IT Third-Party Risk Management Specialist Job

Date published: January 29, 2024

This listing has expired.
ID: 12356 Location: Budapest Task: IT Security Consultant

As an IT Third-Party Risk Management Specialist, you will be part of the I&T Risk Team which is part of the IT Governance Risk and Compliance department.
The role is contributing to the improvement of the organisation´s IT’s I&T and Third-Party Risk Management Framework and program in conjunction with global risk management initiative.You will strongly and closely collaborate with the organization’s I&T Compliance-, I&T Governance and I&T Resilience teams, all other IT departments and our internal business areas.


  • Contribute to the development and improvement of the IT Third-Party Risk Management Framework and processes
  • Contribute to procurement processes to represent the Third-Party Risk related mindset
  • Manage and maintain the onboarding and monitoring processes for third-parties
  • Contribute to the development, implementation and communication of risk-related policies and standards
  • Define and monitor IT Risk Framework KPIs and ensure that these are communicated and understood
  • Monitor and measure the maturity level/risk status of IT and non-IT departments
  • Participating in major strategic initiatives implementation and ensure the consideration of risk related requirements
  • Perform risk assessments on regular basis with multiple methodologies
  • Undertaking risk reviews of the control framework
  • Actively engaging in end-to-end risk remediation planning, resolution, and monitoring activities
  • Contribute to the remediation of identified risks assisting in finding practical and cost-effective solutions
  • Maintain the risk service catalogue
  • Maintain risk register and support remediations
  • As part of GRC, contribute to the improvement of IT Risk to be fully integrated and proactive
  • Build and maintain strong relationship with risk associates, including Enterprise Risk Management department as well
  • Work in relation and conformity with internal and external auditors if needed
  • Providing aggregated risk supervision for various high impact areas of IT services for core components of IT risk measurement and reporting activities


  • Experience working in cross-functional teams
  • Demonstrated knowledge and experience in audits, risk- and compliance management
  • Ability to influence others even if their short-term interest is different
  • Familiarity with control frameworks and best practices such as CIS, CMMI, COBIT, COSO, ISO27k, ITIL, NIST and NIS2
  • Experience in shared services environment
  • Globally recognized certificates like CISA, CISM, CRISC, or TPRM certificate is an advantage
  • Having practical experience in classic IT functions or even in ICS environments
  • Governance knowledge, experience is an advantage
  • Experience in enterprise level risk management is also an advantage
  • Experience with various TPRM & IT Risk Management tools is also an advantage

Personal skills

  • Strong interpersonal skills and ability to work effectively at all levels in a collaborative team environment
  • Strong communication and interpersonal skills, capable to handle conflicts
  • Holistic and critical mindset
  • Ability to analyze and resolve complex problems, provide direction and lead various initiatives
  • Able to manage large amounts of new information quickly and understand correlations and dependencies
  • Problem solving attitude
  • Fluency in English

Application with CV

Allowed File Types: DOC, DOCX, PDF, RTF.
MAXIMUM 2 files (MAXIMUM 10 MB per files).