CrawlJobs Logo

Supplier Security Specialist

vodafone.com Logo

Vodafone

Location Icon

Location:
Romania , Bucuresti

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

We are seeking a Supplier Security Analyst to support the end-to-end security assurance lifecycle of Vodafone’s critical and high-risk suppliers. This role involves liaising with suppliers, conducting due diligence, performing security assessments, and ensuring compliance with Vodafone’s standards. The individual will play a key role in identifying risks, improving assurance frameworks, and producing high-quality reports that inform strategic decisions.

Job Responsibility:

  • Act as a subject matter expert on supplier security, including due diligence testing, assessments, and contract negotiations
  • Conduct security assessments based on supplier criticality and initiate appropriate assurance responses
  • Monitor ongoing compliance and manage supplier onboarding, monitoring, and offboarding processes
  • Develop and operate processes, tools, and reports that support supplier security activities
  • Continuously improve the Supplier Security framework in line with evolving threats and industry best practices

Requirements:

  • Experienced in third-party security risk management within complex global organisations
  • Knowledgeable in ISO security standards and security management processes
  • Skilled in stakeholder engagement, with strong communication and influencing capabilities
  • Able to analyse complex information and present findings in a clear, accessible format
  • Familiar with supplier governance and technical countermeasures
  • Professional certifications such as CISSP, CISM, CISA, CRISC, ISO 27001 Lead Auditor, or ISO 22301 Lead Auditor
What we offer:
  • Hybrid way of working: 2 days from office per week (8 per month)
  • Medical and dental services
  • Life and hospitalization insurance
  • Dedicated employee phone subscription
  • Take control of your benefits and choose any of the following options: meal tickets / private pension / vacation vouchers / cultural vouchers - within the budget
  • Special discounts for gyms and retailers
  • Annual Company Bonus
  • Ongoing Education
  • We let you write your own story by planning vacations: go for a trip, experience new things, have fun and enjoy your 23 days off
  • Special Paternal Program - 4 months of paid paternity leave

Additional Information:

Job Posted:
January 22, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Vodafone - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Supplier Security Specialist

Asia Supplier Information & Cyber Security Manager

Do you like Information and Cyber Security Controls, auditing and contract negot...
Location
Location
Taiwan , Linkou
Salary
Salary:
Not provided
asml.com Logo
ASML
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Overall 10-15 years working experiences
  • 8+ of relevant experience in Information Cyber Security and contracting strategy and/or execution, preferably in a corporate, technology-related environment
  • Master/Bachelor degree in an IT technical field or equivalent professional experience
  • IT auditor or equivalent certification (par example CISA)
  • Valid industry security related certifications such as the Certified Information Systems Security Professional (CISSP)
  • Overseeing the whole ISO27001 version 2021 with in-depth knowledge of each aspect is preferred
  • Having Information and Cyber Security knowledge on a management level and being able to be a counterpart for Subject Matter Experts
  • Having a pragmatic approach and can act differently depending on the specific situation
  • Knowledge and experience with security audit frameworks and standards
  • Analytical, precise, tenacious, autonomous
Job Responsibility
Job Responsibility
  • Update the supplier security policy and supplier security standard based on experience, relevant trends from outside and law/regulations
  • Continues improvement of process, people and technology
  • Dashboarding/reporting (update your part of the dashboards)
  • Reporting on progress by maintaining your part of the central overview on progress of the negotiations for security controls
  • Assessing IT Security Controls of suppliers as received in written form (self-assessment and onsite assessments)
  • Assessing risks related to IT Security Controls
  • Giving a final advice for the risks by writing an advice (residual risk)
  • Drive improvement of suppliers
  • Assessing and improving Cyber Security risks at suppliers identified by our Cyber Security Tool
  • Be the initial interface with the supplier and the Cyber Security Specialist in case of a security incident at suppliers
  • Fulltime
Read More
Arrow Right

