Experienced IT Risk and Compliance Manager needed to develop and execute comprehensive IT and Security Risk Management measures.
***Only applications submitted via the link at APPLY HERE
immediately below will be considered.***
Overview:
KPMG Jamaica has a delivery center named "Jamaica Extended Support Services (JESS)" operating from Kingston, which is contracted to provide support to its member firm KPMG United States ("the Client"). This role is part of the 1st Line of Defense (LoD) risk program within the Enterprise Security Services group, providing operational support to the IT, Security, & Data Risk programs, helping to facilitate decisions across disparate risks for KPMG’s US Technology and security environment.
JOB SUMMARY:
Experienced IT Risk and Compliance Manager needed to develop and execute comprehensive IT and Security Risk Management measures. This role requires in-depth knowledge of risk, compliance, and information security, with the ability to enable informed, risk-based decisions across various categories of risk. The ideal candidate will be skilled in fostering trust-based relationships, evaluating risk-reduction activities, and communicating effectively with leadership.
JOB RESPONSIBILITIES
Service Delivery
•Apply a thorough knowledge of risk, compliance, and information security to develop and execute a multi-disciplined IT and Security Risk Management implementation plan, with the ability to enable leadership to make informed, risk-based decisions across disparate categories of risk, e.g., stability, operations, cyber, information handling, physical security, resiliency.
•Foster trust-based relationships with peers and leaders. Evaluate risk reduction and mitigation activities to continually drive towards risk reduction methodologies.
•Analyze the impacts of critical risks, define criteria to make risk tradeoffs, and make recommendations to leadership to minimize overall risk posture.
•Defend KPMG's security capabilities to external entities as needed.
•Evaluate the changing operating landscape and determine its impacts on organizational risks, obligations, and external expectations.
EDUCATION/EXPERIENCE
•Bachelor's Degree in Computer Science, Business Management or a related field from an accredited educational institution
•Minimum of five (5) years of relevant work experience
•Experience in a professional services organization with related experience in IT risk and controls preferred
•Demonstrated understanding of disparate compliance frameworks and risk management principles, as well as experience making decisions to optimize overall operational risk.
•Ability to analyze and synthesize technical data and convey it to non-technical audiences.
•Understanding of key business objectives and how to balance business objectives against IT risks.
•Strong verbal/written communication, problem solving, analytical and independent judgment skills to support an environment driven by customer service and teamwork. Ability to positively influence, mentor and be a credible source of knowledge to less experienced team members.
•Primary familiarity with the Five Lines of Defense model for managing risk.
•Proficient in IT risk assessments, IT controls testing, evaluation of control evidence, identification of control deficiencies and facilitating the collaboration of remediation processes.
•Prior experience of using ServiceNow & the Integrated Risk Management modules is a plus
•Knowledge in developing & using tools/solutions like PowerBI, Power Platform, Power Automate, MS Form, Access is a plus.
•CRISC, CISM, CISA, or CISSP or equivalent level of experience preferred
SPECIAL CONDITIONS
•Expected to work in a fast-paced team environment.
•Will be working primarily in a paperless environment and expected to be using information systems for the entire workday to access data or perform activities.
•May be required to work extended hours periodically or on public holidays.
Is this job for you?
If YES, please view the Job Description and APPLY on our job webpage immediately below:
Learn more about JESS here: K-JESS Homepage
© 2024 KPMG, a Jamaican partnership and a member firm of the KPMG global organization of independent member firms affiliated with KPMG International Limited, a private English company limited by guarantee. All rights reserved.