Risk Treatment Plan Team Lead (DI)
Description:
Requisition Number
290775BR
Your role
• Solid understanding of Information Security or Risk Management Principles and Practices
• Client facing role with a proactive “can-do” approach happy to pick up the phone rather than send an email, but at the same time, to know which communication channel to use at which time for optimal results
• Ability to see between the lines and pick up nuances and deviations from the norm thereby identifying gaps in Principles, Processes or Technology Tooling
• Proactively identify issues and take initiative to formulate solutions and bring to management attention
• Project management skills to keep oversight of the remediation portfolio and proactively identify, address or escalate roadblocks to timely completion of the activities
• Ability to define Reporting requirements in terms of Risk Metrics, Performance Metrics and other associated Management Information (MI) reporting.
• Ability to lead a team to ensure the effective running of Day to Day Operations (Run The Bank) whilst simultaneously engaging and leading change and improvement initiatives (Change the Bank)
• Able to deliver against tight and possibly changing timelines
• Good network or ability to leverage the network available whilst also building new ones
• Great analytical skills to analyses situations or circumstances to understand the Root Cause of issues either existing or on the future horizon that may materialise and prevent them from occurring.
Function Category
Business management, administration and support
Business Divisions
Group Functions
Job Type
Full Time
Your team
Are you a natural born leader, self-sufficient with strong influential and communication skills? Are you able to see what works, what doesn’t and take initiative to solve any issues that you may face? Do you like to manage operational processes to ensure they run smoothly, on-time and can report this to senior management?
If so, we would like to hear from you for the position of Team Lead for the OCRA Risk Treatment Plan (RTP) Function, part of the Chief Information Security Office (CISO) Risk Management & Group Resilience team.
OCRA is a Cyber and Information Security risk assessment of our Third Parties which may flag non-compliance with UBS Information Security requirement. In such cases a remediation plan (or RTP) must be submitted by the business to ensure any findings are properly and timely remediated.
You will be responsible for taking ownership of the process to ensure timely Tracking, Closure and Reporting of Risk Treatment Plans and their statuses in accordance to defined Service Level Agreements (SLAs). You will be responsible not only for ensuring the successful delivery of the day-to-day operations, but also, actively engaged in improving the function and engaging with your colleagues in the OCRA Assessment team as well as Business Stakeholders and senior management to manage and deliver against a variety of expectations. You will be leading a team hence your leadership and appreciation of diversity of cultures will be critical to get the best out of them to collectively deliver on the function’s goals and objectives.
Your expertise
You are:
• a strong communicator, with good spoken and written English;
• good team player with analytical ability to provide practical solutions for minimizing risk;
• well organized, detail oriented, with the ability to collect data, coordinate tasks and lead projects;
• comfortable leading a team including training, mentoring & guiding, but not hesitant to bring in the expertise of colleagues to help the team;
• having risk identification and risk articulation skills;
• able to build and maintain strong relations with stakeholders;
• able to show initiative, make logical decisions and stay goal oriented at unclear times;
• available to work in hybrid model at least 3 days from the office.
ADDITIONAL ASSETS:
• Experience with industry recognized standards for IT security controls and best practices like NIST, ISO27001, PCI, SOC 2 etc.;
• One of the following professional qualifications obtained: CISSP, CISA, CISM.
About us
UBS is the world’s largest and the only truly global wealth manager. We operate through four business divisions: Global Wealth Management, Personal & Corporate Banking, Asset Management and the Investment Bank. Our global reach and the breadth of our expertise set us apart from our competitors..
We have a presence in all major financial centers in more than 50 countries.
Join us
At UBS, we embrace flexible ways of working when the role permits. We offer different working arrangements like part-time, job-sharing and hybrid (office and home) working. Our purpose-led culture and global infrastructure help us connect, collaborate, and work together in agile ways to meet all our business needs.
From gaining new experiences in different roles to acquiring fresh knowledge and skills, we know that great work is never done alone. We know that it's our people, with their unique backgrounds, skills, experience levels and interests, who drive our ongoing success. Together we’re more than ourselves. Ready to be part of #teamUBS and make an impact?
Contact Details
UBS Business Solutions SA
UBS Recruiting
Disclaimer / Policy Statements
UBS is an Equal Opportunity Employer. We respect and seek to empower each individual and support the diverse cultures, perspectives, skills and experiences within our workforce.