Third Party IT Security Manager

Third Party IT Security Manager (ISO 27000, NIST, CIS-18, COBIT-5, Swift CSP)

Duration: 1 year contract

8 days onsite per month with the team – the rest can be worked remotely

Rate: Flexible

UK contractors must use an Umbrella

IT and Cyber Risk Team

Role Description – IT Security Manager

The Third-Party IT Security Manager will be responsible for execution of risk-based IT Security controls for Third Parties.

Key responsibilities: Third-Party Assurance Lifecycle

• Execute Third Party Due Diligence, risk profiling, onboarding, re-certification; Make an opinion on Third Party Security Posture; Define Remediation where applicable
• Support Contract Management – ensure that the security expectations included in the contract are proportionate to the risk profiling
• Exit Management – performance of necessary security checks at the end of a contractual agreement with a Third Party
• Ongoing monitoring – Facilitate and support response to the, alerting and incident of external Third Parties (incl. definition of remediation actions, evaluate the risk, coordinate actions with internal stakeholders and third parties).

Core Skills

• Previous experience in Third Party Security Management (i.e. Due Diligence, etc.) is a must
• Knowledge of control frameworks, e.g., ISO 27000, NIST, CIS-18, COBIT-5
• Knowledge of Swift CSP framework is essential
• Knowledge of relevant regulations, i.e. DORA, Outsourcing, ESMA, etc.
• Knowledge of financial markets, FMIs and CSD operations is an advantage
• Experience with contract review of information security schedules and terms
• IT Security Certification such as CISSP, CSSLP, CCSP, CISM, CISMP, GCIH, CEH, etc. is an advantage.

Soft Skills

• Strong organisation, prioritisation management, coordination and reporting
• Excellent communication skills both written and verbal
• Be self-motivated and proactive, have strong, innovative and creative problem-solving skills, be open and welcoming to change, work comfortably in a constantly evolving environment and have an ability to remain calm under pressure and in the face of uncertainty.
• Collaborative. Work comfortably with business executives and stakeholders, within group settings or with team-members
• Change. Ability to handle multiple projects against tight deadlines whilst being instrumental in delivering cultural change throughout the organisation

Please do send across an up to date CV to eobiechefu@welovesalt.com

*Rates depend on experience and client requirements