Risk manager job description can be pretty broad because it can cover the tasks of a financial risk manager, safety risk manager or physical security risk management.
In terms of DIARMF / Risk Management Framework and Information surety we will focus on risk manager job description for Information Technology.
IT Risk Management Professionals identify, analyze and document the risks associated with an organizations operations. Their job is much more effective if they have a continuous monitoring program to help them keep an eye on vulnerabilities and threats in real-time.
risk manager job description
Responsibilities for IT Risk Management Professionals include:
-
Continuously monitor emerging threats associated discovered vulnerabilities.
-
Be apart of the configuration management process as it applies to changes to the security posture of the information system and/or network.
-
Encourage and/or participate in implementation of security controls.
-
Create or analyse reports of significant risks and make recommendations
-
Make policies, procedures and control assessments for identified risks
-
Provide information assurance awareness training
The risk management function of a company can fall under many different titles, some of which include:
- Risk Analyst
- Risk Manager
- Risk Management Consultant
- Risk Control Supervisor
- Director of Corporate Risk Management
- Chief Risk Officer
More on risk management job descriptions: http://www.acfe.com/career-path-risk-management-professional.aspx