Review develop and implement vendor security agreements and security exceptions to control standards
Maintain an inventory of key vendors and their impact to information security risks
Conduct technical security reviews and assessments of vendors and suppliers
Monitor and track remediation activities to address weaknesses and issues discovered through security reviews or audits of vendors
Develop strategies to ensure compliance with security standards as well as regulatory and audit issues
Provide periodic reporting including assessment findings and recommendations for improvementIdentifie and communicate the associated risks of vendor provided processes and services in support of critical operations
Determine whether the third party entity has an acceptable information security program
Skill Experience
College degree in Computer Information Systems Computer Science Information Systems Management or equivalent professional experience
A minimum of three 3 years in excess of degree requirements stated above of progressively responsible experience in Information Security
Understanding of the supplier risk assessment process from start to finish Supplier audit skills
Familiarity of RSAM ServiceNow CMDB tools
Have experience with understanding a workflow process and improve inefficiencies and communicate changes and process to others unfamiliar with the process
Critical thinking skills to be able to deviate or make concessions when needed
