Join to apply for the
GRC – Vendor Risk Management Analyst
role at
Ryanair - Europe's Favourite Airline
.
Ryanair is recruiting for a Vendor Risk Management Analyst to join Europe's Largest Airline Group.
This is an exciting time to grow our operation to 800 aircraft and 300 million guests within the next 10 years.
Ryanair Labs is the technology brand of Ryanair, a state-of-the-art digital & IT innovation hub creating Europe's leading travel experience for our customers.
The Ryanair platform has over 1 billion visits per year.
By joining Ryanair you will develop cutting-edge tech solutions, transform aviation for pilots, cabin crew, and ground ops, and drive the tech experience for our customers on Europe's largest travel website.
Responsibilities
Manage the Third-Party Risk Management Program, develop, enhance, and implement the program, and provide oversight and governance.
Perform vendor risk assessment processes, including review and scoring of risk questionnaires and completing overall risk assessments.
Support development and maintenance of a master vendor list, including data cleansing, validation, and de-duplication.
Report and monitor vendor risk: data collection and analysis, periodic ongoing reporting and monitoring.
Ensure potential issues are raised promptly to senior management to identify mitigation options.
Support business relationships with vendors and internal stakeholders to ensure a successful vendor assessment program.
Ensure alignment of the program with compliance requirements (PCI, GDPR) and assist with aligning vendor controls to mitigate information-security risk.
Understand technical implementation details to identify and assess vendor security risks and recommend mitigating controls.
Work with Information Security technical teams to communicate technical risk to business leaders.
Qualifications
2+ years of experience in Third-Party Risk Management, Information Security Risk Management, Compliance; a cybersecurity background is an asset.
Proven experience with data administration and analysis.
Preferable certifications: CISA, CISSP, or CISM.
Experience with industry-standard security frameworks such as NIST, ISO, COBIT.
Knowledge of OneTrust, JIRA, and ServiceNow is an advantage.
Benefits
Competitive salary
Discounted and unlimited travel to over 250 destinations
Defined Contribution Pension Scheme – matched up to 5 % or €*****
Death in Service Benefit – up to 2 × annual basic salary
20 days annual leave (increasing to 22 days after 12 months and 25 days after 3 years of continuous service)
Option for up to 5 additional unpaid leave days per year
Cycle 2 Work Scheme
Unrivalled career progression
#J-*****-Ljbffr