Senior Third-Party Cyber Risk Management Analyst

7 dni temu

Warszawa, Mazovia, Polska TN Poland Pełny etat

Social network you want to login/join with:

Senior Third-Party Cyber Risk Management Analyst, Warsaw

Client: Circle K

Location: Warsaw, Poland

Job Category: Other

EU work permit required: Yes

Job Reference:

8f15f5d539c2

Job Views:

3

Posted:

15.03.2025

Expiry Date:

29.04.2025

Job Description:

Circle K Business Centre is a shared service center which supports Circle K Europe operations through a wide range of services within Finance & Control, Information Technologies, Human Resources, Transport Fuel and Customer Service.

Circle K is part of the Canadian company Alimentation Couche Tard Inc. (Couche-Tard), one of the world's largest joint-stock convenience retail companies, listed on the Toronto Stock Exchange (TSE). It has operations in North America, Europe, Asia and the Middle East. It has approximately 12,300 sites across its network in North America, Europe, Asia and the Middle East. We are a family of more than 100,000 merchants making it easy for our customers around the world.

The Third Party Cyber Risk Management (TPCRM) team is recruiting a senior third-party cyber risk analyst who will serve as a subject matter expert. This role provides subject matter expertise, managing, and performing key functions necessary to satisfy the Third-Party Cyber Risk Management program, including program projects and strategic initiatives. This role is accountable and responsible for providing expert risk analysis and information to business and risk management leadership. Additionally, the analyst establishes rapport with the business to support the company's overall IT and security governance, risk management, and compliance program with third-party vendors. The role supports implementing and maintaining our third-party platform and policies and a comprehensive control framework with enterprise-wide third-party risk management. Provides expert guidance to department management and business lines to ensure compliance and mitigation of risks. Contributes to objectives that support department strategic goals. This position reports to the third-party cybersecurity management senior manager.

Key Responsibilities:

  1. Develops and maintains strong working relationships with business areas throughout the enterprise. Advises business lines and IT team on security requirements and best practices.
  2. Build and foster a strong rapport and relationships across the enterprise to collaborate with key stakeholders, including Procurement, Legal, Physical and Cybersecurity, Compliance, Privacy, Technology, and other business functions to identify, assess, and design plans to mitigate and monitor risks associated with third parties.
  3. Perform in-depth risk domain and cybersecurity risk assessments; assess the overall security stance of third-party entities; detect vulnerabilities and areas of noncompliance; and develop mitigation strategies aligned to industry standards.
  4. Leverage intelligence, industry best practices (NIST, ISO), and the regulatory landscape (such as GDPR, SOX) to ensure a rounded assessment of the risk posed to the organization.
  5. Create and present detailed, high-quality risk reports, clearly articulating risk findings with recommendations, and maintain a comprehensive risk assessment and related documentation inventory.
  6. Coordinate third-party risk management activities, including communicating with vendors about cybersecurity zero-day vulnerabilities.
  7. Key participant in strategic planning activities, cybersecurity projects, or District or System priorities, including workgroups and initiatives as requested.
  8. Collaborates, as appropriate, with Enterprise Risk Management, Legal, Procurement, and other risk functions to maintain an Enterprise Third Party Risk Management Program.
  9. Key participant in developing and enhancing processes and procedures for the Third Party Cyber Risk Management program, including due diligence activities, continuous monitoring, and frameworks to enhance the efficiency and effectiveness of the overall program.
  10. Understanding business needs and dedicated to delivering high-quality, prompt, and efficient service.
  11. Knowledge of relevant regulations, standards, and frameworks related to third-party risk management, such as NIST 800-53, NIST CSF, NIST RMF, SOX, GDPR, and other industry-specific frameworks.
  12. Must be a self-starter and comfortable operating independently and be able to navigate with autonomy; provide updates on progress, re-confirm priorities, be flexible, and seek to clarity/help in the event of roadblocks.

Position Requirements:

  1. Bachelor's Degree
  2. 3-5 years of work experience related to Third Party Risk Management, supplier risk management, vendor risk management, and/or cyber risk management.
  3. Strong knowledge of information security concepts and controls (including AI and Cloud Environments)
  4. Understanding of regulatory requirements pertaining to information security, privacy, and/or data security
  5. Ability to consult with customers in a service advisory capacity
  6. Self-driven; able to manage schedules, meet deadlines, coordinate with others, perform tasks, and work independently with minimal supervision
  7. Strong project management skills, with the ability to work with multiple customers, deadlines, and priorities
  8. Organized and effective with time and meeting management
  9. Strong interpersonal and communication skills with the ability to ask questions, actively listen, escalate roadblocks, and interact effectively at multiple levels
  10. Strong analytic skills and attention to detail
  11. Preferred Certifications: CTPRP, CISSP, CRISC, CISM, CISA

What do we offer?

