Job Description :
Company Overview:

Creating value by bringing together the right people to achieve results is our motto. Our clients and employees say they choose to work with us because of how we work with them - with service that exceeds their expectations and a personal commitment to their success.

Our client, one of world’s largest distributors of Healthcare systems, Medical supplies & Pharmaceutical products, seeks accomplished IT Risk Analyst.

Description:
Looking for an analyst to join our 3rd Party Assurance program, in support of the overall enterprise IT governance program.
The analyst will use the 3rd Party Assurance framework to support the program both centrally and at the individual Business Units. Due diligence and Ongoing monitoring.
Lead new and recurring 3rd party security risk assessments, develop mitigation plans, and work with internal stakeholders to assign remediation tracking responsibility.
Implement processes to monitor the 3rd party portfolio using a risk based approach.
Review of 3rd party provided audit reports and supporting collateral e.g. SOC1/2 reports and other certifications, or review of 3rd party security whitepapers. Requesting questionnaires be completed by the 3rd party describing their environment and controls. Periodic on site 3rd party risk assessments.
Maintain and enhance the administration of issue monitoring and exception tracking and, where necessary facilitate remediation actions to improve overall 3rd party performance to meet business needs.
Partner with the cybersecurity team to monitor risks related to third party access to Client’s and our customers’ critical systems and data.
Track the 3rd party risk management process in RSA Archer governance, risk & compliance tool. Stakeholder Consulting.
Collaborate with Client Enterprise Sourcing & Business Optimization and the other Risk Organizations such as Compliance and Privacy in the process of supporting the program.
Work in a self-directed, collaborative, and constructive manner with the business units, and our internal stakeholders to enhance the effectiveness of 3rd Party Management processes and controls.
Build effective relationships with stakeholders who own and support key 3rd party relationships. Gain commitment from stakeholders to help manage and improve the risk posture of these 3rd parties.

Requirements:
4-year degree in computer science or related field or equivalent experience.
3 years’ experience in administering security controls in an organization.
Experience working with Security Frameworks e.g. ISO 27001, NIST 800-53, CSA CCM.
Strong Project and Time Management skills.
Ability to handle multiple tasks, prioritize and meet deadlines. Strong interpersonal and influencing skills.



I''d love to talk to you if you think this position is right up your alley.

If you''re looking for rewarding employment and a company that puts its employees first, we''d like to work with you. We''re driven, people driven. We also offer group health Insurance (employee paid on a pre-tax basis

NOTE: “Candidates that are offered a position are required to pass pre-employment drug and background screening”
             

Similar Jobs you may be interested in ..