Risk & Control Assurance Analyst (Info sec/Data privacy)
Takeda
- Bratislava, Bratislavský kraj
- 2 820 € za mesiac
- Trvalý pracovný pomer
- Plný úväzok
Takeda is committed to creating an inclusive workplace, where individuals are recognized for the diverse backgrounds and abilities they bring to our company. We are continually improving workplace experience and accessibility for everyone, and welcome applications from all qualified candidates. Here, you will feel welcomed, respected, and valued as an important contributor to our Team.The OpportunityAs a Risk & Control Assurance Analyst, you'll execute the full lifecycle of information security and data privacy third-party risk assessments as needed, either individually or through available resources, within the region. You will collaborate with internal third-party relationship owners and third-party representatives to recommend necessary security and privacy controls to effectively mitigate risks to Takeda.Responsibilities
- Collaborate with internal third-party relationship owners or third-party representatives in their efforts to provide responses to the security and privacy risk assessment questionnaire
- Assist and execute regional control assessment activities to identify control effectiveness, maturity and areas for improvements
- Effectively translate third-party responses to assessment questionnaire, using sound judgement, into concise risk exposure reporting for delivery to internal stakeholders
- Partner with internal third-party relationship owners and third-party representatives to recommend necessary security and privacy controls to effectively mitigate risks to Takeda
- Ensure robust tracking and remediation of third-party security and privacy risk exposures identified through assessment processes
- Provide any necessary training and awareness related to the third-party security process
- Contribute to the gathering and distribution of periodic program metrics and/or dashboards
- Assist in promoting third-party risk management processes across business lines to help influence a strong culture of proactive awareness for third-party security risks
- Assists Senior Risk Analysts (Risk Coordinator) and Regional Information Risk Assurance Lead with global risk and control assurance activities and regional execution
- Bachelor’s degree or equivalent
- 1-2 years of proven experience in information security and/or third-party risk management
- Experience in evaluating third parties for the presence of fundamental information security and data privacy controls
- Experience conducting risk assessments and applying concepts of inherent and residual risk to draw appropriate conclusions and articulate the same to non-technical audiences
- Ability to learn how to effectively negotiate appropriate remediation of security gaps with third party representatives to ensure protection of Takeda information
- Ability to apply innovative approaches within the program to identify win-win solutions
- Strong communication, interpersonal, presentation, and organizational skills
- Comfortable operating in and navigating a global organization where risk stakeholders can be located across geographies and time zones
- Nice to have: Ability to work towards obtaining industry security certification(s) (CISSP) and ServiceNow GRC experience
- Cafeteria
- Medical - High standard medical care
- Bridge days
- Summer Hours
- Multisport Card