  1. Contract of employment
  2. Annual bonus
  3. Private medical care
  4. Possibility for author's tax deduction
  5. Cafeteria Platform/Multisport
  6. English lessons subsidized by the company
  7. Group insurance
  8. Attractive discounts for products and services at our stations
  9. Employee stock purchase plan
  10. ICAS
  11. Modern and convenient office that you can virtually visit here
  12. Trainings & possibility to develop skills in a wide international environment
#J-18808-Ljbffr

  • Senior Third-Party Cyber Risk Management Analyst

    1 tydzień temu

    Warszawa, Mazovia, Polska Alimentation Couche-Tard inc. Pełny etat

    Job DescriptionCircle K Business Centre is a shared service center which supports Circle K Europe operations through a wide range of services within Finance & Control, Information Technologies, Human Resources, Transport Fuel and Customer Service.Circle K is part of the Canadian company Alimentation Couche Tard Inc. (Couche-Tard), one of the world's largest...

  • Third Party Risk Analyst – Cybersecurity

    6 dni temu

    Warszawa, Mazovia, Polska TN Poland Pełny etat

    Social network you want to login/join with:Third Party Risk Analyst – Cybersecurity, WarsawClient: Groupe SIILocation: Warsaw, PolandJob Category: OtherEU work permit required: YesJob Reference: 26d70eec20f6Job Views: 55Posted: 23.01.2025Expiry Date: 09.03.2025Job Description:Join one of the largest financial institutions as a Third Party Risk Analyst. The...

  • Third-Party Risk Analyst

    7 dni temu

    Warszawa, Mazovia, Polska TN Poland Pełny etat

    About the JobThird-Party Risk AnalystWe are seeking a highly skilled Third-Party Risk Analyst to join our team at TN Poland. In this role, you will be responsible for developing and maintaining strong relationships with business areas to advise on security requirements and best practices.Develops and maintains strong working relationships with business areas...

  • Third Party Risk Manager

    5 dni temu

    Warszawa, Mazovia, Polska Standard Chartered Pełny etat

    Join us as a highly skilled and motivated professional and contribute to shaping the future of banking! We're seeking a talented individual to join our team as a Third Party Risk Governance Process Expert.The ideal candidate will have a deep understanding of risk management principles and practices, particularly in the context of third-party risk management....

  • Senior Third Party Security Risk Manager

    2 dni temu

    Warszawa, Mazovia, Polska Standard Chartered Pełny etat

    About the Role:We are seeking an experienced Senior Third Party Security Risk Manager to join our team. In this role, you will be responsible for effectively performing third party security reviews and ensuring quality and timely execution. Your portfolio will include reviewing Cloud Service Providers (CSP), global technology, Functions (e.g. Legal, Finance,...

  • Third Party Risk Governance Expert

    6 dni temu

    Warszawa, Mazovia, Polska TN Poland Pełny etat

    TPRM Team Description:TN Poland's TPRM team is responsible for defining, maintaining, and overseeing the third-party risk framework, policy, and inventory following management expectations and best practices.Your Key Responsibilities:Work with the TPRM Lead on developing and implementing a robust global third-party risk management program.Conduct...

  • Risk Analyst

    2 tygodni temu

    Warszawa, Mazovia, Polska Bain & Company Pełny etat

    The roleThe Risk Analyst, Third Party Risk Management will report into a Senior Manager of the TPRM Execution team. The Analyst will be part of a teamlet responsible for the day-to-day execution of TPRM-related activities, and the development and maintenance of TPRM capabilities and will work in tandem with other risk analysts, as well as risk experts. The...

  • Third Party Risk Control Specialist

    7 dni temu

    Warszawa, Mazovia, Polska Standard Chartered Pełny etat

    We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. Our Central Outsourcing Management Team is seeking a seasoned professional to join us as a Third Party Risk Governance Manager. In this role, you'll support the team lead...

  • Technology & Cyber Risk: Senior Analyst - Cybersecurity Risk

    7 dni temu

    Warszawa, Mazovia, Polska TN Poland Pełny etat

    Social network you want to login/join with:Technology & Cyber Risk: Senior Analyst - Cybersecurity Risk, WarsawClient:11101 Citibank Europe plc PolandLocation:Warsaw, PolandJob Category:OtherEU work permit required:YesJob Reference:a92337ceb06bJob Views:20Posted:23.01.2025Expiry Date:09.03.2025Job Description:Come and join our newly established Cyber Risk...

  • Risk Management Consultant for Financial Institutions

    6 dni temu

    Warszawa, Mazovia, Polska TN Poland Pełny etat

    About the Job:TN Poland is seeking a highly skilled Third Party Risk Analyst – Cybersecurity to join our team in Warsaw.Your Key Responsibilities:Develop and implement a robust global third-party risk management program with the TPRM Lead.Conduct comprehensive third-party risk assessments and examine all relevant third-party risk domains.Oversee the...