Supplier Governance Manager

The role reports into the Senior Manager of Governance and Reporting in our Pers...
Location
Location
Australia , Sydney
Salary
Salary:
Not provided
https://www.allianz.com Logo
Allianz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated experience in supplier / vendor management, procurement, or contract administration
  • Strong understanding of governance, risk, and compliance ideally within the financial services industry
  • Excellent verbal and written communication skills
  • Demonstrated understanding of cyber security standards, IT systems, and risk management practices
  • Experience working across Enterprise Risk, Operational Risk, Governance, Legal, Compliance, or Regulatory Assurance
  • High attention to detail with focus on compliance and regulatory requirements
  • Strong analytical and problem-solving skills
  • Experience in managing and fostering strong relationships with internal teams and supplier partners
  • Ability to plan and prioritise effectively, organise tasks and manage competing resources and demands
  • Tertiary qualifications in a relevant discipline
Job Responsibility
Job Responsibility
  • Oversee the onboarding, renewal, and governance of supplier contracts
  • Ensure compliance with procurement, cyber security, IT, as well as risk and regulatory standards
  • Work closely with internal teams to manage supplier supervision and monitoring programs
  • Assess suppliers required to be onboarded
  • Provide oversight over end-to-end supplier onboarding, contract renewals and variations, document execution, supplier governance, and offboarding
  • Oversee negotiations with suppliers
  • Work closely with the Cyber Governance team
  • Maintain accurate records of supplier agreements, risk assessments, compliance documentation, and supervision and monitoring routines
  • Facilitate supervision and monitoring routines
  • Assist with analysing the effectiveness of supplier partnerships
What we offer
What we offer
  • Inclusive Culture
  • Flexible Work-Life Balance
  • Career Development
  • Financial and Well-being Perks
  • Fulltime
Read More
Arrow Right

TPRM Specialist

A highly motivated and hands-on professional to join the Supply Chain Security (...
Location
Location
Netherlands , Amsterdam
Salary
Salary:
Not provided
levy-professionals.com Logo
Levy Professionals
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Knowledge and experience with setting up projects & deliverables within supply chain security / Third-Party Risk Management (TPRM)
  • Proven experience in executing information security risk assessments
  • Knowledgeable on one or more areas such as security processes, technology architectures, network security, application security, and vulnerability management
  • Experience with the ServiceNow TPRM module is a significant advantage
  • HBO or University degree
  • Excellent stakeholder management skills
  • A strong ability to translate technical risks into business risks and vice versa
  • Hands-on, self-organised, willing to finish and deliver (execution power)
  • Service-oriented professional who enjoys taking on an internal consultancy role
  • The working language within the team is English
Job Responsibility
Job Responsibility
  • Govern and manage IT vendor relationships concerning performance on the security aspects of underlying contractual obligations
  • Execute Vendor Security Risk Assessments and perform necessary follow-up actions, focusing on material risks
  • Ensure that information security risks are identified and managed effectively throughout all stages of the relationship with external vendors
  • Review the applicability and quality level of assurance reports issued by third parties
  • Manage the IT security-related part of vendor contracts, working closely with 2nd line functions such as legal, compliance, and procurement on contractual changes
  • Actively stay up-to-date with emerging cyber security trends, risk, and threat developments, and share this knowledge to help integrate them into the assessment program
  • Help solve security-related questions, take initiative, and escalate in time if needed
  • Signal improvements related to the way of working inside the team and contribute to improving the excellence of the service offering
  • Work according to the DevOps & Agile methodology, improving Supply Chain Security services based on user stories
  • Occasionally investigate and resolve incidents as they occur
Read More
Arrow Right

Risk Specialist, GRCP

Airtable is looking for someone who wants to work in a fast paced and dynamic en...
Location
Location
United States , San Francisco; Austin
Salary
Salary:
148000.00 - 246000.00 USD / Year
airtable.com Logo
Airtable
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • General understanding of security, compliance, and privacy frameworks such as SOC2, ISO27001, ISO27701, GDPR, CCPA
  • Experienced with SaaS/Cloud suppliers
  • Familiarity with cloud data compliance and working with public cloud solutions (AWS)
  • Have knowledge of and interest in third party information security challenges and trends, including emerging threats
  • Independent self-starter, ability to manage multiple projects simultaneously
  • Detail-oriented and organized
  • Ability to take action quickly and drive to improve processes for efficiency
  • Flexible and able to change gears and focus depending on team and company priorities
Job Responsibility
Job Responsibility
  • Conduct third party security and privacy reviews on softwares, contractors, and other services to Airtable to reduce third party risks
  • Identify third party business risks and recommend risk treatment options to internal business stakeholders
  • Determine security contract requirements and communicate those to the Procurement & Legal team
  • Communicate with vendors and internal stakeholders to gather information needed for initial and periodic security and compliance reviews, validations, and audits, and to understand business objectives
  • Perform annual reviews on critical vendors to meet compliance and customer requirements
  • Collaborate with Procurement, IT, Legal, Finance to improve third party due diligence process
  • Provide general support to the GRCP team as needed
What we offer
What we offer
  • benefits
  • restricted stock units
  • incentive compensation
  • Fulltime
Read More
Arrow Right

