different working arrangements like part-time, job-sharing and hybrid (office and home) working. Our purpose-led culture and global infrastructure help us connect, collaborate, and work together in agile ways to meet all our business needs.
From gaining new experiences in different roles to acquiring fresh knowledge and skills, we know that great work is never done alone. We know that it’s our people, with their unique backgrounds, skills, experience levels and interests, who drive our ongoing success. Together we’re more than ourselves. Ready to be part of #teams and make an impact?
Disclaimer / Policy Statements
UBS is an Equal Opportunity Employer. We respect and seek to empower each individual and support the diverse cultures, perspectives, skills and experiences within our workforce.
Apply before Oct 20, 2021 at firstname.lastname@example.org