Job Ref: 13824 Print Job

Supply Chain Commercials Analyst / Consultant STP

  • Supply Chain Commercials Analyst / Consultant STP
  • Melbourne CBD
  • 6 Months Contract
  • Large Insurance Organisation

Accountabilities/ Responsibilities

  • Provide support to the management, uplift, and operations of overall Supply Chain Risk Management (SCRM) assurance programs/ initiatives.
  • Support the Assurance program to ensure that third party suppliers are assessed, on-boarded, monitored and off-boarded with appropriate due diligence or security maturity identification
  • Support the SCRM function to ensure compliance to regulatory (APRA) requirements and internal standards.
  • Lead and carry out third party due diligence and ongoing assurance and risk assessment of Client’s third parties, including
    • risk based prioritisation of Client’s highest risk third parties;
    • conduct assessments by liaising with internal Cleint stakeholders and Client’s third-party service providers in the identification, measurement, reporting and agreement of security findings and remediation;
    • tracking of remediations, re-assessments, metrics reporting etc;
    • perform assurance activity planning, scheduling, monitoring, and reporting
  • Provide ongoing identification and implementation of improvements to the SCRM assurance process and tooling to address operational challenges, reflect the changing threat environment, and best practice assurance approaches
  • Managing stakeholders and maintaining strong working relationships with individuals/groups involved in managing SCRM related risks, including business owners, vendor representatives, Procurement, Legal, and other Technology and Security management and staff
  • Prepare scheduled and ad-hoc reports demonstrating the status of third party security risk profiles, issues, trends and improvement initiatives
  • Provide project/ BAU support as required as an SCRM SME.

Ideal experience & delivered performance

  • Experience in providing security third party assurance in a complex organisation
  • Knowledge of NIST Cyber Security Framework
  • Experience in EUGDPR requirements and compliance
  • Experience with APRA compliance, particularly CPS 234, CPS231, CPG 234 and CPG235
  • Experience with Shared Assessments SIG/AUP, PCI DSS, CoBIT Framework, Physical Security, and IT Operations Management
  • Information technology outsourcing governance exposure
  • Understanding of technology risks and/or audit concepts

How to apply:
Please apply using the link below or call Rams on 03 8506 6524 for further details. Applications closes based on the volume of applications received. Only short-listed candidates will be contacted.

Adaps is an equal opportunity employer that actively embraces diversity in its workforce through accurate community representation of gender, culture; thought and work arrangements.