Senior Digital Safety Risk Assurance Specialist

Ref No. BHN541656
Location Luton, England
Job type Permanent
Job Status Open

Introduction

The Senior Digital Safety Risk and Assurance Specialist is responsible for ensuring digital safety risks are assessed and communicated to the relevant stakeholders.

Important

Senior Digital Safety Risk Assurance Specialist

The Job


Senior Digital Safety Risk Assurance Specialist
JOB PURPOSE
The Senior Digital Safety Risk and Assurance Specialist is responsible for ensuring digital safety risks are assessed and communicated to the relevant stakeholders. This ensures that easyJet is managing the Digital Safety risks within appetite. The DS Risk and Assurance Specialist acts as a subject matter expert for Digital Safety risk within easyJet and will mentor and guide more junior members of the Digital Safety Risk Assurance team. This role will also act as a delegate for the Senior Digital Safety Risk Manager where required.
> Assess risks using easyJet's formal Digital Safety risk framework methodology
> Present and explain assessment of Digital Safety risk and the formal recommendations for treatment to key stakeholders including Digital Safety Business Partners, Business Risk Owners, IT, Architecture and easyJet's governance bodies
> Perform assurance activities to assure control effectiveness and risk reduction
> Ensure risks are identified and reported in line with easyJet's external compliance requirements
> Maintain a central, accurate Digital Safety Risk Register and Exceptions Log
> Assist the Senior Digital Safety Risk Manager in maintaining up to date bow-tie models of key Digital Safety risks
> Identify when other teams need to be engaged, particularly Enterprise Architecture, third party assurance, DPO colleagues, commercial legal and assist the Digital Safety Business Partners with engagement to enable successful delivery.
> Recommend changes to Digital Safety policies and standards as an output of risk assurance activities
> Work with the Senior Digital Safety Risk Manager, Digital Safety Business Partners and other stakeholders as necessary to improve processes and support continual improvement of the Digital Safety Risk and Assurance Frameworks.
> Be a subject matter expert within the wider Digital Safety team and the business. Bring advanced skills to other Digital Safety areas as needed.
JOB ACCOUNTABILITIES
> Identify digital safety -related risks, ensure that the business understands these risks and make formal, graded recommendations to manage risk.
> Identify appropriate internal and external standards, explain how these standards affect the business and ensure that non-adherence to standards is managed via formal processes.
> Identify legal-related risks in outline and engage appropriate colleagues in the legal department (DPO, commercial lawyers).
> Develop innovative business or technical solutions to manage risk.
COMPETENCIES
> Ownership and Delivery. Has a clear focus to deliver results, working to targets, reviewing progress and adapting their plans accordingly, motivating themselves/the team to achieve.

> Customer and Shareholder Value. Understands who their customers are and seeks to exceed their needs, focussing on the importance of safety for both customers and employees.
> Business Performance. Understands business and external environment, is cost conscious and understands the longer-term perspective and implications of decisions.
> Building Relationships. Expresses ideas confidently and clearly, builds positive and constructive relationships with others, gets to know colleagues within their own team and supports them to ensure team goals are achieved.
KEY SKILLS REQUIRED
> CRISC, CISSP, CISM or similar
> Previous work as a risk specialist across multiple organisations or lines of business
> Assistance in developing and improving risk frameworks and methodologies
> At least 6 years' experience in cyber security in a role that has required strong social and technical skills working with multiple programs and partners at once.
> Previous team leadership experience.
> Experience of working within regulated environments.
> High standards of personal integrity (demonstrated by an unblemished career history), and willing to undergo vetting and/or personality assessments to verify this if necessary.
> A background in technical IT roles or Cyber/Information Security related roles such as IT architecture or Cyber regulatory, development or operations, with a clear and abiding interest in information security.

 

Related jobs

 

Related articles

Back to top