Dyrektor Banku

Praca Dyrektora Banku

Praca: Third Party Risk Analyst [rekrutacja online]


Third Party Risk Analyst [rekrutacja online]
Miejsce pracy: Katowice
We are looking for you if:
  • You have good Communication skills to clearly and succinctly express ideas, facts and opinions fluently both in speaking and writing,
  • You have Problem Analysis and Solving Ability to identify problems, analyze key information and make connections, in order to find appropriate solutions,
  • You are oriented on Result and Delivery to complete tasks and achieve results in an efficient, timely and high-quality manner,
  • Bachelors Degree in Computer Science, Information Systems, or other related field, or equivalent combination of work experience and education,
  • Effective communication in both written and verbal manner to influence both technical and non-technical audiences,
  • Familiarity with third party risk assessment methods and control frameworks such as ISO27001, NIST, COBIT, SOC2,
  • Basic risk management knowledge.
Youll get extra points for:
  • Experience in Third Party Security Ratings solutions,
  • Experience in financial institution,
  • Exceptional Microsoft Office ability - especially Excel and PowerPoint is a plus.
  • Certificates confirming required skills (such as ISO27001LA, CISA, CISM, CISSP).
Information about squad:

 

Team is focused on widely understood compliance with ING governance and data protection / management within 1st Line of Defense. Tasks include preparation, maintenance and execution of relevant processes and procedures, communication with 2nd Line of Defense, preparing awareness trainings, support for employees and required reporting. Working as part of a team, the analyst will leverage various sources of data to assess the security program and associated practices ING suppliers globally, highlight risks and control gaps associated with the suppliers security program, categorize the potential risks based on severity, and identify potential mitigation activities. The person will work both independently and with the global TPCRM team, as well as with both internal and external stakeholders, to determine business risk of control gaps identified during control and risk assessments. The analyst will collaborate across business lines leading risk assessments and work with other teams within the organization.

  • contract of employment
    type of contract
  • 7:00 - 9:00 - 15:00 - 17:00
    work hours
  • ul. Konduktorska 35, Katowice
    this is the location of our office
Scope of duties:

40%- Conducting information security assessments of suppliers (third party vendors and cloudservices) including advising management on how to mitigate any identified risks
20%- Performing third party compliance risk tracking, trending, analysis, and executivereporting
20%- Provides guidance to business partners toensure compliance with information security regulatory requirements and internal policy
15%- Advising procurement and project teams on vendor assessment requirements and performing vendor risk assessments for new vendors orservices
5%- Supports the evolution and continuous improvement of vendor risk assessment processes including the development and maintenance of procedures, artifacts, andmetrics to be used in the assessment of suppliers
Your development
  • professional development
  • certificates and knowledge development
  • training budget
  • access to the newest technologies
  • international projects
  • free English courses
Your health, well-being and family
  • provate medical care
  • 50% funded Multisport Card
  • bicycle parking
  • chillout rooms
  • integration events and Stay Fit program
Working conditiions
  • stability of employement
  • fully equipped workstations
  • kitchen
We kindly inform you that we will get in touch only with the chosen candidates.

If you agree for processing your data for future recruitment offers, we will keep the data for a year.

All information concerning the way we process personal data can be found here here.
APLIKUJ TERAZ