Connecting...

W1siziisimnvbxbpbgvkx3rozw1lx2fzc2v0cy9wzxjpz29ulwdyb3vwl2pwzy9iyw5uzxitzgvmyxvsdc5qcgcixv0

Job Search

Cyber Security Vendor Risk Specialist

Job Title: Cyber Security Vendor Risk Specialist
Location: Sydney
Industry:
Reference: 3033124
Contact Name: Reece Richardson
Job Published: November 18, 2019 10:33

Job Description

Global Top ASX LIsted Organisation is looking for a Cyber Security Vendor Risk Specialist to join their global Cyber Security Delivery team! In this role you will be responsible for the current process for engaging and managing third party risks is a time constraint with limited visibility. We are looking for an experienced third-party vendor risk specialist with expertise within IT. You will report directly into the Cyber Detection & Response Manager and have responsibility for the effective management of cybersecurity third party vendor service management across the global business.
You will be required to monitor and analyse the performance of vendors to ensure contractual service levels are achieved. Successful candidates should have a broad range of expertise across cybersecurity. We are looking for a dynamic and motivated candidate with strong experience in IT and vendor risk management.

What you wil be responsible for;
  • Vendor service management, governance and tracking, primary contact for a managed service
  • Regular reviews making sure service is effective
  • Internal stakeholder management
  • Manage issues/risks/dependencies
  • Monitor and analyse the performance of vendors to ensure contractual service levels are achieved (SLA’s)
  • Coordinate vendor on-boarding and off-boarding activities internally
  • Oversee and facilitate the interaction between vendors and internal stakeholders to deliver changes to technology, process and contractual terms
  • Project manage transition of or change to services provided by the vendor
  • Identify opportunities for improvements in vendor engagement, processes and products and liaise with internal stakeholders to deliver these improvements
  • Provide relevant, accurate and timely reporting on supplier and cost performance for the operational needs of management
  • Conduct meetings and to perform regular audits and compliance checks
  • Assist in developing policies and procedures, as required
  • Relationship building and stakeholder engagement
  • Manage third party risks effectively and efficiently
  • Classify existing vendors (assist in the tiering model) with the business
  • Liaise and notify managed service of new vendors across the business
  • Monitor, onboard and offboard new vendors
  • Send the questionnaire to new vendors
  • Liaise with the vendor to complete questionnaires
  • Escalate incomplete questionnaires
  • Inform cybersecurity SME's to review questionnaire assessment
Knowledge, Skills & Experience
  • Experience within IT software and Infrastructure
  • Good oral and written communication skills
  • Knowledge of IT software and infrastructure
  • Strong project and time management skills.
  • Continuous vigilance and constant action is required
  • The ability to adapt and operate in a fast-paced and changing environment
  • Sound knowledge of systems development lifecycle
  • Good attention to detail, tracking and reporting skills
  • Good stakeholder management
  • Experience managing third-party vendors
  • Demonstrated experience in cybersecurity
  • Understanding of the current threat landscape, response, and mitigation strategies used in cybersecurity.
Qualifications
One or more of the following certifications is preferred:
  • 3-5 years of significant experience within IT service management
  • Tertiary qualification in IT, Business or similar
  • Good understanding of governance framework and process
  • Familiar and confident around ITIL processes