Enviar candidatura ahora »

Join us as a Vendor Cybersecurity Risk Assessment - Risk Specialist!

Join us as a Vendor Cybersecurity Risk Assessment - Risk Specialist!


The Cyber Risk team wants to meet you!


Are you up for it?


Who we are:


We are Risk Advisory Spain, made up of more than 2,000 professionals that help organisations to make decisions in an intelligent manner, in order to prevent and manage business and operational risks, along with those existing in technological, financial, and non-financial processes.


Do you want to help us fight cyber threats? Risk Advisory is home to our team of Cybersecurity specialists, an environment created with an innovation culture.


What are we looking for?




  • People that are passionate about Cybersecurity!
  • Minimum of 5 years of experience in information security or IT audit experience
  • Experience working in Cyber Risk, Business Risk Management, Operational Risk, Internal Audit, and/or Controls related function preferred
  • Working familiarity with Vendor Risk Assessments and production of Risk Analysis Reports
  • Experience in management of vulnerability and/or risk remediation
  • High level of English since we are an international team working together from across the globe



Your daily tasks will include...


  • Provide insight and feedback into operational processes enhancement to improve customer and operational interactions
  • Participate in and lead assessment of vendor risk, develop mitigation plans and partner with internal stakeholders to manage responsibility  
  • Ensure strong oversight of all vendors’ risks and provide member firms and business partners visibility of existing and emerging risks
  • Provide comprehensive reviews of risk assessments and assist with policy, regulatory and accreditation audit preparation
  • Help lead and support the design and implementation and deployment of a common and consistent vendor risk management (VRM) program to effectively manage vendor risk in accordance with internal policy and Federal/ State Regulatory requirements
  • Conduct reporting and analysis on the data collected by the VRA platform 
  • Collect requirements from the member firms to determine and plan effective use of the VRA service
  • Vendor risk questionnaire refinement and scoring, as well as overall VRA risk reporting, for effective program performance and optimization
  • Help develop, maintain, and document workflow processes to ensure data & system controls are appropriate, meet internal baselines and optimize current processes to meet emerging risks
  • Provide guidance to the business, procurement and other stakeholders to ensure requirements of VRM are fully understood and embedded in the solution
  • Monitor and report on risk findings, remediate resolution including development and execution of corrective action plans
  • Perform data analytics & reporting activities. Provide & maintain vendor risk reporting mechanisms, and track and report outcomes from vendor management activities
  • Analyze, update, and modify procedures and processes to identify and continuously implement vendor risk management process improvements
  • Stay informed about the latest developments in the vendor risk management field
  • Improve awareness of operational risks faced by Business from vendor failure/poor performance and work with Strategic Sourcing/Legal/Business to mitigate any losses through vendor compensation achieved through establishment of robust contracts


What Deloitte offers:


Being part of a team that is leading the technological revolution. High commitment to our clients and to society. Diversity, integrity, and generosity as some of our core values.


We help our employees to develop their careers and also foster excellence among our professionals by offering:


  • Personalised continuous career and training plans.
  • The opportunity to develop skills in leading and innovative projects with key companies.
  • Flexibility.
  • The opportunity to participate in Social Action Programs and cultural activities.
  • Health and sport: medical insurance, physiotherapy and medical services in the office, runners club, etc.


Keen to grow personally and professionally with us? Click on apply and let’s grow together! 


Click here to find out more about our Cyber team!


What impact will you make?

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
Población:  Madrid
Tipo de Puesto:  Profesionales Con Experiencia
Línea de Servicio:  Riesgos
Req Id:  22702

Enviar candidatura ahora »