Analista de Riesgo Operacional y TIC en Zurich, enfocándote en la gestión y control de riesgos operacionales y TIC. Oportunidad de desarrollo profesional y participación en activismo social.
About the role
- Third Party Risk Consultant overseeing cyber security due diligence for new and existing suppliers. Collaborating with teams to communicate findings and manage third-party risks.
Responsibilities
- Perform cyber security due diligence of new suppliers and performance of on-going due diligence for existing supplier relationships.
- Hold and drive internal and external discussions with business partners regarding third-party cyber security requirements.
- Communicate results and findings of third-party assessments in a clear and professional manner with all levels of the organization, in addition to external business partners.
- Evaluate third-party threats, vulnerabilities, and control weaknesses to determine applicability and significance, and recommend mitigation.
- Work with cyber team lead to understand control requirements to enforce and determine cyber security risks of third parties.
- Monitor for third-party cyber incidents and manage responses and mitigations when they occur.
Requirements
- Ability to read, understand, and perform due diligence of vendors by analyzing and reviewing cyber security controls and documentation provided, such as SOC 2’s, written information security programs, industry certifications, and network penetration testing results.
- Experience with vulnerability management, incident management
- Demonstrated experience as a trusted advisor and partner.
- Excellent analytical and problem-solving skills, including ability to create and adapt to unconventional controls.
- Broad understanding of cyber security practices for third party risks including software, cloud, SaaS.
- Experience with the review of cyber security contractual agreements and amendments, applying risk-driven techniques.
- Familiarity with managing your workload using a Jira Kanban board.
- Software security lifecycle and vulnerability management experience including familiarity with threat modeling, static code analysis, dynamic scanning, and penetration testing.
- Strong communication and advocacy skills, both verbal and written, with the ability to express complex and technical issues in clear and concise business terms.
- Strong project management skills with the ability to manage multiple priorities.
- Working with and executing proficiently in industry known GRC tools.
Benefits
- Health insurance
- Paid time off
- Flexible working arrangements
- Professional development opportunities
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
PMO Tools & Governance Analyst shaping and optimizing governance tools within Coles Group. Leading PPM strategy and partnering with stakeholders for continuous improvement and data - driven decisions.
Risk Management Manager providing operational and financial risk oversight in a global financial services company. Leading risk management initiatives and regulatory compliance across business lines.
Governance Manager enabling a multi - disciplinary team at ANZ to work on customer - focused initiatives. Guiding and inspiring the squad towards strategic goals and delivering customer value at pace.
Director managing operational risk at Fitch Ratings in Manchester, UK. Driving enhancements in operational risk frameworks and reporting processes while collaborating with teams across the organization.
Lead Microsoft Purview strategy at Under Armour, ensuring enterprise data protection and compliance. Design and implement governance policies, driving compliance across integrated platforms.
Risk Analyst supporting company - wide approach to identifying and analyzing emerging risks and providing actionable insights. Collaborating with multidisciplinary teams to enhance risk understanding.
Senior Group Risk Specialist providing risk management expertise to business leaders at TD Bank. Leading risk frameworks and providing expert advice to senior management within the organization.
Head Risk Management role at coni + partner overseeing financial risks for an international bank. Ensuring effective business operations and advising management on investment strategies.
Risk Analyst managing OTC and counterparty risks in algorithmic trading at a leading digital assets firm. Collaborating with multiple teams to enhance risk management strategies.