Responsibilities:

The ultimate goal is to achieve and maintain full regulatory compliance, while simultaneously reducing risks both now and in the future. This includes:

• Continuous evaluation of the organization and the evolution of its activities, objectives, and challenges to gain and maintain a good understanding of the risks and threats.

• Identifying and prioritizing the most urgent threats to the organization, addressing the most serious and potentially problematic issues first. This also includes: maintaining the register with the results of the Penetration Tests.

• Taking the lead in developing a strategy and an action plan for addressing governance-, risk-, and compliance-related risks. These must be aligned with the policies, procedures, and practices of our FOD, as they relate to regulatory compliance and risk management as a whole.

• Continuously monitoring and ensuring that all practices, including the software used, are compliant.

The consultant must possess a security clearance level “secret”.