Job Description

Key Responsibilities
Manage a large and diverse portfolio of Vendors for the firm;
Evaluate and review third party vendor legal documentation and processes including Master Service Agreements (MSA's), Statement of Work (SOW's), Request for Proposal (RFP) and RFI (Request for Information) responses
Perform risk assessment on suppliers and identify control gaps
Negotiate remediation plan with suppliers
Maintain open communication channels with senior stakeholders through regular governance sessions, escalating appropriately as and when required.
Own the quality of all client outputs and ensure all client and internal document repositories are accurate and up to date
Essential Criteria
Degree in Information Technology or related subject
Previous experience in professional roles involving information security and/or management
Knowledge of information risk and compliance principles. Broad understanding of security technology and related risk and compliance issues
Senior stakeholder relationship management
Excellent attention to detail and a passion for delivering high quality output for clients

Required Knowledge, Skills, and Abilities

Cyber Security related certifications including ISO27001 Lead Auditor, CISA, CISM, CIPP, CISSP Strong understanding of information security controls & ISMS standards such as ISO27001/2, COBIT and NIST Experience with SOC2 compliance standards