Accessibility Links

Third Party Security Governance Manager

  • Job reference: ML -46230
  • Location: London
  • Job type: Contract
  • Start date: Not specified
  • Contact: Not specified
  • Sector: Information and Cyber Security
  • Salary: £650 - £700 per day

Security Supplier Governance Manager

Large scale financial services firm require a Security Supplier Governance Manager to oversee third party security risk for all the firms third-party suppliers and oversee the governance of all security service providers.

The Security Supplier Governance Manager will have the following experience:

  • Assist the Head of Security Management and Assurance in defining the third party security assurance framework, schedule and corresponding metrics / KPIs for measuring the programme effectiveness
  • Strong understanding of cyber controls and cyber risks to identify and evaluate control effectiveness and identify any potential gaps between cyber risks and existing cyber controls
  • Basic understanding of various cyber technologies such as endpoint protection, DLP, insider threat protection and mobile device protection
  • Ability to engage with third-party suppliers to perform control-level technical cyber risk assessments
  • Oversee the cyber security assessment of third-party suppliers performed by the Third Party Assurance Analysts and provide quality assurance and sign off of final reports.
  • Collaborate with supplier relationship managers to maintain an up-to-date inventory of third-party service providers along with their associated contractual obligations, data access requirements and cyber risk levels.
  • Manage and oversee the classification of third-party suppliers based on their risk posture, and periodically review and reprioritise third-party suppliers based on their current risk posture.
  • Manage the governance and service delivery of Tier 1 and Tier 2 security service providers by working with service owners to identify any delays or gaps in Service Level Agreements (SLAs) and steps required to remediate these.
  • Serve as initial point of escalation for unresolved security issues related to any third party security service provider to ensure risks are mitigated in timely manager as required by internal and external audit.

If interested, please send your CV to molly.lamb@lafosse.com

Related jobs
Technical Security Architect
  • Contract
  • North London
  • £700 - £750 per day
  • Reference 96959
  • IAM Architect Tech lad platform business currently require an Architect to take ownership for the design and implementation of an IAM Framework around a brand-new digital platform. The successful Security Architect must have previously worked in a product led, digital disruptor environment...
Read more
Head of Information Security
  • Contract
  • North West England
  • £550 - £750 per annum
  • Reference 47107
  • Head of Information Security - Initial 6 Month Contract My North West based client are looking for a Head of Information Security to develop, maintain and police suitable Security controls and policies and to provide early guidance to all IT projects / developments. In this role you will be responsible for advising on...
Read more
DLP Security Engineer (Symantec)
  • Contract
  • London
  • £600 - £650 per day
  • Reference ML - 47080
  • DLP Security Engineer (Symantec) Blue Chip organization require a Data Loss Prevention (DLP) Engineer to bolter their DLP practice during their large scale Cyber Transformation. The DLP Security Engineer will have the following experience: Implemented new security tools and processes to enhance DLP strategy e.g...
Read more
Latest articles