Third Party Risk Management Specialist
Contractor
Job Description
Seniority
- L3 (Intermediate)
Educational Qualifications
- Bachelor’s Degree (3-year) in Information Technology, Computer Science, Information Systems, Cyber Security, Risk Management, or a related field.
Relevant Experience
- 7–10 years’ experience in Governance, Risk, and Compliance (GRC), with proven experience conducting security risk assessments and impact assessments.
- Strong understanding of third-party risk management processes, vendor security assessments, and compliance requirements.
- Familiarity with industry security frameworks and standards, including:
- NIST
- ISO/IEC 27001
- PCI-DSS
Required Certifications
- Certified Information Security Manager (CISM)
- Certified Information Systems Security Professional (CISSP)
- Certified Information Systems Auditor (CISA)
Key Responsibilities
- Identify, assess, and manage information security risks associated with external vendors, suppliers, and third-party service providers.
- Conduct third-party security risk assessments, due diligence reviews, and compliance evaluations.
- Review vendor security controls, contracts, and agreements to ensure alignment with security and regulatory requirements.
- Support audit activities and track remediation actions related to third-party risks.
- Ensure compliance with applicable security frameworks, policies, and governance requirements.
- Analyse assessment findings and communicate identified risks, recommendations, and mitigation plans to senior leadership.
- Collaborate with business, procurement, legal, and technology teams to strengthen third-party security risk management practices.
Job Overview
All content copyrighted Tangent International © All rights reserved. Recruitment Website Design - RecWebs
