Our global law firm client are currently looking to take on a new Senior Manager - Third Party Assurance (Security Suppliers, CISSP, CISM, ISO27001) on a contractual basis for 12 months. This role will be responsible for the production and championing the supplier assurance security model.

The firm are extremely laid back by law firm standards, though still expect and produce high quality work. The firm are forward-thinking and have a very anti-micromanaged and autonomous approach to the work life, with a healthy amount of flexible working.

This Senior Manager - Third Party Assurance (Security Suppliers, CISSP, CISM, ISO27001) role will require prior experience in an Information Security Assurance role, experience with Security Suppliers and ideally legal or financial services experience.

Duties, Responsibilities & Person Specification

• Producing, embedding and championing the Supplier Assurance Security Model.
• Producing management information for the CISO, including trends, process gaps, and recommendations for improvement.
• Managing client requests in a timely and professional manner.
• Leading Supplier Assurance governance forums.
• Tailoring and managing the Third-Party Security Schedule (including supplier negotiations).
• Providing excellent service to our clients through our interactions and responses to due diligence questionnaires.
• Negotiating security clauses in contracts for robustness.
• Providing evidence for audits and ISO 27001 certification from a Supplier Assurance perspective.
• Supporting other relevant internal and external audits when they arise.