Job Description

We are looking for a IT Supplier Assurance Manager to join an industry renowned organisation that are currently going through a period of growth!

Due to a recent digital transformation, this organisation is being driven forwards through continued success. They are passionate about technology and right from the start you\'ll be a part of that digital strategy - contributing whilst developing yourself.

Your role will assist the operation of 3rd Party IT Risk functions with a focus on Supplier Assurance. This will be a varied position where you will own the end to end process with no siloes. You\'ll also help to identify & deliver enhancements to the function, assisting with wider Assurance, Risk and GRC activities.

Core Responsibilities:

• To execute & oversee the delivery of end-to-end supplier due diligence with a focus on Information Security and IT Risk
• To Assess controls covering IT domains, including;
• Access Management, Data Protection, Change Management, Vulnerability Management, Network Security, 3rd Party Management, Logging & Monitoring, Business Continuity Management, Disaster Recovery, Incident Response, Physical, and Secure Development.
• Review supplier contractual agreements ot assure the business expectations are fully met.
• Track the remediation of findings & manage said risks. Including reporting, obtaining updates, reviewing evidence etc
• Oversee the wider delivery of 3rd Party IT Risk.
• Identify & ensure effective delivery of enhancements to operations based on industry trends, evolving risk and business improvements.
• Own the execution of wider activities within the department to expand your own knowledge & career path.

We\'re looking for someone who has experience with some of the below;

• Professional experience with people leadership / management experience within an IT Audit / Supplier Assurance focused role.
• You\'ll have either strong experience in conducting the full end to end IT Audit process, if not 3rd party / Supplier IT Risk.
• Experience of working in a UK regulated environment is desired.
• Good knowledge around IT Security / Assurance, Audit, Compliance & Risk ( ISO 27001, PCI DSS, CIS, NIST, ISACA etc).
• Proven experience & understanding around control assessments and risk based audits.
• Knowledge on IT Assurance concepts.
• Experience of IT Risk Management concepts & terminology.

This is a fantastic opportunity for someone looking to join a people centric / collaborative environment where they can truly progress their career. You\'ll become an SME for the business whilst being given the opportunity to progress your own knowledge.

Based mostly remote, you need to be a commutable distance from their offices in Leeds for visits as needed (a few times a month).

BCT Resourcing