This role involves conducting information security risk assessments for technology assets and third-party vendors across all company brands and regions
Job Summary
This role involves conducting information security risk assessments for technology assets and third-party vendors across all company brands and regions.
The successful candidate will partner with Procurement, Legal, and Digital Technology teams to identify, assess, and resolve internal and third-party security risks.
You will maintain an information security issue register and support the team in meeting governance, risk, and compliance obligations.
Matching Summary
This role involves conducting information security risk assessments for technology assets and third-party vendors across all company brands and regions.
Skills & Requirements
Must-have
Bachelor's degree in technical field
Minimum 3 years GRC or risk management experience
Experience with SOC2 and ISO 27001 reviews
Nice-to-have
CISSP, CISA, CRISC, Sec+, or CC certifications
Strong communication skills for non-technical audiences
Ability to collaborate across diverse stakeholders
Key Requirements
Bachelor's degree in technical field or equivalent
3+ years experience in GRC, risk management, or infosec
CISSP, CISA, CRISC, Sec+, or CC certification preferred