Skip to main content

This job has expired

SSRM(Supplier Security Risk Management Assessor)

Employer
Experis Ireland
Location
Dublin
Salary
Negotiable
Closing date
20 Sep 2023

View more

Sector
IT
Job Type
Contract
Hours
Full-time

Job Details

Candidate must have valid visa to work in Ireland (Stamp 1G/Stamp 4/EU Passport)

Job Title: SSRM (Supplier Security Risk Management Assessor)
Location: Ireland
Job type: Contract/Fully Remote

Overview of the role:
Our client is looking for a risk assessor role with passion for assessing and aligning security controls to industry best practices and internal security standards. Must possess strong experienced in risk mitigation. Additional auditing and risk management skills and experience a plus.

Responsibilities:

  • 5+ years of experience in a 3rd Party (supplier/vendor) risk assessor.
  • Coordinating and performing Supplier Security Reviews.
  • Ability to manage multiple concurrent complex supplier assessments and related program projects at the same time.
  • Performing supplier documentation review, and analysis.
  • Must be able to present/showcase achievements and progress on active projects with teammates.
  • Ability to effectively identifying and measure the risk and maturity of a vendor's IT security controls.
  • Proven experience in Managing security assessment review including operational, systems and applications.
  • Documenting and keeping track of findings associated with suppliers and tracking them to resolution.
  • Solid understanding for cloud security architecture and computing environments.
  • Writing detailed supplier assessment reports based on completion of risk analysis and triaging.
  • Ability to derive context from SSAE18 SOC1 and SOC2 reports, policy documents, pen test reports, architecture diagrams and other control evidence documents.
  • Strong understanding of risk frameworks like ISO and NIST
  • Understand compliance requirements related to HIPAA and PCI-DSS and other regulations.
  • Thorough understanding of data privacy legislation, such as GDPR and other country specific Data Privacy Regulations.
  • Must have 2-3 years of hands-on working knowledge of One Trust(vendor risk module).
  • Must have 2-3 years' experience using Security Rating Services like Black Kite, BitSight, Security Scorecard or RiskRecon.
  • Must have hands-on knowledge of collaboration productive tools like MS Team, SharePoint, and OneDrive.
  • Hands-on use of Standardized Information Gathering (SIG) questionnaire and/or other industry standard security questionnaires to perform an initial assessment of vendors, gathering information to determine how security risks are managed.
  • Strong ability to multi-task day-to-day and collaborate with business unit, privacy and procurement leads.
  • Have proven analytics skills and a strategic mindset for mitigating risk.
  • Effective written and verbal communication skills are required (English and Local Language Support).
  • Must be a high-energy individual with a go-getter attitude.
  • Must be multilingual, fluent in English and Local Language
  • Will be working a mostly local country time zone (80%) with some flexibility (20%) as needed for alignment for US Eastern Time Zone.

Candidate must have valid visa to work in Ireland (stamp 1G/Stamp 4/EU Passport)

If you are interested in this role or would like to discuss further, please call Nidhi on +353 1 645 5244 or email nidhi.tripathi@experis.ie

Company

At Experis (part of ManpowerGroup) global, we operate in over 50 countries worldwide, deploying more than 38,000 skilled professionals across the IT, Science and Engineering sectors every day. Few companies can match our scope, our history of success, or our reputation as the global leader in professional talent and workforce solutions – and that’s why over 80% of the Fortune Global 500 turn to us for the professional talent that will set them apart.

We’re a different kind of talent company. We precisely deliver in-demand talent for mission-critical positions, enhancing the competitiveness of the organisations and people we serve. From interim and permanent recruitment, to managed services and consulting; we deliver high-impact solutions that enable our clients to achieve more than they ever thought possible.

Today, we’re Experis: Ireland’s leading IT resourcing specialist, and the professional resourcing arm of the world’s workforce expert, ManpowerGroup

ExperisExperis Logo

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert