Third Party Risk Management Specialist

Contractor

Job Description

Seniority

  • L3 (Intermediate)

Educational Qualifications

  • Bachelor’s Degree (3-year) in Information Technology, Computer Science, Information Systems, Cyber Security, Risk Management, or a related field.

Relevant Experience

  • 7–10 years’ experience in Governance, Risk, and Compliance (GRC), with proven experience conducting security risk assessments and impact assessments.
  • Strong understanding of third-party risk management processes, vendor security assessments, and compliance requirements.
  • Familiarity with industry security frameworks and standards, including:
    • NIST
    • ISO/IEC 27001
    • PCI-DSS

Required Certifications

  • Certified Information Security Manager (CISM)
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Systems Auditor (CISA)

Key Responsibilities

  • Identify, assess, and manage information security risks associated with external vendors, suppliers, and third-party service providers.
  • Conduct third-party security risk assessments, due diligence reviews, and compliance evaluations.
  • Review vendor security controls, contracts, and agreements to ensure alignment with security and regulatory requirements.
  • Support audit activities and track remediation actions related to third-party risks.
  • Ensure compliance with applicable security frameworks, policies, and governance requirements.
  • Analyse assessment findings and communicate identified risks, recommendations, and mitigation plans to senior leadership.
  • Collaborate with business, procurement, legal, and technology teams to strengthen third-party security risk management practices.

Job Overview

All content copyrighted Tangent International © All rights reserved. Recruitment Website Design - RecWebs