WE ARE LOOKING FOR YOU, IF YOU HAVE:

experience in information security, risk management or compliance,
strong analytical skills,
familiarity with third party risk assessment methods and control frameworks such as ISO27001, NIST, COBIT, SOC2,
excellent written and verbal English communication skills; ability to express thoughts clearly, know how to listen and contribute in a team environment.

conduct information security assessments of suppliers (third party vendors and cloud services) including advising management on how to mitigate any identified risks,
support the evolution and continuous improvement of vendor risk assessment processes including the development and maintenance of procedures, artifacts, and metrics to be used in the assessment of suppliers,
perform third party compliance risk tracking, trending, analysis, and executive reporting,
provide guidance to business partners to ensure compliance with information security regulatory requirements and internal policy,
assist with development and implementation of the third party risk assessment strategy, methodology, and process through the CISO End-to-end Third Party Cyber Risk Management lifecycle.