1 week ago Be among the first 25 applicants
Direct message the job poster from Human Profiler - IT Outsourcing & Recruitment
Business Unit Manager na Human Profiler - IT Outsourcing & Recruitment
With over a decade's experience in the market, Human Profiler is a consultancy specialised in IT Outsourcing and qualified Recruitment & Selection processes. We act with total flexibility, adapting to the needs of our clients and partners. We are looking for a Cybersecurity Consulting to join our team.
Main responsibilities:
1. Third-Party (TP) Cybersecurity Assessments and Mitigation Controls
o Evaluate the cybersecurity posture of our new and existing third-party vendors.
o Identify potential risks associated with third-party access and data handling.
o Review vendor compliance with relevant regulations and standards.
o Develop and recommend mitigation controls to address identified TP risks.
o Enhance the configuration of the client TPRM tool to address mandatory requirements.
o Assist in implementing TP controls and monitoring mechanisms.
o Provide guidance on best practices for third-party risk management.
o Deliver detailed reports outlining TPRM findings, risk levels, and remediation plans.
2. Security controls maturity Assessments (CIS, ISO)
o Perform a gap analysis and maturity evaluations against the CIS Controls and ISO 27001, 22301.
o Assess existing InfoSec security policies, standards and procedures and actual implementations.
o Identify gaps, areas of non-compliance, weakness and opportunities for improvement within our security environment.
o Evaluate potential threats and vulnerabilities to critical assets to support identifying the priority of the maturity controls enhancements (prioritize controls based on likelihood and cyber impact).
o Provide actionable recommendations to address identified gaps.
o Develop a roadmap for achieving compliance with CIS and ISO controls improvements.
o Register identified gaps, recommendations, ETAs, to enhance security in the Client dedicated tracking platform.
o Suggest maturity improvements to align with industry best practices.
Job Requirements:
1. Proven track record of conducting third-party risk assessments and security assessments based on CIS and ISO 27000 family.
2. Excellent communication and collaboration abilities.
3. Strong analytical and problem-solving skills.
4. Good level of written and spoken English.
5. Understanding of Cyber Security concepts and areas.
6. Hybrid System (3 times a week in the office).
7. Relevant certifications (e.g., CISSP, CISA, CISM, CRISC, OneTrust certs., other TPRM cert.).
8. Organizational certifications or partnerships with recognized cybersecurity entities.
What we offer:
1. Dynamic project for a nationally/internationally recognised client.
2. Competitive salary according to proven experience.
3. Integration in a dynamic and diverse team.
4. Personalised support.
5. Corporate events and team buildings.
6. Exclusive benefits through our network of partnerships (health, well-being, travel, gastronomy, culture, leisure, training, etc).
Recruitment, selection, and integration process:
The process begins with a phone or videoconference call. We guarantee full support during the integration process to support the career development of our new employees.
Seniority level
Not Applicable
Employment type
Full-time
Job function
Information Technology
Industries
IT Services and IT Consulting
#J-18808-Ljbffr