Third Party Risk Management Role - Information Security Domain

Must to have:

- Relevant industry experience of 3 to 9 years

- Strong domain experience in Third Party Risk Assessment or Vendor Security Risk Assessment or IT Security reviews or IT audits or ISMS / ISO 27001 reviews or ISMS / ISO 27001 implementation

- Exposure to at least one of the following domains - Business Continuity, Cloud Computing, Privacy, Network Management, Technology Asset Management, Threat and Vulnerability Management domains

- ISO 27001 LA (Lead Auditor) or ISO 27001 LI (Lead Implementer)

- Strong multi-tasking and organizational skills

- Effective communication skills including verbal, written and presentational skills

- Proven ability to work effectively both independently and in a team based environment

- Actively contribute to improving operational efficiency

- Ability to manage teams locally and remotely

- Effective training and collaboration skills

- Demonstrate willingness to be flexible and adaptable to changing priorities

Good to have:

- Domain specific certification including one of the following: CISSP, CRISC, CCSP, CISA, CISM

- Understanding of Information Security Standards and Frameworks like NIST, SANS, CIS, ISO 22301, PCI-DSS, OWASP