Cyber Risk Controller

Are you ready to work in the second line-of-defense for an international financial services institution? Can you build relationships and influence outcomes?

We are looking for a Cyber Risk Controller like you to:

• challenge our 1st line-of-defense’s risk-taking activities and risk assessments, working with CDIO Group Technology teams to review risks associated with cyber security and provide guidance on controls
• collaborate with our Cyber Assurance (Red) Team to maximize the impact of technical findings identified towards our residual risk posture around cyber security; take ownership of complex technical output and manage key stakeholders to ensure sustainable remediation will be orchestrated
• be a cyber risk taxonomy specialist to support and challenge CDIO Group Technology as part of the regular Risk Appetite Assessments (RAA) and Risk & Control Self-Assessment (RCSA) processes
• perform cyber security risk assessments, thematic reviews and deep dives as well as ad-hoc analysis, investigations, control testing and other risk control initiatives as required
• provide review and challenge to CDIO Group Technology as well as to our business divisions (via our Divisional Information Security Officers) on projects, new initiatives, processes, risk events, incidents, controls as well as regulatory compliance
• influence executives in CDIO Group Technology on key cyber risks and actions required to manage UBS’s risk appetite
• represent C&ORC Cyber Risk Control and escalate cyber risk issues/concerns in relevant forums including Technology Risk Forums and Management Committees