IT Risk Management Specialist

1 Hour ago • 3-5 Years

Job Summary

Job Description

The IT Risk Management Specialist will be responsible for ensuring the information security of Oliver Wyman Group. This involves proactive review and remediation of security issues, compliance management, and providing recommendations for enhancement. The specialist will conduct risk assessments, collaborate with development teams on application security, and partner to reduce cloud security risks. Additionally, the role includes data maintenance, reporting, and tracking remediation actions, ensuring timely resolution of identified issues. This specialist must have experience in IT risk management or cybersecurity.
Must have:
  • Experience in IT risk management or cybersecurity (3-5 years).
  • Ability to conduct risk assessments and identify vulnerabilities.
  • Strong analytical skills for evaluating risk levels.
  • Familiarity with security controls and best practices.
Good to have:
  • Detail-oriented approach to identifying security gaps.
  • Ability to work effectively with cross-functional teams.
  • Commitment to timely resolution of issues.

Job Details

Company:

Oliver Wyman

Description:

As a trusted member of the Information Technology Services team, the Tech Security Controls & Risk Analyst ensures that information security of Oliver Wyman Group within our infrastructure, applications and business processes is continuously improved. This includes proactive review and remediation of the current state of OWG tech security issues, compliance management processes, tools, and activities, and providing recommendations for enhancement where appropriate.

We will count on you to:

  • Security Implementation & Tracking:
    Support the implementation and ongoing tracking of security, compliance, and privacy controls across OWG Tech environments.
  • Project Execution:
    Execute assigned tasks on Security & Compliance Tech projects, ensuring timely delivery and adherence to security standards.
  • Risk Assessment Contributions:
    Contribute to security risk assessments by identifying gaps, evaluating potential impacts, and recommending effective mitigation actions.
  • Compliance Assurance:
    Ensure that assigned OWG Tech projects comply with security policies, procedures, and privacy requirements.
  • Application Security Collaboration:
    Work closely with development and DevOps teams to assess application security controls, including secure coding practices, vulnerability management (e.g., SAST, DAST), and remediation tracking.
  • Cloud Security Partnership:
    Partner with development and business teams to reduce cloud security risks and vulnerabilities identified by Cloud Security Posture Management (CSPM) tools.
  • Data Maintenance:
    Support the Security, Risk & Controls team in maintaining accurate data on technology assets to ensure compliance and facilitate reporting and metrics.
  • Reporting & Metrics Preparation:
    Assist in the preparation of reports, dashboards, and KPIs that reflect the organization’s security risk posture and control effectiveness.
  • Remediation Tracking:
    Follow up on remediation actions and track progress to closure for identified vulnerabilities or control gaps.
  • Additional Tasks:
    Carry out any other tasks assigned by the manager within the scope of the job to ensure effective delivery and development of services.

What you need to have: 

  • Experience:
    3-5 years of experience in IT risk management, cybersecurity, or a related field.
  • Risk Assessment Proficiency:
    Demonstrated ability to conduct risk assessments and audits to identify vulnerabilities and threats.
  • Analytical Skills:
    Strong analytical skills to evaluate data and metrics for assessing risk levels and making informed decisions.
  • Knowledge of Security Controls:
    Familiarity with security controls and best practices for mitigating risks.

What makes you stand out?

  • Detail-Oriented:
    A meticulous approach to identifying and addressing security gaps and compliance issues.
  • Collaborative Team Player:
    Ability to work effectively with cross-functional teams, fostering a culture of security awareness.
  • Proactive Problem Solver:
    Commitment to following up on remediation actions and ensuring timely resolution of identified issues.


Why join our team:

  • We help you be your best through professional development opportunities, interesting work, and supportive leaders;
  • We foster a vibrant and inclusive culture where you can work with talented colleagues to create new solutions and have an impact for colleagues, clients, and communities;
  • Our scale enables us to provide a range of career opportunities, as well as benefits and rewards to enhance your well-being;
  • A yearly budget and the opportunity to build your flexible benefits package (up to 20% of your annual salary);
  • 30+ days off (25 legal days off, 1 extra day off on your birthday, public holiday replacement days, extra buy/sell from your benefits budget);
  • Performance Bonus scheme;
  • Matching charity contributions, charity days off, and the Pay it Forward charity challenge;
  • Core benefits - Pension, Life and Medical Insurance, Meal Vouchers, Travel Insurance;

Marsh McLennan (NYSE: MMC) is a global leader in risk, strategy and people, advising clients in 130 countries across four businesses: Marsh, Guy Carpenter, Mercer and Oliver Wyman. With annual revenue of $24 billion and more than 90,000 colleagues, Marsh McLennan helps build the confidence to thrive through the power of perspective. For more information, visit marshmclennan.com, or follow on LinkedIn and X.

Marsh McLennan is committed to creating a diverse, inclusive and flexible work environment. We aim to attract and retain the best people and embrace diversity of age, background, disability, ethnic origin, family duties, gender orientation or expression, marital status, nationality, parental status, personal or social status, political affiliation, race, religion and beliefs, sex/gender, sexual orientation or expression, skin color, or any other characteristic protected by applicable law.

Marsh McLennan is committed to hybrid work, which includes the flexibility of working remotely and the collaboration, connections and professional development benefits of working together in the office. All Marsh McLennan colleagues are expected to be in their local office or working onsite with clients at least three days per week. Office-based teams will identify at least one “anchor day” per week on which their full team will be together in person.

Similar Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

Similar Skill Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

Jobs in Cluj-Napoca, Cluj County, Romania

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

Similar Category Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

About The Company

Marsh McLennan (NYSE: MMC) is a global leader in risk, strategy and people, advising clients in 130 countries across four businesses: Marsh, Guy Carpenter, Mercer and Oliver Wyman . With annual revenue of $23 billion and more than 85,000 colleagues, Marsh McLennan helps build the confidence to thrive through the power of perspective.


Follow us on X at @MarshMcLennan.

Santiago, Santiago Metropolitan Region, Chile (Hybrid)

Cluj-Napoca, Cluj County, Romania (Hybrid)

San Antonio, Texas, United States (Hybrid)

Warsaw, Masovian Voivodeship, Poland (Hybrid)

Santo Domingo, Distrito Nacional, Dominican Republic (Hybrid)

Paris, Île-de-France, France (Hybrid)

Perth, Western Australia, Australia (Hybrid)

Dubai, Dubai, United Arab Emirates (Hybrid)

Paris, Île-de-France, France (Hybrid)

View All Jobs

Get notified when new jobs are added by Marsh McLennan

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug