Sansaone Brussels, Brussels Region, Belgium
Join or sign in to find your next job
Join to apply for the Risk Manager Security (SNS02334) role at Sansaone
Sansaone Brussels, Brussels Region, Belgium
4 days ago Be among the first 25 applicants
Join to apply for the Risk Manager Security (SNS02334) role at Sansaone
Get AI-powered advice on this job and more exclusive features.
* Defining and building the necessary governance and processes for managing information security risks from third-party vendors. Evaluate and classify third parties based on criticality and risk for essentials or services. The CISO and purchasing service assist in the development and maintenance of vendor security policies and procedures. Designing secure system architectures and advising on the implementation and integration of security technologies across the enterprise.
* You are responsible for ensuring that all third-party relationships are compliant with the cybersecurity requirements of the NIS2 Directive, including risk management, incident reporting, and supply chain security.
* Establish risk scoring methodologies and criteria for categorizing suppliers and conduct thorough due diligence and risk assessments on security of existing and potential third-party suppliers, focusing on their ability to comply with NIS2 standards.
* Working with Purchasing and CISO to ensure that third-party contracts include robust cybersecurity clauses, clear incident reporting requirements and audit rights, as mandated by NIS2, as well as the inclusion of data protection and privacy requirements.
* Develop and maintain processes to identify, monitor, and mitigate risks in supply chain cyber resilience and ensure that suppliers implement appropriate technical and organizational measures. This includes continuous monitoring of vendor dependencies.
* Oversee ongoing third-party compliance monitoring, including KPIs, SLAs, regular reviews, audits, and follow-up of remediation actions through risk sashboards and reporting mechanisms
* Coordinate with third parties for timely reporting and effective management of security incidents or breach notifications, in accordance with NIS2 incident notification timelines.
* Liaise with internal teams (ICT, Risk Purchasing) and external partners to promote a shared understanding of NIS2 requirements and best practices in risk management for third parties, as well as facilitate regular security assessment meetings with critical suppliers.
* Overseeing the development and delivery of third-party training and awareness programs on NIS2 obligations and supply chain security, as well as raising awareness around relevant information security policies.
Job Description
* Defining and building the necessary governance and processes for managing information security risks from third-party vendors. Evaluate and classify third parties based on criticality and risk for essentials or services. The CISO and purchasing service assist in the development and maintenance of vendor security policies and procedures. Designing secure system architectures and advising on the implementation and integration of security technologies across the enterprise.
* You are responsible for ensuring that all third-party relationships are compliant with the cybersecurity requirements of the NIS2 Directive, including risk management, incident reporting, and supply chain security.
* Establish risk scoring methodologies and criteria for categorizing suppliers and conduct thorough due diligence and risk assessments on security of existing and potential third-party suppliers, focusing on their ability to comply with NIS2 standards.
* Working with Purchasing and CISO to ensure that third-party contracts include robust cybersecurity clauses, clear incident reporting requirements and audit rights, as mandated by NIS2, as well as the inclusion of data protection and privacy requirements.
* Develop and maintain processes to identify, monitor, and mitigate risks in supply chain cyber resilience and ensure that suppliers implement appropriate technical and organizational measures. This includes continuous monitoring of vendor dependencies.
* Oversee ongoing third-party compliance monitoring, including KPIs, SLAs, regular reviews, audits, and follow-up of remediation actions through risk sashboards and reporting mechanisms
* Coordinate with third parties for timely reporting and effective management of security incidents or breach notifications, in accordance with NIS2 incident notification timelines.
* Liaise with internal teams (ICT, Risk Purchasing) and external partners to promote a shared understanding of NIS2 requirements and best practices in risk management for third parties, as well as facilitate regular security assessment meetings with critical suppliers.
* Overseeing the development and delivery of third-party training and awareness programs on NIS2 obligations and supply chain security, as well as raising awareness around relevant information security policies.
Skills
* CISM
* Cyber Security
* Information Security Management
* Stakeholder Management
Hiring Team Member
Shashidhar Sampangi
Talent Acquisition Specialist
* LinkedIn
* Mail
Seniority level
* Seniority level
Mid-Senior level
Employment type
* Employment type
Full-time
Job function
* Job function
Finance and Sales
* Industries
IT Services and IT Consulting
Referrals increase your chances of interviewing at Sansaone by 2x
Sign in to set job alerts for “Risk Manager” roles.
Zaventem, Flemish Region, Belgium 6 days ago
Zaventem, Flemish Region, Belgium 9 months ago
Brussels, Brussels Region, Belgium 2 days ago
Uccle, Brussels Region, Belgium 2 days ago
Brussels, Brussels Region, Belgium 1 week ago
Brussels, Brussels Region, Belgium 1 day ago
Brussels, Brussels Region, Belgium 3 days ago
Brussels, Brussels Region, Belgium 1 week ago
Brussels, Brussels Region, Belgium 9 hours ago
Risk Management & Internal Audit (Senior) Advisor - Public Sector
Zaventem, Flemish Region, Belgium 3 months ago
Brussels, Brussels Region, Belgium 4 weeks ago
Brussels, Brussels Region, Belgium 2 weeks ago
Brussels, Brussels Region, Belgium 2 weeks ago
Brussels, Brussels Region, Belgium 8 hours ago
Brussels, Brussels Region, Belgium 3 weeks ago
Brussels, Brussels Region, Belgium 1 week ago
Cybersecurity Risk and Compliance Manager
Brussels, Brussels Region, Belgium 6 days ago
Senior Manager GDP Compliance Europe (m/f/d)
Brussels, Brussels Region, Belgium 2 weeks ago
Kortenberg, Flemish Region, Belgium 1 day ago
Brussels, Brussels Region, Belgium 4 days ago
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr