Background:
The role of an IT Risk Manager encompasses a broad set of responsibilities, with primary responsibilities to maintain the IT Risk Framework, develop and administer risk policies/procedures for the organization and performing risk and control assessments. This is a role within Jefferies Technology in Tokyo, while being an integral part of the Global Technology team.
Responsibilities:
Perform risk and control assessments, which comprise analyzing, identifying, describing, and quantifying risks that impact all business risks
Monitoring risk trends, areas of concern and develop mitigation plans with Jefferies’ IT stakeholders. Challenge risk mitigation decisions as appropriate
Maintain engagement with senior IT risk managers, and run/support relevant risk forums
Develop and maintain good communication channels with other risk partners, such as Enterprise Risk Management, Operational Risk Management, etc.
Run annual assessment of technology vendors
Raise risk awareness, provide education and training to employees inside the organization
Required Qualifications
The following qualifications, skills, and experience are required for this role:
At least four years of relevant work experience in fields of IT Risk Management, IT Audit or Operational Risk with Technology/Cyber focus.
Experience in the financial service industry.
Familiarity with Technology and Cyber risk assessment and prevention
Familiarity with technology cyber and IT risk assessments
Ability to analyze large sets of data and communicate complex information
Ability to distill risk information for non-technical profiles throughout the company
Ability to brief, train and direct staff in the application of new processes and controls
Ability to formulate constructive feedback to a wide array of different stakeholders
Language requirement: Fluent in Japanese and English