Form of cooperation: B2B with ITFS (first contract for 6 months + extension possible)
Rate: 120-140 PLN/h net + VAT
Client: large multinational bank
responsibilities :
Analyzing and evaluating security controls and documentation policies (evidence)
Recommending mitigation actions related to identified risks
Reporting and communicating identified risks to stakeholders
Monitoring of status of implementation of mitigation actions and support
Supporting the Client in a Third Party Risk Management process (TPRM), performing Vendor Risk Assessments
requirements-expected :
2+ years of experience in security assessments and cyber risk management (ideally including TPRM)
English skills in writing and speaking
Analytical and problem-solving skills
Practical understanding of IT security standards such as ISO27001, NIST, OWASP
Bachelors degree with professional certification in Cybersecurity, IT or a related field
Certifications such as CISA, CISSP, CISM as a plus
Third Party Risk Management experience in the following areas: conducting risk assessments of third-party vendors to identify potential security threats and vulnerabilities; conducting Cloud assessments; conducting audits; analysing and evaluating vendor security controls, policies, and procedures to ensure compliance with regulatory requirements and industry best practices; developing and implementing risk mitigation strategies to address identified vulnerabilities and reduce the organizations exposure to cyber threats; communicating assessment findings and recommendations to internal stakeholders, including senior management, legal, and compliance teams; monitoring and tracking vendor compliance with security policies and procedures through ongoing assessment activities