Job details
Discipline: | |
Reference: | Ad-49870 |
Posted: | about 3 years ago |
Job description
About the role
Having seen a significant period of growth and stability in 2020, this globally recognised Property company is looking for an experienced Cyber Risk Analyst with a background with information security. In this role the Cyber Analyst will play a pivotal role working with both 3rd Party Vendors to identify risks. You will enjoy working in a team based environment that has strong development and progression opportunities.
Responsibilities will include:
- Assist in conducting security solutions risk analysis for various areas of the business to enable sound cyber risk management
- Assessing operational effectiveness of various IT and other operational systems and/or processes used by different areas of the business.
- Supporting cross-functional teams with project relating to cyber security and vendor risk management.
- Demonstrate a thorough understanding of information systems
- Provide implementation, timing and response advisory to leadership relative to vendor risk remediative actions
- Liaising with security vendors, suppliers, service providers
- Vendor service management
- Vendor governance and tracking, primary contact for a managed service
- Regular reviews making sure service is effective
- Internal stakeholder management
- Manage issues/risks/dependencies
- Monitor and analyse performance of vendors to ensure contractual service levels are achieved (SLA’s)
- Coordinate vendor on-boarding and off-boarding activities internally
- Oversee and facilitate the interaction between vendors and internal stakeholders to deliver changes to technology, process and contractual terms
- Project manage transition of or change to services provided by the vendor
- Identify opportunities for improvements in vendor engagement, processes and products and liaise with internal stakeholders to deliver these improvements
- Provide relevant, accurate and timely reporting on vendor performance in risk mitigation and external posture
- Conduct meetings and to perform regular audits and compliance checks
- Assist in developing policies and procedures, as required
- Relationship building and stakeholder engagement
- Manage third party risks effectively and efficiently
To be successful for this position you will need to display:
- Demonstrated knowledge of information security concepts, risk and controls concepts
- Understanding of regulatory requirements for managing risk
- Knowledge of incident management, disaster recovery and business continuity management
- Progress towards or completion of certifications is highly desirable e.g. CISSP, CISM, CCSP, CISA, OSCP, CEH, Security+, ServiceNow Risk and Compliance Implementation Specialist
- Experience in performing security threat and risk assessments and delivering projects relating to security strategy, governance, security architecture and capability improvement
- Technical experience in relation to cloud security, end point security, identity and access management or data protection will be strongly regarded
- Ability to work as part of a global team across multiple countries, cultures and time-zones
- Excellent written and verbal communications skills and the ability to clearly articulate complex security concepts to a broad and diverse audience
- Experience within IT software and Infrastructure
How to apply
If you have the above experience and want to join a fun, fast paced passionate team please forward your resume to julians@charterhouse.com.au or call me on 9641 2453.