Banner Default Image

Security Third Party Assurance Senior Specialist

Vissza a kereséshez

Security Third Party Assurance Senior Specialist

Tasks:

Are you passionate about security risks and controls to ensure the organisation is safe? This role is really important to Vodafone. You will be responsible for ensuring there is reasonable assurance over the security controls in place at third parties and suppliers that provide products and services to the company. 

As the Security Third Party Assurance Senior Specialist, you will:
  • Build and maintain relationships with internal stakeholders such as Legal, Procurement, Cyber Security and with the company's third parties and suppliers to ensure that they are assessed, on-boarded, monitored and off-boarded with appropriate due diligence related to security matters.
  • Monitor ongoing compliance of third parties and suppliers depending on their risk profile.
  • Carry out security assurance activities for the company's critical and high risk third parties and suppliers.
  • Oversee all supporting activities, including KPI and MI reporting, flagging risks and issue remediation.

What you will love in your role:

  • Operate as a key subject matter expert on all supplier security assurance activities including due diligence testing, supplier assurance assessments and security schedule contract negotiation.
  • Provide high-quality professional advice to business units and contract leads in areas of Corporate Security and supplier security assurance, articulating the practical risks and business impact, and agreeing solutions.
  • Support the ongoing identification and implementation of improvements to the Supplier Security Assurance framework to reflect the changing threat environment and best practice assurance approaches
  • Perform security assessments of suppliers based on their criticality, recording results accurately and initiating appropriate assurance response.
  • Produce high quality, informative and accurate reports in respect of supplier security assurance assessments.

Requirements:

  • Significant experience of providing security supplier assurance in a complex global organisation.
  • In-depth knowledge of ISO standards in relation to security and business continuity.
  • Excellent stakeholder management, communication and influencing skills.
  • Thorough understanding of supplier governance, understanding of security management processes, practices and technical countermeasures.
  • Ability to analyse complex information and identify key and relevant points, including communicating in a relevant and easy to understand manner.
  • Professional qualifications such as CISSP, CISM, CISA, CRISC, ISO 27001 Lead Auditor, ISO 22301 Lead Auditor by a recognised professional body.
What we offer:
  • A dynamic environment where innovative ideas are always welcome;
  • A collaborative community where your professional goals and work are supported by a diverse team;
  • Access to internal trainings through the company university and external trainings via other providers;
  •  A supportive internal coaching and mentoring culture;
  • Opportunities to participate in company activities and events;
  • Corporate assets, including a laptop and mobile phone (unlimited EU talk + 20GB data)
  • Discounted fleet services for employees and their friends & family
  • Cafeteria package;
  • Private Medical Services;
  • Employee Assistant Program to support your wellbeing and mental health;
  • To ensure our colleagues’ health & safety we are working from home until the end of the pandemic. In the long run we will be meeting each other max 2 times/week in our fully refurbished, digital office.