Third-Party Security Risk Specialist
As a Third-Party Security Risk Specialist, you will be responsible for supporting the rollout and improvement of third-party risk assessment programs for a mix of client environments. You will carry out detailed reviews of vendor security controls and identify areas for improvement.
Key Responsibilities:
* Support the development and implementation of third-party risk management strategies
* Conduct thorough risk assessments of vendors and suppliers
* Identify and prioritize risks based on severity and impact
* Develop and implement mitigation plans to reduce risk exposure
* Work closely with internal teams and clients to ensure smooth project delivery
Required Skills and Qualifications:
Experience:
Around 3+ years' experience in information security, risk, or consulting roles with exposure to supplier or control assessments is required.
Technical Skills:
Strong understanding of core security domains - access management, network controls, data protection, and secure configuration is essential. Experience working with risk platforms or governance tools (any vendor) is also required.
Soft Skills:
Ability to manage multiple pieces of work at once, interpret security requirements, identify gaps, and outline remediation plans is necessary. Strong analytical thinking and communication skills are also required.
Benefits:
Working from home, flexible working hours, and opportunities for professional growth and development are available.