This company provides next-generation digital services for a range of clients spanning many exiting industries. With over 40 years of experience and over 290 thousand employees present in over 50 countries, our client is truly a global leader. You can expect to work in an award winning environment (as featured by both Forbes and Fortune), being recognised as a globally certified top employer of the year for the second year running.
Within this role you will be responsible for;
Work with client Information Security, compliance, and auditing teams, as well as regulators, to identify and document various requirements/obligations and formulate the roadmap for potential program implementations.
Perform risk treatment discussions with stakeholders and gain business consensus on risk treatment roadmap.
Raising risk findings with stakeholders and recording it per standardized requirements.
Assisting Vendor risk management process from Information Security point of view.
Identifying Information Security compensating controls or alternate controls in case primary control requirements are not met.
Documenting Information security risk in relation to Technologies, People and Process.
Identification of issues, risks, opportunities and improvement of policies, processes, procedures and standards.
Minimum of 7 years' experience in Information/Cyber Security
Ability to liaise with clients and manage stakeholder expectations
Ability to map business requirements to technical specifications
Experience in Cyber Security domains like Third Party Risk Assessment as per ISO, NIST frameworks
Understanding of Third-party risk management including cloud implications of utilising a third party
Knowledge of Data Protection & Privacy related risks associated with Third-Party and relevant control frameworks for Third-party risk management
Should be able to communicate key risk findings effectively