Remote Third-Party Security Review Lead
Dentons
๐Remote - South Africa
Please let Dentons know you found this job on JobsCollider. Thanks! ๐
Job highlights
Summary
Join Dentons, the world's largest global law firm, as a Third-Party Cyber Risk Manager. Conduct third-party vendor security assessments and manage supply chain threats from a cyber security perspective.
Requirements
- A bachelorโs degree from an accredited college or university
- At least 3- 5 yearsโ management experience
- 5+ yearsโ experience as a skilled practitioner in third-party or cyber/IS Risk Management
- Skilled practitioner in identifying cyber security risks in cloud services and providing mitigating controls
- Skilled practitioner in the mitigation and/or remediation of cybersecurity vulnerabilities
- Strong practitioner knowledge of third-party risk strategies and best practices
- Relevant industry certifications e.g., CRISC, CISM, CISA, ISO/IEC 27001 Lead Auditor
- Working knowledge and experience with industry standards and best practice including the ISO/IEC 27001, ISO/IEC 27017, ISO/IEC 27018 and NIST Cybersecurity Framework
Responsibilities
- Lead the third-party cyber risk management lifecycle, from executing onboarding security reviews to the offboarding of vendors
- Develop an annual calendar of third-party re-assessment cyber security reviews on cyber risk presented to the organization
- Define and introduce into production required third-party security assessments based on services consumed by the organization that will complement current security assessments
- Identify and create appropriate cyber security risk MI across the third-party vendor estate
- Identify and implement improvements in current third-party processes and procedures
- Conduct third-party cyber security assessments and identify controls to mitigate cyber risks to the organizations cyber security posture from vendor relationships
- Follow established third-party cyber security risk management program guidelines to complete the onboarding of third-party vendors
- Collaborate with internal business teams and various risk/compliance subject matter experts to address and/or mitigate identified or potential cyber security risks
- Collaborate with various stakeholder teams to identify and communicate cyber security risk from third-party relationships and drive residual risk to acceptable levels
- Conduct reviews of IS clauses included in third-party contracts to help strengthen legal security posture for the organization
- Design and deliver training and education of staff in third-party risk management processes as needed
- Complete tasks with minimal supervision, in a collaborative, supportive environment
- Perform other cyber security risk duties as needed
- Lead the third-party cyber risk team members
- Supervise and manage junior team members
Benefits
Work from home
Share this job:
Disclaimer: Please check that the job is real before you apply. Applying might take you to another website that we don't own. Please be aware that any actions taken during the application process are solely your responsibility, and we bear no responsibility for any outcomes.
Similar Remote Jobs
- ๐ฐ$120k-$200k๐United States
- ๐ฐ$115k-$140k๐United Kingdom
- ๐South Africa
- ๐ฐ$107k-$113k๐United States
Technology Risk and Resilience Specialist
City and County of San Francisco
๐ฐ$147k-$184k๐United States- ๐United States
- ๐ฐ$145k-$175k๐Worldwide
- ๐Worldwide
- ๐Worldwide
Please let Dentons know you found this job on JobsCollider. Thanks! ๐