Job summary

The risk and assurance specialist is responsible delivering our risk management framework through identifying, capturing and measuring cyber security risks.

Key skills required for this role

CRISC - CISSP - Digital Risk & Assurance

Important

CRISC - CISSP - Digital Risk & Assurance

Job description

Digital Safety Risk and Assurance Specialist (Cyber Security)


What will I be doing?

The risk and assurance specialist is responsible delivering our risk management framework through identifying, capturing and measuring cyber security risks.

This role encompasses working with multiple diverse business areas to capture the relevant information that results in the representation of well-defined risk information to support informed decisions in the relevant forums.

This role supports the overall Digital Safety Assurance team's objectives and provides visibility of key information relating to our regulatory compliance or control maturity.

What do we need from you?

We would love to speak to candidates that have some of the following experience:

• Operate the Digital Safety risk framework to assess and record cyber risk within easyJet.
• Work with multiple functions ranging from technical IT through to business facing functions to capture the full spectrum of related risk information.
• Operate the digital safety supplier assurance process to understand and capture risks related to our supply chain.
• Identify and capture potential gaps in our regulatory compliance environment and work with the Digital Safety Compliance Manager and the Data Protection team to resolve.
• Identify and capture information relating to our Data Governance framework and work with the Digital Safety Data Management Manger to resolve.
• Work with the IT Quality and Risk function to align on the IT risk relevant areas when dealing with Digital Safety risks.
• Present findings at relevant risk forums to support the treatment of identified risks.
• Provide training and advice to colleagues in the Cyber Governance, Compliance, Assurance and Risk team, the wider LC&R team and other departments on the use of the risk methodology to encourage consistent risk measurement and reporting across the company.

Ideal Qualifications

• CRISC or similar (eg Institute of Risk Management)
• CISSP, COMPTIA Security + or other security qualification
• Information Security or industry relevant qualifications

Desirable Skills/Experience

Previously worked in a similar information security role and other complementary business roles where the management of some type of risk (e.g. product, project) formed part of the role's responsibilities.

• Candidates must have the essential skills identified.

Why join us?

We are connected, fast-paced, no-one stands on status, we're lean but not mean, and our talent is the best in the industry. We strive for diversity in all its forms, we work hard and have fun and we are continuously innovating.

What is my next step?

Please follow the link to the apply for the position directly or reach out to me for an initial conversation about the opportunity.