Manager, CyberSecurity and Risk Management

At Otis, it’s our people that make us different. Come and join OTIS today and be part of the Forbes 2024 World's Best Employers!

Join the Otis family where collaboration, innovation, and empowerment help each individual and the company reach new heights.

Key Responsibilities Execute the IAM/IGA vision:

Execute the Identity and Access Management (IAM) program roadmap that aligns with business objectives and risk tolerance Manage the team:

Manage an outsourced team of identity specialists, engineers, and support fostering a culture of continuous improvement Focus on continuous improvement , automation, and standardization of IAM processes Vendor Management : Manage the on and offboarding of managed service provider personnel and oversee operations procedures Vendor Orchestration:

Oversee and prioritize service delivery for four Managed Service and five Identity Product Vendors (OKTA, HYPR, Delinea, Saviynt, Entrust) and a host of cross-functional teams in infrastructure and business areas Reporting and Communication:

Create and present reports and dashboards for senior management and other stakeholders on vendor performance, spending metrics, and compliance posture Operational and Technical Oversight : Coordinate with Identity Engineering and Operations teams to understand vendor tasks and ensure third-party capabilities are aligned with internal initiatives Oversee delivery of projects

and initiatives related to IAM systems upgrades, integrations, and automation Monitor and enforce policies and standards:

Enforce policies and standards related to IAM, ensuring they meet both internal requirements and external regulations. Oversee access review operations:

Lead and automate periodic access reviews and certification campaigns to validate that users still have appropriate permissions, reducing the risk of \"privilege creep\" Ensure compliance:

Collaborate with audit and compliance teams to ensure adherence to relevant regulations and standards, such At Otis, it’s our people that make us different. Come and join OTIS today and be part of the Forbes 2024 World's Best Employers!

Join the Otis family where collaboration, innovation, and empowerment help each individual and the company reach new heights.

Requirements Proven work experience as a Cybersecurity Risk Manager, Identity Manager or similar role (3+years) Strong knowledge of cybersecurity risk management principles and best practices Familiarity with cybersecurity frameworks (NIST, ISO27001, CIS etc.) Experience with auditing and reporting procedures Background in data analytics research and leading incident management investigations Assist in internal controls testing and external audit preparation for User Access Reviews Strong communication skills, with the ability to explain complex security issues to non-technical staff Relevant certifications (CISSP, CISM, CRISC, etc.) preferred BSc degree in Computer Science, Cybersecurity, or a related field Prior background in Cybersecurity Engineering in cloud and hybrid environments Proficient in driving application integration projects Train staff on security protocols and best practices Lead & worked closely with Security Governance, DT Operations & Identity Management teams on providing the best security practices/policies/process to comply with regulatory requirements (NIST, APRA CPS 234, ISO 27001) in IAM. English Fluency, Multi-lingual is a major plus.

Apply today to build what's next!