Sony - Consultant - Risk Management
3.9
220+ Reviews
Risk Management Consultant
Job Description:
- Risk Management Expert with 6-8 years of experience in 3rd party Risk Assessments.
- Having ISMS Auditing skills are added advantage.
- ISO27001:2022 LA Certification mandatory.
- Candidate must be well versed with Risk Assessments performed and not restricting to checklist assessments.
- Need thorough knowledge of Information Security.
Role:
- Experience in conducting Business Impact Analysis and Risk Assessments for third-party companies / third-party applications / information systems with business stakeholders.
- Ability to identify information security risks and provide recommendations, including compensating controls for third-party companies / third-party applications / information systems.
- Summarize findings and recommendations in the risk report.
- Experience in communicating with business stakeholders / non-technical stakeholders to explain information security risks and mitigation plan.
- Review third-party contractual agreements to ensure alignment with internal policies.
- Conduct audits to verify the compliance to organization security policies / standards.
- Expertise in cyber security / information security standards / frameworks such as ISO27001, NIST CSF, etc.
- Experience with TPRM tools such as Archer, OneTrust is an advantage.
- Experience working with geographically distributed teams.
- Excellent organizational, presentation & communication skills and ability to handle multiple assessment request and deliverables it within the specific timelines.
Didn’t find the job appropriate? Report this Job
