Freelance Third Party IT Security Manager contractor needed

Belgium based or UK based.

Mostly remote

long term contract

Rate per day

ASAP start

Key responsibilities: Third-Party Assurance Lifecycle & Support the transformation of the activity

Execute Third Party Due Diligence, risk profiling, onboarding, re-certification; Make an opinion on Third Party Security Posture; Define Remediation where applicable

Support Contract Management - ensure that the security expectations included in the contract are proportionate to the risk profiling

Contribute to the DORA regulation implementation - translate DORA requirements into actionable processes & materials (contract, assessment templates) to be used by the team.

Core Skills

• Previous experience in Third Party Security Management (ie Due Diligence, etc.)
• Knowledge of control frameworks, eg, ISO 27000, NIST, CIS-20, COBIT-5
• Knowledge of relevant regulations, ie DORA, Outsourcing, ESMA, etc.
• Previous experience in supporting or delivering of large scare regulatory change initiative
• Experience with contract review of information security schedules and terms
• Knowledge of financial markets, FMIs and CSD operations is an advantage
• Knowledge of Swift CSP framework is advantage.
• IT Security Certification such as CISSP, CSSLP, CCSP, CISM, CISMP, GCIH, CEH, etc. is an advantage.

Email (see below)