Información general
Third Party Information Security Expert (m/w/d)
Posición: No especificado
Inicio: Lo antes posible
Fin: No especificado
Ubicación: No especificado
Método de colaboración: Sólo proyecto
Salario por hora: No especificado
Última actualización: 16 sep. 2024
Descripción de la tarea y requisitos
We are currently looking for a 3rd Party Information Security Expert (100% remote).
Your tasks include:
+ Create and establish a consistent framework to assess and evaluate the risks associated with Third Parties, especially with critical ICT services provider
+ Perform the risk assessment of existing providers of ICT services and onboard every new ICT services provider into the Risk Management System
+ Establish and operate processes necessary to ensure all ICT services providers are being inventoried, assessed, and managed in alignment to the 3rd Party Risk Management System
Requirements:
Must-have:
+ Minimum of 6 years of experience in Risk Management, specifically 3rd Party Risk Management with a proven track record of success
+ Experience in developing and implementing operational systems within a complex organizational structure.
+ Strong knowledge of industry standards and frameworks, such as ISO 27005 and NIST CSF
+ Experience in conducting risk assessments in the context of an enterprise
+ Familiarity with DORA
+ Strong knowledge of technology systems and infrastructure, with the ability to assess their vulnerabilities and recommend appropriate controls, legal and administrative controls implementations
Nice-have:
+ German
Have we aroused your interest? Then we look forward to receiving your informative expert profile, stating your hourly rate expectations.
Start: 16.09.2024
Duration: 4 Months +
Location: Remote