Location: Belgium, France, Netherlands (UK candidates must be via an accredited umbrella company)
On-site Requirement: Minimum 8 days per month in Belgium
Important:
Do not contact the Hiring Manager directly. Failure to follow this request will result in rejection.
Submission Limit: A maximum of 3 CVs per submission.
About the Role
Our client in the Financial Sector is seeking an experienced IT Security Manager to oversee Third-Party IT Security Risk Management. This role is crucial in ensuring that external third parties comply with security requirements, reducing potential cyber risks associated with outsourcing.
Key Responsibilities
Third-Party Assurance Lifecycle:
Conduct Third-Party Due Diligence, risk profiling, onboarding, and recertification.
Assess and provide an opinion on Third-Party Security Posture and define remediation plans where necessary.
Support contract management by ensuring security expectations align with risk profiling.
Perform necessary security checks during the offboarding process of third parties.
Monitor and respond to security incidents involving third parties, including defining remediation actions, risk evaluation, and coordinating responses with stakeholders.
Required Skills & Experience
Technical Skills:
Proven experience in Third-Party Security Management (e.g., Due Diligence, Risk Assessments, Security Controls).
Strong knowledge of control frameworks: ISO 27000, NIST, CIS-18, COBIT-5.
Swift CSP framework experience is essential.
Familiarity with financial sector regulations such as DORA, ESMA, and outsourcing regulations.
Experience in contract review for information security clauses.
IT Security Certifications such as CISSP, CSSLP, CCSP, CISM, CISMP, GCIH, CEH are a plus.
Soft Skills:
Strong organizational, prioritization, and reporting skills.
Excellent written and verbal communication skills.
Self-motivated and proactive with strong problem-solving abilities.
Ability to thrive in a fast-paced, evolving environment.
Strong collaboration skills to engage with business executives and stakeholders.
Capable of handling multiple projects under tight deadlines while driving cultural change within the organization.
If you are passionate about IT security and third-party risk management within the financial sector, we encourage you to apply!
