Risk Consultant, Cyber Risk

**Cyber Risk Consultant**

**Job Purpose/Role**

Based in Singapore and reporting directly to the Global Head of Cyber Risk Consulting, the cyber engineer will be responsible for providing cyber related exposure analysis and risk improvement consultancy services to AZ Commercial’s large corporate cyber clients across several international locations. In this role, the cyber engineer will support underwriters globally by conducting desk-top-reviews risk dialogues with the clients, on-site engineering visits to the facilities of existing and prospective clients and maintain professional working relationships with Underwriting, Global Distribution, Market Management, Claims, clients, and brokers. The global role will be actively involved in the appraisal and development of cyber products and be one of the points of contact for Cyber Risks, providing presentations and information when required. Support globally in ARC Cyber knowledge and resource sharing activities. Identify potential cyber threats, attack vectors and vulnerabilities. Adopting with changing digitisation environment in cyber risk consulting and claims support.

**Key Responsibilities**

Risk Assessments
- Perform cyber risk assessment desktop analysis of existing and/or potential AZ Commercial Cyber clients evaluating and summarising exposures, risk mitigation controls, and deliver cyber desktop assessment (DTA) reports for clients & underwriting. Survey client operations obtain appropriate data, identify hazards, discuss findings with appropriate parties. Generate loss control reports, recommendations etc. and meet reporting deadlines in accordance with departmental performance objectives.

Consulting Services
- Carry out cyber risk dialogues or site surveys when required with large accounts, which involve complex cyber risks. Provide technical consultation to AZ Commercial clients in relation to cyber exposures. Work with claims post loss as required. Review of ARC internal cyber risk assessments and ensure quality of work provided by the 3rd parties.

Global Thinking & Execution
- Understand, analyse, and provide insights on the ARC Cyber global portfolio and its changing trends by compiling reports when required or by participating in relative ARC projects. Maintain and enhance technical skills and expertise in Cyber security to support global business development. Support the ARC Cyber Team leader to coordinate and monitor the ARC Cyber workload by enhancing his/her availability to support accounts globally.

Digitalisation
- Improve and develop tools and methods to appropriately capture and quantity the diverse set of 1st and 3rd party cyber risks. Collaborate closely with the ARC Cyber Team and Underwriting in improving and promoting the Cyber product, using all the available digital tools.

Compliance
- Implement best practices for Cyber risk assessment in line with overall ARC processes and Functional Rules. Improve Cyber risk assessment processes by efficiency savings and reducing complexities. Perform quality control at work provided by 3rd parties.

3rd Party Support
- Appoint / monitor 3rd parties ensuring adequate contract / controls in place with budgets agreed up front. Check and ensure quality of work provided by 3rd parties.

Collaboration
- Develop and maintain clear communications with Underwriting, Claims, Marketing, ARC LoBs, and Business Development colleagues, participating in periodic meetings to keep abreast of corporate developments, changes and objectives. Provide technical training under guidance of the ARC Cyber Team leader & Cyber UW teams. Communicate and share technical Cyber expertise with various stakeholders. Provide presentations and training sessions for AZ Commercial and client representatives. Contribute to White Papers development and other articles/brochures/studies.

Projects
- Actively assist ARC Cyber team leader with respect to ongoing or specific projects supporting AZ Commercial transformation and digitalization. Assist AZ Commercial and clients with respect to ongoing or specific projects. Support technical training presentations for internal and external clients as required / appropriate.

**Key Requirements / Skills / Experience / Expertise**
- Masters' degree or higher in Cyber Security would be preferred or master’s degree in computer science/Engineering, Information Technology and Information Systems, Distributed Computing, Network Structure, Software Developing, and AI. Bachelor’s degree in computer science, Mathematics, Engineering, or Physical Sciences.
- Information Security experience in Security Architecture, Governance, Network Engineering, Cloud Security, security tools/services, penetration testing, programming languages, malware assessment and risk management.
- Experience in presenting complicate technical matters, clear communicate messages to different level of technical understanding stakeholders, able to articulate propositions to leaders in all levels of management.
- Cyb