Key Responsibilities:

Manage service requests through the ticketing system and other touchpoints.

Develop and maintain service-related technical documentation.

Coordinate and review deliverables issued by managed service providers.

Report on service progress on a weekly basis.

Develop and maintain cybersecurity risk assessment methodologies, frameworks, tools, and templates.

Assist in the development of cybersecurity policies, procedures, and standards.

Run IT security risk assessments and propose risk mitigation measures.

Prepare IT security plans for identified risks.

Manage cybersecurity risk registers and track risk mitigation actions.

Coordinate and review cybersecurity risk assessments with stakeholders.

Provide regular reporting on risk assessment status and recommendations.

Interact with IT teams, business stakeholders, and external partners on risk management.

Required Education:

Bachelor’s degree or higher (mandatory for Senior level).

Skills, Knowledge & Expertise

Strong knowledge of risk assessment methodologies and frameworks (e.g., NIST, ISO 27001).

Expertise in IT security technologies and solutions (firewalls, IDS/IPS, intrusion detection systems).

Experience with EC ITSRM methodology and EC GOVSEC tool.

Strong experience with GRC tools.

Proficiency in IT standards implementation and vulnerability assessment.

Ability to analyze complex cybersecurity risks and provide recommendations.

Strong communication and presentation skills for both technical and non-technical audiences.

Experience working in large international/multicultural organizations.

Solid understanding of modern service management and delivery.

Ability to deliver under tight deadlines with discretion and integrity.

Non-Technical Skills:

Excellent team player with ability to integrate into multicultural environments.

Strong self-starter with rapid adaptability.

Ability to build trusted relationships with counterparts and stakeholders.

Strong organizational and problem-solving skills.