Position Details

Type Not Specified

Experience mid

Exp. Years 3-5 years

Education Bachelor's degree in computer science or engineering or equivalent

Category Cybersecurity

About this role

Role focuses on reducing cyber risk from third parties and protecting S&P Global brands by conducting control risk assessments, risk recertifications, and continuous monitoring of vendor engagements, with collaboration across regulatory, legal, and compliance teams.

Key Responsibilities

Conduct risk assessments for vendors
Collaborate with internal teams to identify critical vendors
Communicate findings to stakeholders including senior management
Address security gaps with vendors
Oversee continuous monitoring and periodic vendor reviews

Technical Overview

Focus on cybersecurity risk management, cloud exposure (AWS/Azure/Google Cloud), vendor risk assessments, control reviews, and continuous monitoring; frequent interaction with internal teams and vendors.

Ideal Candidate

The ideal candidate is a mid-level cybersecurity professional with 3+ years in information security or technology risk management, with hands-on vendor risk management experience, cloud familiarity (AWS/Azure/Google Cloud), and strong communication skills.

Must-Have Skills

Bachelor's degree in computer science or engineering or equivalent3-5 years of experience in Information Security or Technology Risk ManagementExposure to cloud technologies (AWSAzureGoogle Cloud)Knowledge of information security controlsExperience with vendor risk managementExcellent communication skills

Nice-to-Have Skills

UK shift flexibilityStrong organizational skillsAbility to build strategic partnershipsCritical thinkerInformation Security/Risk Management certification (preferred)

Required Skills

Bachelor's degree in computer science or engineering or equivalentinformation securitycyber riskvendor risk managementcloud technologiesAWSAmazon Web ServicesAzureGoogle Cloud PlatformGoogle Cloudrisk assessmentscontinuous monitoringcontract reviewsprivacy lawsregulatory compliancecommunication

Hard Skills

CybersecurityBusiness ContinuityInformation Security ControlsVendor Risk ManagementRisk AssessmentsRecertificationsContinuous MonitoringCloud TechnologiesAmazon Web Services (AWS)AWSMicrosoft AzureAzureGoogle CloudGoogle Cloud PlatformContract ReviewsPrivacy LawsRegulatory Compliance

Soft Skills

CommunicationCross-functional CollaborationWritten and Oral CommunicationTeamworkAttention to detailMultitaskingCritical Thinking

Industry & Role

Industry Banking

Job Function Assess and manage third-party cyber risk by evaluating vendor information security controls and overseeing continuous monitoring.

Role Subtype Security Analyst

Tech Domains Cybersecurity, Amazon Web Services, Azure, Google Cloud Platform, Microsoft 365

Keywords for Your Resume

Cyber Risk AnalystVendor Risk ManagementInformation SecurityInformation Security ControlsRisk AssessmentsRecertificationsContinuous MonitoringThird-PartyVendorsCloud TechnologiesAmazon Web ServicesAWSAmazon Web Services (AWS)AzureMicrosoft AzureGoogle CloudGoogle Cloud PlatformPublic CloudContract ReviewsPrivacy LawsRegulatory ComplianceCommunication skillsCross-functional collaborationUK Shift

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile