Career

ACCOUNTABILITIES

• Provides holistic security advice through network, host, database, device, and people/process environments to a wide range of internal business stakeholders.
• At advanced stages, leaders of business units and embedded security champions may provide software or portfolio-level advice.
• In one or more fields, it usually provides deeper knowledge and experience.

** Candidates must be W2

Day-to-Day Activities:

• Supervise the evaluation procedures and TPRM workflows
• Creation & development of framework and policies
• Cooperation with SMEs in cyber security, resilience, and privacy to develop harmonized requirements
• Corporating with business and purchasing departments to give security processes into the business workflow
• Presenting the status of the project and developing presentation material including metrics.
• Build up and maintaining the project plan.
• Build up & develop TPRM baseline evaluation criteria

Must-Have Skills:

• Practical experience in a Third-Party Security Risk Management Role
• Industry-standard cybersecurity certification from ISC(2), SANS, or similar entity.
• Collaborative work style
• Extensive written, spoken, and presentation skills.
• Practical understanding of market and industry trends
• Good experienced in big enterprise business context

• Works with clients to mitigate compliance risks in terms of safe product setup, implementation and how they match and conform to relevant security protocols and guidelines.
• Guides clients in the development and enforcement of security control
• Prioritizes own work and may have responsibilities to instruct, guide, delegate and supervise the work of more junior team members
• Understands and contributes to the approach, regulation, guidelines, and processes for cybersecurity
• Build and offer workshops on cybersecurity issues to professional and non-technical audiences.
• Translates cybersecurity specifications for a single customer, software or project into specific frameworks, apps and model designs