  • Operational Risk Analyst

    6 dni temu

    Warszawa, Mazovia, Polska TN Poland Pełny etat

    Citi Solutions Center Poland is looking for an experienced Senior Compliance Risk & Controls Analyst to join our Cyber Risk Team in Warsaw. As a member of our team, you will play a critical role in identifying, assessing, and mitigating operational and compliance risks associated with our technology platforms.Responsibilities:Support the development of risk...

  • Corporate Third Party Oversight Operations – Senior Associate/Associate

    7 dni temu

    Warszawa, Mazovia, Polska TN Poland Pełny etat

    Social network you want to login/join with:Corporate Third Party Oversight Operations – Senior Associate/Associate (Legal Entity Broker), WarsawClient:Location: Warsaw, PolandJob Category: OtherEU work permit required: YesJob Reference: 548cd69f2ed1Job Views: 18Posted: 23.01.2025Expiry Date: 09.03.2025Job Description:If you enjoy partnering with contacts...

  • Manager, Third Party Security Assessment

    2 dni temu

    Warszawa, Mazovia, Polska Standard Chartered Pełny etat

    Key ResponsibilitiesEffectively perform third party security reviews and ensure quality and timely execution. Portfolio includes reviewing Cloud Service Providers (CSP), global technology, Functions (e.g. Legal, Finance, Property etc) third parties and performing technical deep dive assessments (where applicable) and activities related to TPSR process. The...

  • Senior Cyber Risk Analyst

    3 dni temu

    Warszawa, Mazovia, Polska Bayer AG Pełny etat

    Bayer AG is committed to delivering innovative solutions in life sciences and agriculture.About the RoleWe are looking for a highly skilled Sr Cyber Risk Analyst to lead our vulnerability management efforts in Digital Hub Warsaw.The ideal candidate will have extensive experience in IT auditing, vulnerability management, and penetration testing activities...

  • Technology & Cyber Risk: Senior Analyst - Technology Risk

    7 dni temu

    Warszawa, Mazovia, Polska TN Poland Pełny etat

    Social network you want to login/join with:Technology & Cyber Risk: Senior Analyst - Technology Risk, WarsawClient:11101 Citibank Europe plc PolandLocation:Warsaw, PolandJob Category:OtherEU work permit required:YesJob Reference:95271930957aJob Views:3Posted:15.03.2025Expiry Date:29.04.2025Job Description:Come and join our newly established Cyber Risk Team...

  • Cyber Risk Management Lead

    24 godzin temu

    Warszawa, Mazovia, Polska PepsiCo Pełny etat

    About the Role:The Senior Information Security Assessment Professional will join our Information Security Assessment (ISA) Lead Team, managed by Mohammed, within the Risk Management Leadership Tower, part of the Governance, Risk, and Compliance (GRC) organization of InfoSec. This role is a crucial part of our expanding global business, where we're seeking an...

  • Cyber Risk Director

    6 dni temu

    Warszawa, Mazovia, Polska TN Poland Pełny etat

    Are you looking for a career move that will put you at the heart of a global financial institution?By Joining Citi, you will become part of a global organisation whose mission is to serve as a trusted partner to our clients by responsibly providing financial services that enable growth and economic progress.Team/Role OverviewThe Technology and Cyber...

  • Senior Cyber Security Analyst

    2 tygodni temu

    Warszawa, Mazovia, Polska Digital Hub Warsaw at Bayer Pełny etat

    Senior Cyber Security AnalystWarszawaWarsaw, Masovian Voivodeship, PolskaWe are seeking a highly skilled Sr. Cyber Security Analyst responsible for our efforts in investigating vulnerabilities and assessing their impact on our systems. In this senior position, the analyst will conduct thorough assessments, communicate findings with asset owners and service...

  • Risk Management Software Engineer

    3 dni temu

    Warszawa, Mazovia, Polska Point72 Asset Management, L.P Pełny etat

    **About Us**Point72 Asset Management, L.P is a leading global alternative investment firm driven by a passion for innovation and excellence.We strive to deliver exceptional results for our investors while fostering a culture of collaboration, creativity, and continuous improvement.Job Summary:We are seeking a highly skilled Risk Management Software Engineer...

  • Technology & Cyber Risk: Senior Officer - Compliance

    4 dni temu

    Warszawa, Mazovia, Polska TN Poland Pełny etat

    Social network you want to login/join with:Technology & Cyber Risk: Senior Officer - Compliance, WarsawClient:11101 Citibank Europe plc PolandLocation:Warsaw, PolandJob Category:OtherEU work permit required:YesJob Reference:278020421a87Job Views:3Posted:02.04.2025Expiry Date:17.05.2025Job Description:The Cyber Risk Officer is part of the Regulatory Change...