Join a market-leading automotive organisation as a SCSA Senior Analyst. This is an exciting opportunity to contribute to the security and resilience of our client's supply chain. This initial 6-month contract offers the possibility of an extension for over 12 months and is signed off inside IR35.
You will play a crucial role in managing third-party information risks to acceptable levels through assurance activities and engagement with supplier organisations.
Responsibilities:
Identify, assess and reduce risks to a manageable level within the supply chain. Engage with suppliers to identify, assess and agree on security improvements to acceptable levels of risk. Monitor ongoing compliance of suppliers within defined schedules depending on the risk profile of the supplier. Ensure supply chain security risks are monitored and measured effectively and raise concerns and interventions accordingly. Skills/Must have:
IT audit/risk management, with examples of managing technology risk and IT compliance standards within an organisation. Knowledge of information security principles and best practices and experience in managing information security risk and controls in a regulatory environment. Good level of knowledge of standards and frameworks relating to information security risk management processes, frameworks, procedures and business continuity. Preferred certifications: CISA, CISM, ISO27001 lead auditor or CISSP (Nice to Have). Experience of managing suppliers against and/or knowledge of requirements of UNECE Regulation No. 155 - Cyber security and cyber security management system. (Nice to Have). Benefits:
View to Extension Salary:
Up to £500 Per day (Inside IR35)
#J-18808-Ljbffr
Identify, assess and reduce risks to a manageable level within the supply chain. Engage with suppliers to identify, assess and agree on security improvements to acceptable levels of risk. Monitor ongoing compliance of suppliers within defined schedules depending on the risk profile of the supplier. Ensure supply chain security risks are monitored and measured effectively and raise concerns and interventions accordingly. Skills/Must have:
IT audit/risk management, with examples of managing technology risk and IT compliance standards within an organisation. Knowledge of information security principles and best practices and experience in managing information security risk and controls in a regulatory environment. Good level of knowledge of standards and frameworks relating to information security risk management processes, frameworks, procedures and business continuity. Preferred certifications: CISA, CISM, ISO27001 lead auditor or CISSP (Nice to Have). Experience of managing suppliers against and/or knowledge of requirements of UNECE Regulation No. 155 - Cyber security and cyber security management system. (Nice to Have). Benefits:
View to Extension Salary:
Up to £500 Per day (Inside IR35)
#J-18808-Ljbffr
