Sr. Manager, Cybersecurity Risk Management

Job title: Sr. Manager, Cybersecurity Risk Management in USA at MatchPoint Solutions Company: MatchPoint Solutions Job description: MatchPoint Solutions is a fast-growing, young, energetic global IT-Engineering services company with clients across the US. We provide technology solutions to various clients like Uber, Robinhood, Netflix, Airbnb, Google, Sephora, and more! More recently, we have expanded to working internationally in Canada, China, Ireland, UK, Brazil, and India. Through our culture of innovation, we inspire, build, and deliver business results, from idea to outcome. We keep our clients on the cutting edge of the latest technologies and provide solutions by using industry-specific best practices and expertise.We are excited to be continuously expanding our team. If you are interested in this position, please send over your updated resume. We look forward to hearing from you!Job Title: Sr. Manager, Cybersecurity Risk ManagementLocation: Remote Duration: 12 MonthsRate: $50-55/hr on W2Position Overview:As Sr. Manager, Cybersecurity Risk Management, you will be a part of the overall information security risk management program and strategy, providing skilled leadership to build high-performing team(s), and engaging IT and Business leaders across a wide spectrum of projects. Your collaborative approach and exceptional communication skills will play a significant role in your success. As part of this new Healthcare spinoff, you will have the opportunity to create an industry best-practice program that serves as a strategic enabler for the business.Responsibilities:

• Drive cybersecurity risk management taxonomy and framework/methodology, including implementing an Enterprise Control Framework (ECF) utilizing NIST/HITRUST controls aligned with Enterprise Risk Management (ERM) objectives.
• Lead a team that performs risk assessments, and identify, mitigate, and track to closure risks across the enterprise, providing actionable data and recommended solutions to organization leadership.
• Define standardized risk assessment and exception handling processes, including criteria for managing them.
• Develop and execute a gold-standard information security governance strategy and program.
• Drive a culture of transparency, integrity, and accountability.
• Support cyber- and business resilience, ensuring continuity of operations.
• Integrate security checkpoints into software and infrastructure development lifecycles to build security by design into every project.
• Establish a Findings & Remediation program to identify trends, root causes, and provide actionable reporting.
• Scale programs to meet the current regulatory environment and risk appetite of the organization.
• Maintain robust data security governance (creation, classification, retention, retrieval, disposal).
• Monitor regulatory changes and industry standards.
• Coordinate information transfer in compliance with organizational policies.
• Ensure execution of destruction orders, where necessary.
• Implement protocols to meet statutory, regulatory, ethical, and privacy requirements.
• Support data governance efforts including data classification, retention, disposal, sharing, records management, archiving, and data privacy.

Qualifications:

• Extensive background in Governance, Risk & Compliance (GRC), with a focus on Risk Management in Healthcare or other highly regulated industries.
• Experience building and optimizing best-practice Enterprise Risk Management, Third Party Risk Management, Risk Quantification, Data Governance, and Artificial Intelligence (AI) integration.

Nice-to-Have Skills:

• CISSP strongly preferred or equivalent experience across a broad spectrum of Information Security disciplines.
• 7+ years of experience leading global IT, digital, and/or cybersecurity programs.
• 3+ years leading Risk Management programs.
• Proven track record developing and leading risk management programs, policies, procedures, and best practices.
• Experience with Risk, Security and/or Audit frameworks such as:

• SOX, HiTrust, SOC2, PCI, ISO 27001/2, NIST CSF / 800-53, FedRAMP, StateRAMP, IEC 62443
• Master's Degree in Computer Science, Information Security, or a related field.
• Experience handling external audits and assessments, and communicating with regulators and external auditors.
• Deep understanding of legal and regulatory requirements including GDPR, CCPA, and legal hold obligations.
• Supporting certifications such as CRISC, CISM.
• Experience leading Business Continuity Planning and/or Cyber Resilience teams.

MatchPoint Solutions provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. Expected salary: $50 - 55 per hour Location: USA Apply for the job now! Apply for this job