Cyber security governance, risk and compliance adviser
Description
- Advising organisations to better understand the unique cyber risks that they face compliance approaches, strategies, frameworks and reporting.​ This may include expertise and advice on specialisations required by the organisational context such as critical infrastructure, operational technology, etc.
- Supports organisation decision making by identifying, calculating and reporting on risk events that could impact clients along with metrics.
- Managing and understanding risks related to cyber security.​
- Monitors and analyses cyber information gathered from a variety of sources including legislative and regulatory. ​
- Communicates to stakeholder groups on cyber risk management policies and procedures and ensures a structured approach to oversight with operational management and independent assurance.
- Communicating and translating technical cyber risks in a way that is meaningful to business stakeholder through various mechanisms such as briefs, reports, dashboards and presentations.
Key SFIA skills
- Audit AUDT
- Continuity COPL
- Data analytics DAAN
- Governance GOVN
- Information and data compliance PEDP
- Information assurance INAS
- Information security SCTY
- Investment appraisal INVA
- Risk management BURM
- Stakeholder relationship management RLMT
Example job titles
- Cyber Risk Assurance Tester​
- Cyber Security Risk Analyst​
- Digital Graduate (Strategy & Policy)
- Information Security Officer
- Manager – Governance, Risk and Compliance
- Manager, Cyber Resilience and Assurance
- Principal Adviser – Information Security
- Principal Adviser, Information Security
- Risk and Technology Officer​
- Risk Management Consultant​
- Risk Manager
- Senior Policy Adviser
For more information, see OSCA: Occupation: 271131 – Cyber Governance Risk and Compliance Specialist
Also see related Cyber security governance, risk and compliance career pathway.