Senior - Vendor Risk Assessment Analyst

We are seeking a Vendor Risk Assessment Analyst to join the team. The VRA Analyst will participate in and lead assessments of vendor risk, develop mitigation plans and partner with internal stakeholders to manage responsibility.

Requirements

• Bachelor’s degree: preferably in an information technology-related field of study, or equivalent years of experience required.
• Experience working in Cyber Risk, Business Risk Management, Operational Risk, Internal Audit, and/or Controls related function.
• At least 2 years of Information Security, Risk Assessment or IT audit experience.
• Strong familiarity with ISO27000 standards and ISO27002 controls standards.
• Experience with Archer, ServiceNow or another industry standard enterprise Vendor Risk Assessment solution.
• Strong knowledge and working understanding of information security legal and regulatory requirements, such as Sarbanes-Oxley Act (SOX), Health Insurance Portability and Accountability Act (HIPAA) and Payment Card Industry/Data Security Standard.
• Strong working familiarity with common information security management frameworks, such as ISO/IEC 27001, COBIT, and NIST, including 800-53 and the Cybersecurity Framework.
• Working familiarity with the NIST 800-30 standard for Risk Assessment.

Benefits

• High-impact projects where you will have a long journey and learning experience
• A hybrid-flexible daily routine: you will have flexible hours and a good balance between remote work and teamwork in our offices or our clients’ offices
• Good atmosphere inside and outside the office: you will enjoy several team buildings per year, cultural and sports activities... and much more!
• Comprehensive well-being: take care of yourself with our physical, mental, and financial health program... and with a medical team in the offices!
• Social impact: You can sign up for a large number of national and international volunteer opportunities and pro-bono projects where you can put your time and talent at the service of those who need it most
• Culture of feedback and continuous learning: you will grow in an inclusive environment where equal opportunities and your personalized training plan will boost your development.
• Exclusive benefits for being part of Deloitte: you will be able to enjoy a wide catalog of benefits and a complete flexible compensation plan