Third Party Risk Specialist (m/f/d)

Top #Skills: #ThirdPartyRiskManagement #VendorRiskAssessment #ISO27036

Contract type: full-time, unlimited
Entry: At the earliest possible date 

Working anywhere. We work where it is most productive. After a successful application process, we offer you the opportunity to work anywhere in Germany. At o2 Telefónica, we rely on a flexible hybrid model that includes the benefits of both remote work and on-site work. You will be assigned to the nearest o2 Telefónica location based on where you live. We will discuss further details with you during the application process.

Who we are

We are o2 Telefónica - with our mobile brands we connect millions of people and offer our customers mobile freedom in the digital world. As a leading telecommunications provider, we are playing a key role in shaping digitization in Germany. Our approximately 7,400 employees in Germany drive the transformation forward every day - in our own company as well. o2 Telefónica is one of the top employers in Germany and is part of the global telecommunications group Telefónica S.A. with 110,000 committed employees worldwide. 

Become part of our unique team and let's make a difference together! 

What you can expect

• #VendorRiskAssessment: You will review security contracts before engaging vendors in the RFQ phase and assess the security of vendors and document their current security status
• #ThirdPartyRiskManagement: Perform vendor risk assessments and assess business impact from a security perspective to identify high risk vendors within the portfolio
• #Compliance: Conduct third party audits/assessments to identify breaches of contractual obligations and security best practices; also prepare management reports on overall status and progress
• #StakeholderManagement: Collaborate with internal and external stakeholders to identify and manage compliance issues
• #ProcessOptimization: Support with process maturity and use of the GRC tool

What you bring with you

• You have a technical background through your Bachelor's or Master's degree in #IT or equivalent practical experience
• At least 5 years of experience in various areas of #ThirdPartyRiskManagement e.g. #InformationSecurity, security risk management and third party risk management
• You are familiar with common information security frameworks such as #ISO27036, #COBIT, #NIST 800-53, etc; a professional information security certification such as ISO 27001, #CISSP or #CISA is an advantage
• You have a deep understanding of #ITaudit, #compliance and risk management methodologies
• You have excellent written communication skills and the ability to communicate effectively within the organization

What we offer

Modern, flexible working environment: Work wherever you want within Germany. Whether in home office or one of our well-equipped offices. We offer you maximum flexibility to organize your working day.

Training & Development: Everything you need for your individual growth. With a personal development plan, learning journeys and the possibility of job rotations, you will reach your goals with us – according to our guiding principle „connect, learn and move2grow".

Financial benefits: A smartphone for business and private use, as well as the possibility to provide for partners, friends and family via a credit balance, is a given. In addition, you benefit from our kindergarten allowance and a variety of corporate benefits.

Health: Our "Feel Good" program keeps your body and mind in balance. Among other things, we offer fitness classes, nutritional counseling, and programs to improve workplace ergonomics and work-life balance.

Social engagement: We are also involved in social projects outside of our day-to-day work. You can support social projects through volunteering days / holidays or charity runs.

How to apply and what else you should know 

Convince us with your meaningful curriculum vitae as well as corresponding certificates. You do not need a letter of motivation with us. Please note that applications are only possible via our applicant portal and applications by e-mail cannot be considered. 

 
Do you have questions about our application process and are you interested in further information about the position? Please reach out to our Recruiting Team (de-recruiting@telefonica.com). 

In case of same qualification, applicants with severe disability will be preferred. All gender are equally welcome.