Job Description

• Technical background or demonstrable understanding of a range of operational and IT risks and operations.
• Experience in performing third party vendor risk assessments/audits.
• Experience of negotiating Information Security terms in the Agreements with third party vendors.
• Good understanding of complex audit and assessment risk-related issues through demonstrated experience in managing vendor assessments, information security assessments and audits.
• Savvy interpersonal / relationship skills, able to foster working relationships within the team, across IT and with business colleagues
• Knowledge of business and technology practices and trends
• Excellent written and verbal communication skills
• High level of personal integrity and demonstrated willingness to call out and act on issues

Education, Experience and Certification require:

• A bachelor's degree (or the equivalent) is required, preferably in computer science, engineering, mathematics or statistics
• Desired professional qualifications may include:
• Certified Information Systems Security Professional (CISSP)
• Certified Information Systems Auditor (CISA)
• Certified Information Security Manager (CISM)

• A minimum of five years of experience in performing audits, assessments and managing risk and compliance issues, or similar experience managing applications, projects or systems that require identification, evaluation and remediation of risks.

Skills Required