Informations principales
Third Party Information Security Expert (m/w/d)
Poste: Non spécifié
Début: Dès que possible
End: Non spécifié
Lieu: Non spécifié
Type de collaboration: Projet seulement
Taux horaire: Non spécifié
Dernière mise à jour: 16 sept. 2024
Description et exigences de la tâche
We are currently looking for a 3rd Party Information Security Expert (100% remote).
Your tasks include:
+ Create and establish a consistent framework to assess and evaluate the risks associated with Third Parties, especially with critical ICT services provider
+ Perform the risk assessment of existing providers of ICT services and onboard every new ICT services provider into the Risk Management System
+ Establish and operate processes necessary to ensure all ICT services providers are being inventoried, assessed, and managed in alignment to the 3rd Party Risk Management System
Requirements:
Must-have:
+ Minimum of 6 years of experience in Risk Management, specifically 3rd Party Risk Management with a proven track record of success
+ Experience in developing and implementing operational systems within a complex organizational structure.
+ Strong knowledge of industry standards and frameworks, such as ISO 27005 and NIST CSF
+ Experience in conducting risk assessments in the context of an enterprise
+ Familiarity with DORA
+ Strong knowledge of technology systems and infrastructure, with the ability to assess their vulnerabilities and recommend appropriate controls, legal and administrative controls implementations
Nice-have:
+ German
Have we aroused your interest? Then we look forward to receiving your informative expert profile, stating your hourly rate expectations.
Start: 16.09.2024
Duration: 4 Months +
Location: Remote