PrecisionERP is seeking a Cyber Security Analyst to manage supplier risk. The contract is for 6 months to start at our Toronto client. Work is hybrid (min. 3 days per week).
You will manage the supplier risk assessment for new vendors in security, privacy, and business continuity management (BCM).
Requirements:
- At least five years experience an information technology or a privacy professional.
- Relevant industry certifications (e.g. CISSP, CISM, CRISC, CISA).
- Knowledge of SOC2 and ISO reports.
- Technical experience in security solutions for multi-tier cloud-based applications
- Strong knowledge of IT control frameworks, such as COBIT, ISO 27001, and the NIST cyber security framework
Duties:
- Perform ongoing security risk assessments and monitor risk of existing suppliers.
- Audit suppliers to ensure they are meeting control obligations.
- Analyse vendor risk and customer relationships
- Recommend and implement enhancements to the supplier risk management processes.
- Prepare security risk reports, dashboards, and operational metrics