Third Party Risk Consultant - 6 months Inside IR35

Third Party Risk Consultant - 6 months Inside IR35
  • £500 - £600 per Day
    DAY
  • Contract
  • London, England, UK London London GBR ec3a 4af
Job Ref: 50213924
Sector: Cybersecurity
Date Added: 21 May 2021

Third Party Risk Consultant - 6 months Inside IR35

You will be working as a Third-Party Risk consultant for one of the largest pharmaceutical companies in the world. This is a six month contract and can be based remotely around the UK.

Job Purpose

  • Execute and support the full lifecycle of information security third-party risk assessments as needed, either individually or through available resources.
  • Collaborate with internal third-party relationship owners and third-party representatives to recommend necessary security controls to effectively mitigate risks
  • Evangelize third-party risk management processes across business lines to help influence a strong culture of proactive awareness for third-party security risks

Key Responsibilities

  • Maintain and update the third-party risk management process framework for security risk, including necessary standards, procedures, and technologies
  • Execute and support the full lifecycle of information security and third-party risk assessments as needed, either individually or through available resources.
  • Provide clarifying support, where necessary, to internal third-party relationship owners or third-party representatives in their efforts to provide responses to the security risk assessment questionnaire.
  • Coordinate with Legal and Procurement representatives to ensure proper security and privacy clauses are included in third-party contracts
  • Effectively translate third-party responses to assessment questionnaire, using sound judgement, into concise risk exposure reporting for delivery to internal stakeholders
  • Collaborate with internal third-party relationship owners and third-party representatives to recommend necessary security controls to effectively mitigate risks
  • Ensure robust tracking and remediation of third-party security and privacy risk exposures identified through assessment processes
  • Evangelize third-party risk management processes across business lines to help influence a strong culture of proactive awareness for third-party risks
  • Provide any necessary training and awareness related to the third-party security risk assessment process
  • Contribute to the gathering and distribution of periodic program metrics and/or dashboards
  • Provide insights on other security risk management matters, as necessary, in collaboration with the broader GRC/Cyber Risk team.
  • Provide consultancy SME support in conducting security posture assessments as part of continuous monitoring or post breach scenarios to ensure that suppliers have adequate security controls.

We are an equal opportunities employer and welcome applications from all suitably qualified persons regardless of their race, sex, disability, religion/belief, sexual orientation, gender reassignment, marriage and civil partnerships, pregnancy or maternity or age

Lorien
20/06/2021 13:56:27
GBP 500 600 Day
Contact Consultant:
Vincenzo Mantio

Submitting application, please wait..