Cybersecurity Third-Party Security Assessment Senior Risk Consultant

Unleash the future of cybersecurity — lead transformative third-party risk assessments with global impact!

Krakow-based opportunity with hybrid work model.

As a Senior / Expert Risk Consultant – Third Party Security Assessment, you will be working for our client, a leader in cybersecurity within the financial services and corporate sectors. You will play a pivotal role in guiding organizations through the complexities of cybersecurity risks associated with third-party engagements, helping to shape resilient and secure supply chains across the globe. This is a unique chance to influence cybersecurity standards and drive impactful change in a fast-evolving landscape.

Your main responsibilities:

• Lead end-to-end third-party security assessments, delivering high-quality consultancy insights to identify, evaluate, and mitigate cybersecurity risks.
• Collaborate with cross-functional teams and stakeholders to embed effective risk management practices within procurement and onboarding processes.
• Provide expert guidance to support the development and refinement of cybersecurity assessment methodologies, integrating new approaches within existing frameworks.
• Conduct quality assurance reviews to ensure assessment outcomes meet global standards and regulatory requirements.
• Engage with senior management, control officers, internal/external auditors, and regulators to facilitate reviews, examinations, and information requests.
• Facilitate training and knowledge sharing to build capability within the cybersecurity assessment team.
• Contribute to the strategic development of the TPSA capabilities, supporting continuous improvement initiatives.

You're ideal for this role if you have:

• Over 5 years of experience in a cybersecurity-related role, preferably within financial services or large corporate environments.
• Strong understanding of risk and control management frameworks, with practical ability to design, assess, and improve security controls.
• In-depth technical knowledge of Cloud Security (especially SaaS), AI security practices, and third-party risk governance.
• Industry-recognized certifications such as CISSP, CISA, CISM, CRISC, or CCSP.
• Excellent stakeholder management and communication skills, with the ability to influence diverse audiences and translate technical findings into business risks.
• Proven experience in working with third-party vendors, supply chains, and regulatory bodies across international environments.
• Fluent in English, with exceptional verbal and written communication skills.

It is a strong plus if you have:

• Additional certifications in cybersecurity or risk management.
• Experience working with global teams and multicultural stakeholders.
• Knowledge of cybersecurity challenges related to AI and emerging technologies.

Eligibility for the role:
Only candidates with an existing legal right to work in the European Union will be considered for this role.

#MAKEYourCareerBETTER
Interested? Apply now and include your CV (preferably in English) along with a statement confirming your consent to the processing and storage of your personal data.