Cybersecurity Third-Party Security Assessment Senior Risk Consultant

Unleash the future of cybersecurity — lead transformative third-party risk assessments with global impact! Krakow-based opportunity with hybrid work model. As a Senior / Expert Risk Consultant – Third Party Security Assessment, you will be working for our client, a leader in cybersecurity within the financial services and corporate sectors. You will play a pivotal role in guiding organizations through the complexities of cybersecurity risks associated with third-party engagements, helping to shape resilient and secure supply chains across the globe. This is a unique chance to influence cybersecurity standards and drive impactful change in a fast-evolving landscape. Your main responsibilities: • Lead end-to-end third-party security assessments, delivering high-quality consultancy insights to identify, evaluate, and mitigate cybersecurity risks. • Collaborate with cross-functional teams and stakeholders to embed effective risk management practices within procurement and onboarding processes. • Provide expert guidance to support the development and refinement of cybersecurity assessment methodologies, integrating new approaches within existing frameworks. • Conduct quality assurance reviews to ensure assessment outcomes meet global standards and regulatory requirements. • Engage with senior management, control officers, internal/external auditors, and regulators to facilitate reviews, examinations, and information requests. • Facilitate training and knowledge sharing to build capability within the cybersecurity assessment team. • Contribute to the strategic development of the TPSA capabilities, supporting continuous improvement initiatives. You're ideal for this role if you have: • Over 5 years of experience in a cybersecurity-related role, preferably within financial services or large corporate environments. • Strong understanding of risk and control management frameworks, with practical ability to design, assess, and improve security controls. • In-depth technical knowledge of Cloud Security (especially SaaS), AI security practices, and third-party risk governance. • Industry-recognized certifications such as CISSP, CISA, CISM, CRISC, or CCSP. • Excellent stakeholder management and communication skills, with the ability to influence diverse audiences and translate technical findings into business risks. • Proven experience in working with third-party vendors, supply chains, and regulatory bodies across international environments. • Fluent in English, with exceptional verbal and written communication skills. It is a strong plus if you have: • Additional certifications in cybersecurity or risk management. • Experience working with global teams and multicultural stakeholders. • Knowledge of cybersecurity challenges related to AI and emerging technologies. Eligibility for the role: Only candidates with an existing legal right to work in the European Union will be considered for this role. #MAKEYourCareerBETTER Interested? Apply now and include your CV (preferably in English) along with a statement confirming your consent to the processing and storage of your personal data.