3rd Party Security Analyst

3rd Party Security Analyst

- Inside IR35 - Initial 6 month contract
- London (3 days per week in the office)

The role will perform evaluation of third party and vendor engagements to identify and manage vendor risk which may include completion of risk assessments as well as conducting technical security reviews of our suppliers and partners.

Responsibilities:
- Evaluate third party risk and steer vendor relationships.
- Evaluates vendor responses to security questionnaires.
- Make recommendations on ways to mitigate vendor risk.
- Maintain vendor risk repository of artifacts including regular third party vendor certifications and assign risk scores to firm suppliers and partners.
- Conduct on-site audits of high-risk vendors reviewing security and controls.

Required Experience:
- Strong knowledge of risk management, vulnerability management, and third party risk.
- Possess a sufficient understanding of technical concepts including systems, networks and security architecture best practices in order to effectively evaluate risk and assess the effectiveness of controls.
- Strong and deep information security risk identification (includes Cloud services), assessment, and risk ranking experience

3rd Party Security Analyst

In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon DGH Recruitment Limited having first sought approval of its client to find candidates for this position.

DGH Recruitment Limited acts as both an Employment Agency and Employment Business