Supply Chain Security Expert / 3rd party risk
| Type: | Freelance |
| Start: | Per direct |
| Duur: | 12 maanden / kans op verlenging |
| Geplaatst op: | 10 mei 2024 om 11:53 uur |
| Specialisme: | Beveiliging |
| Tariefindicatie: | € 82,50 per uur |
Opdrachtomschrijving
ABN AMROCandidate MUST live in Netherlands at this moment -
Initial contract till 08-04-2025 -
Possible extension: Yes -
40 hours per week
Govern and manage IT vendor relationships in terms of performance regarding the security aspects of the underlying contractual obligations;
Execute Vendor Security Risk Assessments and perform follow up actions. Focus on the risks that matter, translate them into the business context and help your stakeholders to address security challenges;
Ensure that information security risks are identified and managed effectively throughout all the stages of the relationship with external vendors;
Review the applicability and the quality level of assurance reports issued by the third parties;
Ensure continuous improvements are achieved both in the quality of reporting and service provided by the third party;
Manage the IT security related part of a contract with the third party provider. Work together with 2nd line functions such as legal, compliance, procurement and other internal parties on contractual changes;
Help solving security-related questions, take initiative and escalate in time if needed;
Signal improvements related to the way of working inside the team and contribute to improving the excellence of our service offering;
Stay up-to-date with emerging cyber security trends and the latest developments in the field of technology, information risk and threats, actively share this knowledge with your colleagues and help to determine if/when to integrate them into the assessment program.
With the following results (SMART)
Signal improvements related to the way of working inside the team and contribute to improving the excellence of our service offering; which are based upon our expected DORA impact
HBO or University degree
Knowledge and experience with setting up projects & deliverables within supply chain security / TPSRM
Experience in executing information security risk assessments;
Knowledgeable on one or more areas such as security processes, technology architectures, network security, application security and vulnerability management;
Excellent in stakeholder management.
Hands-on, self-organised, willing to finish and deliver (execution power)
A strong ability to translate technical risks into business risks and vice versa;
Service oriented professional, you enjoy taking on an internal consultancy role
Organisatie
Korte omschrijving van de organisatie
