Area(s) of responsibility

Cybersecurity Third Party Risk Assessor –

Qualifications and Skillset:

• Bachelor's Degree in Information Security, Cyber Security, or related
• Experience in conducting cybersecurity third-party risk assessments and an understanding of the associated organizational infrastructure (e.g. Relevant internal controls, business processes, governance structures etc.)
• Strong understanding of the TPRM Framework, Risk Management and Information Security Practices
• Hands-on exposure to TPRM tools and technology solutions (e.g., GRC enablement solutions, such as Process Unity, Prevalent, Archer, ServiceNow, etc.).
• Demonstrated knowledge of standards such as ISO 27001/2, ISO 22301, ISO 27018, PCI – DSS, HITRUST, etc.
• Good knowledge of privacy regulations such as GDPR, CCPA, etc.
• Technical Cyber Security Certification through one recognised body such as SANS, ISACA, (ICS)2, CompTIA, Cisco, CERT, etc. Preference towards CISSP, CISA, CISM, CTPRP, CIPP, ISO 27001 Lead Auditor or Lead Implementer