Third Party Security Risk Analyst
Third Party Security Risk Analyst
Why is our Global Security Risk & Awareness team the next step for you?
The Global Security Risk and Awareness function is part of the Global Security Services team. The Risk team has a range of responsibilities that include third party security risk, enterprise security risk assessments, cyber risk analytics, targeted education and advanced interactive awareness programs.
This role reports directly into our Third Party Security Risk Manager and will primarily focus on third party assurance across the global organisation by assessing the security risk of third party organisations that access, store, transmit or process Worldpay data.
How will you add value on a day-to-day basis?
You’ll support the team in delivering a world class programme of security risk assessments of our key suppliers and associated methodologies. You’ll work closely with our Strategic Supplier Management, Legal, Third Party Risk Management and business teams to ensure reviews are completed in a timely manner, and the needs of both the business and Global Security Services team are met.
In this role, you’ll perform information security risk assessments upon critical third parties at point of engagement and throughout the supplier relationship. This includes those parties that hold cardholder data, those whom provide offsite storage facilities and those deemed critical to business owners. You’ll work with third parties to identify and remediate risks as required, and provide clear and high quality risk reports, with guidance and recommendations, to enable senior business owners to make the most appropriate risk decisions relating to the use of third parties. You’ll support contractual reviews for new and existing suppliers, and leverage industry best practices (NIST CSF) and the regulatory landscape (such as GDPR, FCA, and FFIEC) to ensure a rounded assessment of the security risk posed to Worldpay is articulated.
Whilst an established end-to-end process is in place, there is plenty of opportunity for you to help mature and enhance the existing process.
What will make you the ideal candidate?
You’ll have previous experience working within IT Audit, information security risk, security governance, compliance or a similar department. You’ll have an understanding of NIST CSF, 800-3x, ISO27001/2 and PCI and the ability to align risk issues to business solutions. You’ll have excellent attention to detail supported by strong communication skills, great stakeholder management skills and proven ability to nurture relationships across a large organisation and with external parties such as suppliers and regulatory agencies.
Information Security qualifications like CISSP, CRSIC, CISM, GSEC or CISA is ideal, as well as an understanding of the payment card industry and associated regulations.
Worldpay has merged with Vantiv Inc. to create a new global leader in payments. The new Worldpay will have the scale, the reach and the resources to take our success story to another level. This move allows us to expand further into high growth markets, deliver innovation at scale and above all, brings together exceptional talent and a shared passion that will help propel us forward to the next chapter of our collective story.
Our technology enables billions of payments to be made each year whether online or in person. Working with customers large and small we help them to take payments quickly, safely and reliably, allowing them to grow their businesses and making your life more convenient in the process.
London / England
Tech and Engineering
June 25, 2018