Security Contract Risk Manager

Job title: Security Contract Risk Manager

Company: Teradata


Job description: Our CompanyAt Teradata, we believe that people thrive when empowered with better information. That’s why we built the most complete cloud analytics and data platform for AI. By delivering harmonized data, trusted AI, and faster innovation, we uplift and empower our customers-and our customers’ customers-to make better, more confident decisions. The world’s top companies across every major industry trust Teradata to improve business performance, enrich customer experiences, and fully integrate data across the enterprise.What You’ll DoWhat the role is about:

• The Security Contract Risk Manager plays a critical role in safeguarding Teradata by managing the security risks associated with contractual agreements. This position ensures that all vendor, customer, and partner contracts meet our information security standards and compliance requirements. As part of the Information Security Risk Management team, the Analyst will work closely with legal, procurement, and security teams to review, assess, and mitigate security risks within contracts and ensure alignment with our broader cybersecurity strategy.
• We are open to considering candidates across EMEA, wherever Teradata has a presence.

Key Responsibilities:

• Contract Review & Risk Assessment:

Conduct thorough reviews of contracts and agreements, particularly focusing on information security and data protection provisions to ensure they align with the company’s security policies and regulatory requirements.

• Contract Negotiation:

Support contract negotiations, providing expertise on security risk management to ensure that negotiated terms adequately protect the organization and drafting security clauses for contracts with third parties, including data encryption, incident response, and access controls.

• Vendor Security Due Diligence:

Partner with the Vendor Management and Security teams to evaluate the security posture of third-party vendors, ensuring appropriate controls are in place and aligned with contractual agreements.

• Risk Identification & Mitigation:

Identify potential security risks within contractual obligations and work with stakeholders to implement strategies for mitigating these risks while ensuring compliance with industry standards (e.g., ISO, PCI, NIST, HITRUST, GDPR, IRAP, DORA).

• Collaboration & Stakeholder Management:

Collaborate with internal teams (Law, Procurement, Vendor Management, Compliance, etc.) to ensure that all parties understand security-related contractual obligations and their impact on Teradata business operations.

• Monitoring & Reporting:

Maintain an ongoing monitoring process to assess compliance with contractual security obligations, providing regular reports to leadership on any risks or non-compliance issues.

• Documentation & Compliance Audit Support:

Maintain documentation of security clauses, risk assessments, and contracts. Assist in internal and external compliance audits by providing detailed information on the security provisions embedded in contracts.Who You’ll Work With

• This role offers an exciting opportunity to be at the intersection of cybersecurity, risk management, and business operations. As a key member of our Information Security team, you will have a direct impact on Teradata’s security posture while gaining exposure to high-level contract negotiations and risk mitigation strategies.

What Makes You a Qualified Candidate

• Bachelor’s degree, ideally in Information Security, Cybersecurity, Law, Business, or a related field.
• Three to five years of experience in information security, risk management, or contract analysis, ideally in a corporate or legal setting.
• Solid understanding of security frameworks (e.g., NIST, ISO 27001) and relevant regulations (e.g., GDPR, CCPA).
• Minimum two years experience in analyzing, negotiating, and managing security-related contract provisions.

What You’ll Bring

• Strong analytical skills, with the ability to identify risks and recommend solutions in a clear and concise manner.
• Excellent communication and collaboration skills, with the ability to work effectively across multiple departments.
• High attention to detail, ensuring all contracts are thoroughly reviewed and aligned with security policies.
• Certifications like CISSP, CISM, or CRISC are a plus.

Expected salary:

Location: Praha

Job date: Thu, 24 Oct 2024 22:36:34 GMT

To help us track our recruitment effort, please indicate in your email/cover letter where (jobsnear.pro) you saw this job posting.Thanks&Good Luck