Supplier Assurance Consultants-UK Remote-£40,000-£60,000+Benefits
I'm currently working with with a market leading company cyber company looking for a Supplier Assurance Consultant, with an expertise in information security to join the team. This company has paved ways in their market and is becoming a leader within it. You will have the opportunity to work with some exciting financial and fintech companies!
As a Supplier Assurance Consultant, you will play a critical role in assessing and managing the cybersecurity risks associated with suppliers and vendors. You will collaborate with various stakeholders, including procurement teams, vendors, and internal cybersecurity teams, to establish and maintain a robust supplier assurance program.
This role will involve:
Conduct thorough assessments of suppliers' cybersecurity capabilities and practices, identifying potential vulnerabilities and risks.
Develop and implement comprehensive supplier assurance frameworks and methodologies, aligning with industry best practices and regulatory requirements.
Evaluate supplier contracts, agreements, and service level agreements (SLAs) to ensure they incorporate appropriate cybersecurity controls.
Collaborate closely with internal stakeholders, such as procurement, legal, and IT teams, to ensure that cybersecurity requirements are effectively communicated and implemented.
Provide guidance and support to suppliers in improving their cybersecurity posture through regular engagement, training, and awareness programs.
Stay up to date with emerging cyber threats, vulnerabilities, and industry trends to enhance the effectiveness of supplier assurance practices.
Minimum of 1 years of experience in cybersecurity, with a specific focus on supplier assurance.
Strong knowledge of cybersecurity principles, frameworks, and best practices (e.g., NIST Cybersecurity Framework, ISO 27001).
Familiarity with supply chain risk management methodologies and vendor assessment frameworks.
Experience in conducting supplier risk assessments and evaluating third-party security controls.
Industry certifications such as Certified Information Systems Security Professional (CISSP) or Certified Third Party Risk Professional (CTPRP) are highly desirable.
Ability to adapt to a dynamic and fast-paced environment, managing multiple priorities simultaneously.
Joining this organization will provide you with a unique opportunity to make a significant impact on supplier cybersecurity practices and contribute to the overall resilience of supply chains.