Information Risk Manager - Full time

A career at the Lombard Odier Group is something to be proud of. Our mission is to protect and grow our clients’ wealth - but not by any means necessary. Sustainability is at the heart of everything we do and we treat our clients’ wealth as if it were our own. We protect our clients’ assets for the long-term using expertise and innovation, all underpinned by our Rethink Everything philosophy. Our colleagues are the foundation of our success. We employ people at different life stages, from graduates to executive level leaders. The one thing they all have in common is that they seek to challenge the status quo, are imaginative and have the ability to offer a fresh perspective.Bank Lombard Odier & Co Ltd in Geneva is looking for a candidate to fulfil the following mission statement:Information Risk ManagerYOUR MISSION:Within the Information Risk & Data Protection Office, in the 2nd line of defence, your mission will be to develop, document and maintain the Business Information Risk Control framework for the Group:Maintain and regularly update the Group Information Risk policies in line with regulatory requirements;Be the key point of contact and Subject Matter Expert on Information Risk issues for all business units and staff;Oversee, coordinate, and assist the 1st line of defence, especially Business Risk Managers with the execution of the Business Information Risk Control Plan covering: End-user computer risks, Clear desk compliance reviews, Risk Based Access controls reviews among other areas;Track and manage exceptions to the Information Risk policy;Elaborate information security and data protection risk training and risk communication aiming at raising risk awareness and helping the diffusion of an effective risk culture across the Group;Be the point of contact with internal and external audit on Information Risk topics;Monitor Information Risk KRIs/KPIs;Engage as required with ad-hoc projects as risk representative on projects led by other functions/business areas with a significant information risk component (e.g., access management related projects);2nd line follow-up, coordination of the investigation and reporting of Information Security incidents;Enforce conduct risk policy on Information Risk topics.DESIRED PROFILE :Excellent understanding of information risks (IT risk, cyber & information security risks) minimum 6-7 years’ experience ideally in the financial industry and in a control function;University Degree (Masters) in Technology, Engineering or Information Security. CISA, CRISC, CISM, CISSP, ISO27001 lead auditor is an advantage;Knowledge on data protection regulations and of key financial regulations from Swiss and European perspective is an advantage;Strong communication skills – verbal and written;Ability to deal with stakeholders at all levels and to manage conflict and influence;Flexible attitude with ability to actively re-prioritise and adjust to changing needs on an ongoing basis;Team player, independent in carrying out the assigned activities;Fluent in French and English, any other language is a plus;Swiss Domicile.Réf : aesIf you recognise yourself in this description, then please do apply. We look forward to hearing from you.