Epicareer Might not Working Properly
Learn More
Please Turn on your JavaScript

Epicareer might not working properly because your browser javascript is turned off.

What is JavaScript?

JavaScript is like the magic behind making websites interactive. Basically, it makes Epicareer more enjoyable and engaging.
How do i turn this on?
Find tutorial for your browser below :
  1. Make sure the webpage is open.
  2. In the Safari app on your Mac, choose Safari > Preferences, then click Security.
  3. Make sure the Enable JavaScript checkbox is selected.
  4. Click Websites.
  5. On the left, click Content Blockers.
  6. Make sure Off is chosen in the pop-up menu next to the website.
  7. On the left, click Pop-up Windows.
  8. Make sure Allow is chosen in the pop-up menu next to the website.
Visit Site here
  1. Open Chrome on your computer.
  2. Click. then Settings.
  3. Click Privacy and Security.
  4. Click Site settings.
  5. Click JavaScript.
  6. Select Sites can use Javascript.
Visit Site here
  1. If you're running Windows OS, in the Firefox window, click Tools > Options.
  2. Tip: If you're running Mac OS, click the Firefox drop-down list > Preferences.
  3. On the Content tab, click the Enable JavaScript check box.
Visit Site here
  1. Click the "Settings and more" icon at the top right of the Edge browser window.
  2. Click Settings.
  3. From the Settings menu, click Cookies and site permissions.
  4. Scroll down and click on JavaScript.
  5. In the JavaScript window, toggle the slider to "on" or "allowed."
  6. Close the Settings tab.
  7. Refresh the page.
Visit Site here
  1. Go to Settings.
  2. Click Advanced in the left sidebar, and click Privacy & security.
  3. Under Privacy and security, click Site settings.
  4. Click JavaScript.
  5. At the top, turn on or off Allowed (recommended).
Visit Site here
Any Question? Contact us
logo
Jobs or company...

Senior Assessor - Digital Risk Assurance

Salary undisclosed
Checking job availability...
Original
Simplified

We are seeking a highly skilled and experienced Senior Assessor to join our team, responsible for conducting third-party cyber risk assessments for a global client's portfolio. This individual will be critical in evaluating the security posture of third-party vendors, suppliers, and partners to ensure compliance with industry standards, regulations, and internal security policies as well as contracts. The ideal candidate will have a sound understanding of cyber risk management, vendor risk assessments, and an ability to communicate complex risk issues effectively to both technical and non-technical stakeholders.

Key Responsibilities:

  • Third-Party risk assessments:
    • Conduct detailed cybersecurity risk assessments (audits) for third-party vendors, including reviewing their information security practices, policies, and controls.
    • Assess third-party vendor security risks across multiple domains, including data protection, network security, identity & access management, and incident response.
    • Identify, evaluate gaps and/or deficiencies in cybersecurity technical and/or policy/procedure controls.
    • Perform thorough due diligence on third-party suppliers and partners, identifying potential vulnerabilities and risks that could impact the organization.
    • Recommend solutions and alternatives to remediate gaps and/or deficiencies in cybersecurity technical and/or policy/procedure controls.
    • Independently lead assessment meetings with clients and third parties to evaluate the implementation of cyber controls.
    • Collaborate closely with global line management and regional colleagues on delivery, client management and internal and client communications.
  • Cybersecurity frameworks and standards:
    • Master client’s proprietary security and contractual standards.
    • Apply recognized cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls) in risk assessments and audits.
  • Reporting and documentation:
    • Document findings, assessment processes, and recommended actions in a clear, concise, and actionable manner.
  • Continuous improvement:
    • Stay up-to-date with the latest trends, threats, and regulatory changes in cybersecurity and risk management.

Requirements

Required Qualifications:

  • Bachelor’s degree in Cybersecurity, Information Technology, Risk Management, or a related field (or equivalent experience).
  • 3-5+ years of experience in cybersecurity, risk management, or IT auditing, with at least 3 years focused on third-party risk assessments or vendor risk management.
  • Demonstrable expertise leading the delivery of assessments based on cybersecurity standards and frameworks such as NIST CSF 2.0, IS27001 and 27002, SOC2, Center for Internet Security (CIS) best practices, PCI-DSS, CSA Cloud Controls Matrix, GDPR, HIPAA, HITRUST, etc.
  • Hands-on experience with tools and platforms used for third-party risk assessments, vulnerability scanning, and audit processes
  • Strong understanding of information security domains such as access control, encryption, vulnerability management, network security, and incident response.
  • Evidence of supporting clients overcome cybersecurity challenges in a broad array of sectors which may include, but is not limited to: Technology, Financial Services, and Retail.
  • A deep understanding of governance, standards, and compliance as they pertain to cyber security.
  • Ability to analyze complex security data and translate findings into industry specific recommendations.

Desired Skills:

  • Certifications: CISSP, CISM, CRISC, CISA, SCP, CCNP, ISO 27001 Lead Auditor or other relevant security or risk management certifications.
  • Experience working in a global organization and understanding of the challenges involved in managing risks across multiple jurisdictions.
  • Project management skills to manage multiple assessments, stakeholders, and deadlines effectively.
  • Strong communication skills, both written and verbal, with the ability to present complex technical information to non-technical audiences.
  • Knowledge of cloud security, supply chain security, secure software development, encryption standards, security tools, and emerging threats related to third-party relationships.
  • This role will require regular business travel within the APAC region. It requires a valid passport and periodic applications for visas.
  • Experience with Archer governance and compliance tools not required but desirable.