Enterprise Risk Manager (PCI-DSS/ISAE)

Description

Enterprise Risk Manager

PCI-DSS/ISAE

VISA EUROPE - 4 MONTH CONTRACT - LONDON, PADDINGTON

Job Purpose:

This role is responsible for supporting the provision of business partnering services to all areas of the company to enable the integration of enterprise risk and information security policy and practices. The role is responsible for supporting the delivery of the enterprise risk and information security framework services, and where appropriate, supports the Business Continuity Programme in respect to either business operations or development programmes.

This role works in collaboration with all other Risk Assurance teams.

Key Accountabilities:

• Responsible for contributing to the policy and strategy of the Enterprise Risk and Information Security Management framework which is aimed at ensuring that Visa Europe's employees and agent's behaviour is aligned.

• Assists Visa Europe business partners to appropriately recognise and manage risk exposure through the risk identification and assessments services with operational personnel across the organisation in the form of risk profiling services.

  • Delivers independent and objective enterprise risk and control profiles in respect of the Risk Appetite (RATC) which includes the Corporate Key Control exceptions

  • Delivers on-demand control, risk and information security reviews, support and advisory services which include risk and control assessment services to ensure that Visa Europe data is held securely as and when commissioned by the Chief Risk Officer.

  • Conducts information security supplier due diligence assessments as well as remediation oversight within an operational position.

• The role is also responsible for the provision of training, facilitation, advice and guidance on all risk and control matters.

• Provides operational support and coordination for the ISAE and PCI DSS programme in collaboration with the audit & assurance team within an operational position.

• Supports the Corporate Key Control Gap Assessment exception and waiver programme within an operational position.

• Contributes to thought leadership on the requirements of information security and enterprise risks, controls and standards.

• Monitors changes to industry and regularity requirements and ensures that these are accounted for within the Visa Europe Risk framework, policy and strategy.

• Liaises across Visa Europe's to ensure risk requirements and implications are understood consistently across all divisions and taken into account when implementing any change to current systems and processes, challenging and pushing back as required.

• Maintains a European footprint and alignment to market nuances.

  
  

Essential Criteria:

• Educated to degree level in a relevant discipline or equivalent (Business or IT focus is desirable)

• Sound communications and interpersonal skills and the ability to liaise with and influence stakeholders across the organisation

• Good knowledge and understanding of risk management, corporate governance as well as information security and technology issues