<p><strong>The Company</strong></p><ul><li><p>Our client is a top-tier global consulting firm specializing in information security and IT risk management, working on a strategic project for a large U.S.-based multinational company in the healthcare sector.</p></li></ul><p><strong><span class="TextRun SCXW249955066 BCX8" lang="EN-US" xml:lang="EN-US" data-contrast="none"><span class="NormalTextRun SCXW249955066 BCX8">Job description</span></span><span class="EOP SCXW249955066 BCX8" data-ccp-props="{"134233117":true,"134233118":true,"201341983":0,"335559740":240}"> </span></strong></p><ul><li>Support vendor risk management activities;</li><li>Reviewing vendor agreements and contracts from a risk and security perspective;</li><li>Communicating directly with vendors to collect and validate required information;</li><li>Completing and reviewing vendor security questionnaires;</li><li>Assess vendor compliance against recognized security frameworks and standards such as ISO, SOC 2, and NIST CSF;</li><li>Partner closely with procurement teams, internal stakeholders, and external vendors to ensure compliance with security and risk requirements;</li><li>Provide support to U.S.-based leadership, contributing to informed risk management decisions.</li></ul><p><strong><span class="TextRun SCXW216758145 BCX8" lang="EN-US" xml:lang="EN-US" data-contrast="none"><span class="NormalTextRun SCXW216758145 BCX8">Requirement Profile - Knowledge, Skills & Experiences</span></span><span class="EOP SCXW216758145 BCX8" data-ccp-props="{"134233117":true,"134233118":true,"201341983":0,"335559740":240}"> </span></strong></p><ul><li>Background in Technology;</li><li>Experience in IT risk management, information security, or third-party/vendor risk management;</li><li>Strong understanding of information security frameworks and compliance standards (ISO, SOC 2, NIST CSF);</li><li>Ability to work collaboratively with global stakeholders and external partners;</li><li>Experience or knowledge of ERP systems, preferably Oracle;</li><li>Familiarity with hyperscalers such as AWS, Google Cloud Platform (GCP), Azure, and IBM Cloud;</li><li>This role will report directly to a U.S.-based leader;</li><li>Working hours will be aligned with either Brazil or U.S. time zone (to be confirmed).</li></ul><img src="https://counter.adcourier.com/UmFmYWVsLkFzc2Vub2ZmLjA4MTQ5LjEwODk2QHJoaWJyLmFwbGl0cmFrLmNvbQ.gif">
