Unleash the future of cybersecurity — lead transformative third-party risk assessments with global impact!
Krakow-based opportunity with hybrid work model.
As a Senior / Expert Risk Consultant – Third Party Security Assessment, you will be working for our client, a leader in cybersecurity within the financial services and corporate sectors. You will play a pivotal role in guiding organizations through the complexities of cybersecurity risks associated with third-party engagements, helping to shape resilient and secure supply chains across the globe. This is a unique chance to influence cybersecurity standards and drive impactful change in a fast-evolving landscape.
Your main responsibilities:
- Lead end-to-end third-party security assessments, delivering high-quality consultancy insights to identify, evaluate, and mitigate cybersecurity risks.
- Collaborate with cross-functional teams and stakeholders to embed effective risk management practices within procurement and onboarding processes.
- Provide expert guidance to support the development and refinement of cybersecurity assessment methodologies, integrating new approaches within existing frameworks.
- Conduct quality assurance reviews to ensure assessment outcomes meet global standards and regulatory requirements.
- Engage with senior management, control officers, internal/external auditors, and regulators to facilitate reviews, examinations, and information requests.
- Facilitate training and knowledge sharing to build capability within the cybersecurity assessment team.
- Contribute to the strategic development of the TPSA capabilities, supporting continuous improvement initiatives.
You're ideal for this role if you have:
- Over 5 years of experience in a cybersecurity-related role, preferably within financial services or large corporate environments.
- Strong understanding of risk and control management frameworks, with practical ability to design, assess, and improve security controls.
- In-depth technical knowledge of Cloud Security (especially SaaS), AI security practices, and third-party risk governance.
- Industry-recognized certifications such as CISSP, CISA, CISM, CRISC, or CCSP.
- Excellent stakeholder management and communication skills, with the ability to influence diverse audiences and translate technical findings into business risks.
- Proven experience in working with third-party vendors, supply chains, and regulatory bodies across international environments.
- Fluent in English, with exceptional verbal and written communication skills.
It is a strong plus if you have:
- Additional certifications in cybersecurity or risk management.
- Experience working with global teams and multicultural stakeholders.
- Knowledge of cybersecurity challenges related to AI and emerging technologies.
Eligibility for the role:
Only candidates with an existing legal right to work in the European Union will be considered for this role.
#MAKEYourCareerBETTER
Interested? Apply now and include your CV (preferably in English) along with a statement confirming your consent to the processing and storage of your personal data.