Job Description
| Potential Role Name | Project Manager L2 |
| Potential Band Alignment | C2 |
| Role Purpose | IS Risk Manager will lead on all assurance activities and conduct security and data reviews, analysis and testing to confirm the appropriate application (whether through technology, process, or behaviour) of the policies and the secure operation of the Lebara's systems and the information and data therein. Your focus will be on planning, establishing, developing, managing and implementing a security assurance, governance, auditing, business continuity, risk and compliance framework that meets external and internal stakeholder expectations and is aligned to best security practice, as well as to regulatory and legislative requirements. The role is also responsible for cloud security governance and requires a working knowledge of AWS and Azure |
͏
| Areas of Responsibility | • Identifying risk mitigation approaches (actions, phases, manual efforts, etc.) • Communicating risks in business terms for prioritization • Determining that correct measures of governance and controls are in place to validate identified cyber risks and vulnerabilities are prioritised correctly and remediated based on agreed SLA’s • Validate operational decisions with stakeholders are made in accordance with our policies and standards and do not increase the overall risk exposure of Lebara • Assess, measure and report findings of our key applications and security and information assurance controls • identify and evaluate risks; understand business context and prepare reports and recommendations • Work with all functional business areas to develop and maintain a corporate wide BCP program that addresses business recovery and emergency response management • Define, establish, and implement organizational information security processes, to ensure business, regulatory, legislative and contractual requirements and obligations are met. • Implement internal and external ISMS audit processes, audit plan, monitor effectiveness of controls and corrective actions in cooperation with the stakeholders across the organization. • Manage gap analysis, compliance readiness, and compliance monitoring activities for ISO/IEC 27001, PCI DSS, NIS 2 and other regulatory security audits. • Coordinate external security audits, assessments and testing as well as remediation plans development and implementation. • Identify, assess, and monitor information security risks and recommend mitigation measures. • Develop content, coordinate, and facilitate a comprehensive organizational information security awareness training program. • Manage security requirements with third parties, including due diligence of products and services providers and information security requirements clauses in service provision agreements and contracts. • Develop, coordinate, and maintain information security policies, procedures and other security related documents. • Analyze, map, and communicate information security requirements, that derive from legislative and regulatory obligations in various jurisdictions. • Partner with Legal team to ensure compliance with regulatory security requirements. • Continually improve and update knowledge to accommodate changes to the company’s regulatory environment and needs. • Excellent written, verbal communication and presentation skills |
| Project Planning | Define delivery frameworks across complex software applications tools for multiple LOBs. Lead integrated planning, resource allocation, and governance setup while identifying risks and ensuring alignment with strategic business outcomes. |
͏
| Scope, Schedule, and Configuration Management | Review project deliverables and improve execution by defining new tools and processes, ensuring efficiency through continuous improvement and leveraging AI to enhance operational excellence. Prepare governance reports across multiple LOBs by consolidating MIS and dashboards for leadership reviews. Implement cross-LOB governance frameworks to minimize process exceptions and revenue leakage. |
͏
| Resource/Team Management | Oversee resource allocation plan, attrition rate and define resource optimization strategies for onshore and offshore teams across multiple LOBs. Define performance evaluation criteria and establish career development plans for onshore and offshore teams. |
| Quality & Risk Management | Develop risk management strategies to identify, assess, and mitigate project risks and lead continuous improvement efforts to enhance project outcomes. |
͏
| Engagement Economics | Monitor project estimates vs actuals and manage resource allocation for a LOB. Responsible for financial accountability for top-line and bottom-line growth across multiple LOBs. Oversee revenue realization and margin improvement initiatives at program level. |
| Pursuit Management | Participate in RFPs, Identification of mining opportunities in the existing accounts and Go-to-Market materials for multi-LOB solutions. Participate in client discussions to finalize commercial estimates and strategic pursuits. |