Master information

Task description and requirements

We are currently looking for a 3rd Party Information Security Expert (100% remote).


Your tasks include:

+ Create and establish a consistent framework to assess and evaluate the risks associated with Third Parties, especially with critical ICT services provider

+ Perform the risk assessment of existing providers of ICT services and onboard every new ICT services provider into the Risk Management System

+ Establish and operate processes necessary to ensure all ICT services providers are being inventoried, assessed, and managed in alignment to the 3rd Party Risk Management System

Requirements:

Must-have:

+ Minimum of 6 years of experience in Risk Management, specifically 3rd Party Risk Management with a proven track record of success

+ Experience in developing and implementing operational systems within a complex organizational structure.

+ Strong knowledge of industry standards and frameworks, such as ISO 27005 and NIST CSF

+ Experience in conducting risk assessments in the context of an enterprise

+ Familiarity with DORA

+ Strong knowledge of technology systems and infrastructure, with the ability to assess their vulnerabilities and recommend appropriate controls, legal and administrative controls implementations


Nice-have:

+ German

Have we aroused your interest? Then we look forward to receiving your informative expert profile, stating your hourly rate expectations. 

Start: 16.09.2024
Duration: 4 Months +
Location: Remote

Category