Provide support to the management, uplift, and operations of overall Supply Chain Risk Management (SCRM) assurance programs/ initiatives.
Support the Assurance program to ensure that third party suppliers are assessed, on-boarded, monitored and off-boarded with appropriate due diligence or security maturity identification
Support the SCRM function to ensure compliance to regulatory (APRA) requirements and internal standards.
Lead and carry out third party due diligence and ongoing assurance and risk assessment of Client’s third parties, including
risk based prioritisation of Client’s highest risk third parties;
conduct assessments by liaising with internal Cleint stakeholders and Client’s third-party service providers in the identification, measurement, reporting and agreement of security findings and remediation;
tracking of remediations, re-assessments, metrics reporting etc;
perform assurance activity planning, scheduling, monitoring, and reporting
Provide ongoing identification and implementation of improvements to the SCRM assurance process and tooling to address operational challenges, reflect the changing threat environment, and best practice assurance approaches
Managing stakeholders and maintaining strong working relationships with individuals/groups involved in managing SCRM related risks, including business owners, vendor representatives, Procurement, Legal, and other Technology and Security management and staff
Prepare scheduled and ad-hoc reports demonstrating the status of third party security risk profiles, issues, trends and improvement initiatives
Provide project/ BAU support as required as an SCRM SME.
Ideal experience & delivered performance
Experience in providing security third party assurance in a complex organisation
Knowledge of NIST Cyber Security Framework
Experience in EUGDPR requirements and compliance
Experience with APRA compliance, particularly CPS 234, CPS231, CPG 234 and CPG235
Experience with Shared Assessments SIG/AUP, PCI DSS, CoBIT Framework, Physical Security, and IT Operations Management
Information technology outsourcing governance exposure
Understanding of technology risks and/or audit concepts
How to apply: Please apply using the link below or call Rams on 03 8506 6524 for further details. Applications closes based on the volume of applications received. Only short-listed candidates will be contacted.
Adaps is an equal opportunity employer that actively embraces diversity in its workforce through accurate community representation of gender, culture; thought and work arrangements.