Disclaimer: Hunt UK Visa Sponsors aggregates job listings from publicly available sources, such as search engines, to assist with your job hunting. We do not claim affiliation with Insight Global. For the most up-to-date job details, please visit the official website by clicking "Apply Now."
You will manage and own a diverse portfolio of vendor assessments, undertaking Information Security reviews using a defined methodology. From planning, reviewing vendor responses, vendor assessments, reporting of identified risks and provision of required remediation.
Given the nature of the role you will be providing guidance to both internal and external stakeholders across a global mandate.
- Assessing responses to a defined set of Information Security controls, ensuring quality and completeness of returns.
- Reviewing and assessing vendor responses. Identification of risk / vulnerabilities.
- Proposing supporting remediation activities relative to identified vulnerabilities. Liaising with key stakeholders to ensure appropriate escalation and timely remediation.
- Maintaining and producing detailed reporting as well contributing towards key risk indicators and team management information.
- The ability to articulate non-conformities both written and verbally. Advising on risk articulation, materiality and required actions to remediate. An adaptive communication style to reflect a diverse stakeholder audience across a global environment will be essential.
- Collating and assessing various Cyber intelligence sources to help provide greater insight as to the Vendors Security posture.
- Share knowledge and mentoring to colleagues, supporting queries and providing guidance in relation to Cyber Vendor Assurance.
- Attending meetings, workshops, acting as delegate for Manager when required.
- Actively contribute to the ongoing development of the Cyber Vendor Assurance team through constructive challenge, providing solutions, innovation and continual improvement.
- Reinforce TELUS Health's Customers First values in ensuring positive security outcomes for both external customers and internal stakeholders.
Qualifications:
- 4 + years of applied and practical Cyber Vendor Assurance experience. Ability to demonstrate expertise and application of knowledge, in terms of technical and softer skills that are required in managing a diverse vendor assurance portfolio.
- Bi-lingual (English + French, Spanish or German)
- Strong understanding of Security frameworks (ISO 27001 / 27036) and ability to identify vulnerabilities / areas of control enhancement.
- Adept at reviewing Vendor Security policies and standards to ensure appropriate scope and adequacy.
- Clear understanding of information security principles. Including risk management, organization of Information Security, vulnerability identification, Data Loss Prevention, Supply chain associated risks etc.
- Strong stakeholder management and interpersonal skills. Ability to engage and develop relationships across a broad range of geographies and sectors.
- Strong organisational skills, with the ability to coordinate and effectively self-manage your own portfolio of work, independently to ensure high quality and timely delivery.
- Pragmatic and balanced outlook relative to risk and impact with the ability to apply sound judgement.
- Strong communication skills (verbal and written)
- Strong analytical skills, attention to detail and coupled with capability to identify omissions/ gaps /areas of focus.
- Ability to accommodate travel and time away from home may be required.
