The Information Security Risk Metrics Lead will drive efforts to build a comprehensive and sustainable Information Security risk metrics and reporting program. In this role you will lead, identify, and implement key metrics, reports and dashboards and provide insights, identify gaps and trends in our security controls and emerging risks. Our Risk Metrics Lead possess a deep understanding of data-driven reporting practices. They articulate insights from complex datasets through storytelling by using Business Intelligence tools.
Responsibilities:
Partner with Stakeholders to define, manage, and implement a comprehensive security risk metrics program and alignment with Enterprise Risk Management metrics.
Identify and maintain key performance, risk, and control indicators and risk metrics library that will drive actions and decisions to address areas of risk and improve operational performance.
Implement solutions to automate and visualize risk metrics reporting through dashboards for key stakeholders using Bl tools such as Tableau or PowerBI
Apply advanced analytical models to gain additional insights from key risk metrics for data trends and benchmarking.
Drive adoption of key risk metrics and reporting across Information Security to inform senior leaders, key stakeholders, and risk management.
Create and present during regularly scheduled stand ups executive level presentations and dashboards that facilitate awareness and highlight risk metric trends, gaps, and threshold exceedance.
Partner with Information Security Leaders and stakeholders across various organizations to refine and maintain relevant risk metrics and reporting.
Compensation:
$55-65/hour
Exact compensation may vary based on several factors, including skills, experience, and education.
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
HR@insightglobal.com.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
7+ years of information security, risk management, supplier governance, and third party security risk experience
3+ years of demonstrated experience in developing cyber security metrics. This includes metrics identification, data collection, and visualization for reporting.
3+ years of experience creating visualizations for executive level presentations using PowerBl.
3+ enterprise level risk transformation expertise with demonstrable experience in influencing a risk aware culture.
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.