Base Location: Reading and Havant
Salary: £44,264 – £55,653 and a range of other benefits to support your family, finances and wellbeing.
Working Pattern: Permanent Full Time
What is the Role?
The Cyber Supplier Assurance Analyst is responsible for reducing the SSE Group supply chain risk by identifying, documenting and reporting supplier cyber security improvement opportunities to business unit managers, senior management committees and the cyber governance, risk and compliance manager for assessment in line with risk appetite.
1. Senior Management Reporting
Perform regular senior business manager presentations to highlight key supplier risks and assurance progress from identified critical suppliers; including their challenges and emerging key suppliers.
2. Supplier Manager Reporting
Perform regular supplier manager presentations to agree key suppliers for contractual, operational, continuity and cyber assessment; to ensure we prioritise assurance for our most critical suppliers. Follow-up on open recommendations for risk assessment, reporting or action; including their challenges and emerging key suppliers.
3. Procurement Manager Reporting
Perform regular procurement manager presentations to follow-up on open contractual recommendations for risk assessment, reporting or action; including their contractual supplier challenges.
4. Supplier Assessment
Assure contractual documents to ensure all legislative, regulatory, continuity and SSE cyber security standards are met for critical suppliers. Record contractual assurance ratings and where required, a list of mitigating recommendations for stakeholder management and cyber risk assessment.
Perform operational assessments using templated questionnaires to ensure legislative, regulatory, continuity and SSE cyber security standards are adhered to by critical suppliers. Record operational assurance ratings and where required, a list of mitigating recommendations for stakeholder management and cyber risk assessment.
Perform cyber security assessments using existing toolsets to ensure supplier internet facing systems and services consumed by SSE are securely maintained. Record cyber assurance rating and where vulnerabilities are identified, provide a cyber report to the business unit supplier manager for assessment, action or risk management.
5. Interoperability and Automation
Manage and track incoming service catalogue and team mailbox requests for assignment and management, to ensure delivery of timebound commitments to our customers.
Review our existing processes, report gaps and where agreed; create new sustainable processes to enhance the efficiency of cyber supplier assurance team controls.
What do I need?
- Understanding of cyber security controls and principles.
- Understanding of the supply chain and associated risks.
- Experience in auditing, assurance controls or similar capabilities.
- Ability to identify and manage key stakeholders.
- Ability to thrive in a challenging environment and develop new skills
About our Business
SSE IT underpins the technology needs of all the different businesses that make up the SSE group. From emerging technologies to data and analytics to cyber security – we power SSE’s growth and enable it to generate value, while keeping it secure. As a trusted business partner that helps SSE lead in a low carbon world, we are proud of our service. Working for SSE IT is all about equipping SSE for now and the future.
What’s in it for you?
An excellent package with 34 days holiday entitlement, enhanced maternity/paternity leave, discounted healthcare, salary sacrifice car leasing and much more, view our full benefits package on our careers site.
As an equal opportunity employer we encourage diversity and are committed to creating an inclusive environment for all employees. We actively encourage applicants from all protected characteristics and commit to providing any reasonable adjustments required during the application, assessment and upon joining SSE. Search for ‘Inclusion & Diversity at SSE’ to find out more.
All applications should be submitted online, and I’ll be back in touch after the vacancy closing date to let you know the outcome.
If you would like to discuss any working differently requirements or adjustments you may require throughout the recruitment and selection process, please contact [email protected] / 01738 275 846.
EXTERNAL: Before commencing employment with SSE, you’ll be required to fully complete our pre-employment screening process consisting of a basic criminal records and credit check.