Capgemini
Enterprise • Artificial Intelligence • Cybersecurity
Capgemini is a global leader in partnering with businesses to transform and manage their operations by harnessing the power of technology. With expertise across a wide array of industries such as aerospace, automotive, banking, and healthcare, Capgemini provides a constantly evolving portfolio of services to meet the ever-changing needs of their clients. Their offerings include cloud, cybersecurity, data and artificial intelligence, and enterprise management, among others. Capgemini also emphasizes innovation and sustainability, helping companies achieve digital transformation while promoting environmental and social responsibility. Additionally, Capgemini provides career opportunities across various levels and professions, encouraging innovation and diversity in its workforce.
Vendor Information Security Analyst
Job not on LinkedIn
October 31
Capgemini
Enterprise • Artificial Intelligence • Cybersecurity
Capgemini is a global leader in partnering with businesses to transform and manage their operations by harnessing the power of technology. With expertise across a wide array of industries such as aerospace, automotive, banking, and healthcare, Capgemini provides a constantly evolving portfolio of services to meet the ever-changing needs of their clients. Their offerings include cloud, cybersecurity, data and artificial intelligence, and enterprise management, among others. Capgemini also emphasizes innovation and sustainability, helping companies achieve digital transformation while promoting environmental and social responsibility. Additionally, Capgemini provides career opportunities across various levels and professions, encouraging innovation and diversity in its workforce.
📋 Description
• **Main Activities** • - Focus on security reviews with vendors (100 a year, 8-10 open assessments approx.) • - Perform 1/4 of the security assessments for the EVRA team: • - Schedule and conduct kickoff calls with requesting business units to determine scope of each assessment. • - Rate the risk level of each supplier engagement • - Engage with the vendor representative over email (or over phone as needed). Send and receive security questionnaires, analyze security responses, review control evidence (SOC reports, pen tests, vulnerability scans, bug bounty reports, policy documents). • - Gap analysis, remediation discussion, risk-based recommendations based on findings. • - Drafting, editing, and publishing of assessment summary reports, peer review of other team members' summary reports.
🎯 Requirements
• - At least 3 years of experience in a similar role with vendor review management • - Full English Fluency in coversations • - Bachelor's degree in Information Systems or related discipline preferred • **Technical & Business Skills** • - Inquisitive profile, likes to question things, investigates • - Excel - Intermediate (MUST) Formulas, Pivot Tables, use of excel in English • - Office Suite - (1-3 Years) • - Certifications in CISSP, CISA, CISM, CompTIA certifications. (Desirable) • - Familiarity with SOC 2 type II (SSAE-18) format, reading penetration test reports, vulnerability scan reports (Desirable) • - Little bit of coding experience, security, vulnerabilities, risk and compliance (Desirable)
🏖️ Benefits
• This position comes with competitive compensation and benefits package: • - Competitive salary and performance-based bonuses • - Comprehensive benefits package • - Career development and training opportunities • - Flexible work arrangements (remote and/or office-based) • - Dynamic and inclusive work culture within a globally renowned group • - Private Health Insurance • - Pension Plan • - Paid Time Off • - Training & Development
Apply Now