Technical Support Specialist

An established and growing technology provider offering managed support across n...
Location
Location
United Kingdom , Manchester
Salary
Salary:
33000.00 GBP / Year
dynamicsearch.co.uk Logo
Dynamic Search Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A proactive, self-motivated approach with strong communication skills
  • Interest in developing across IT, networking, security and communications technologies
  • Passion for problem-solving and customer service
  • Previous experience in a technical support or service environment is beneficial but not essential
Job Responsibility
Job Responsibility
  • Acting as the first point of contact for customer technical issues across IT, network, voice and infrastructure
  • Troubleshooting and resolving incoming cases, escalating where necessary and working alongside on-site engineers
  • Managing support tickets end-to-end, ensuring clear and consistent communication with all stakeholders
  • Producing incident reports, summaries and root-cause analysis documentation
  • Carrying out system updates, patches, configuration changes and general maintenance tasks
  • Working professionally with customers, internal teams and third-party suppliers to ensure timely resolution
What we offer
What we offer
  • Structured career development with access to training and professional certifications
  • Supportive, friendly team culture with a genuine focus on wellbeing
  • 25 days holiday plus bank holidays (increasing with service)
  • Enhanced parental leave, pension contributions and employee health plans
  • Electric vehicle, cycle-to-work and technology purchase schemes
  • Regular team events, social activities and opportunities to get involved in community initiatives
  • Fulltime
Read More
Arrow Right

CA Wood Product Engineer

Lead the engineering and quality agenda with the overall goal to improve the cus...
Location
Location
China , Shanghai
Salary
Salary:
Not provided
https://www.ikea.com Logo
IKEA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in developing faucet products is required
  • Very good understanding of Democratic design and customer needs and expectations regarding function, customer friendliness and products critical to quality (CTQ)
  • Very good understanding of Democratic Design and customer needs and expectations regarding function, customer friendliness
  • Very good knowledge about DPOP and WoW in the HFB's
  • Very good knowledge of the product requirements, standards and test methods to verify requirements of products
  • Good knowledge of materials' properties and construction and its impact on cost and sustainability
  • Good knowledge of production processes and technologies
  • Good knowledge in Solid works, PDOC and IKEA specifications
  • Understanding of IKEA Strategic Landscape, especially IKEA Purchasing Strategy, IKEA Business model and IKEA Business Model for growth and key processes (e.g. PDP, SDP, DPOP) and IKEA Purchasing Manual
  • Understanding of relevant Category Plans and Total Cost
Job Responsibility
Job Responsibility
  • Lead and involve the right resources in Purchasing to secure the product development (NEWS and MOVES) projects are delivered on time, with quality and with full compliance
  • Lead product development at the factory floor from a technical point of view and secure scalability for further implementation at other suppliers
  • Define together with HFB's the evaluation & test requirements the supplier has to fulfil during the development stage, follow up that requirements are fulfilled before production start and secure the product is at correct quality level according to IKEA Documentation (incl packaging, tests and comply with relevant standards, demands and guidelines)
  • Participate in Contract Review and lead implementation of product documentation connected to new articles as well as product improves at suppliers
  • In cooperation with supplier and Product Compliance specialist, secure and verify that all IKEA requirement documents are correct, complete and available in the IT system at first delivery
  • Contribute to the development projects and design/product risk analysis (FMEA) from a technical perspective (create phase in DPOP), with competence in construction, material, production, quality and customer expectations
  • Actively identify, put forward and lead/execute Product Improvements with priority to satisfy customers, as well to utilize material and energy in an efficient way
  • Conduct Production Risk Assessments for new products together with supplier and production engineer
  • Together with supplier organize and secure product is started right from the beginning and according to working methods in purchasing manual
  • Register product, arrange for Gate check before First Delivery, secure 1st batch production and first delivery inspection are completed and approved before hand over to Production Engineer (PNE)
  • Fulltime
Read More
Arrow Right

Corporate Security Senior Specialist

The Corporate Security Manager is responsible for ensuring the holistic safety a...
Location
Location
Italy , Milano
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Highly developed leadership skills, especially in an international environment
  • Experience of the full range of corporate security risks and mitigation strategies, processes and systems
  • Effective communication and influence skills, deployable at all levels of the organisation in a matrix structure
  • Fluent in English and Italian
  • Ability to act coolly and effectively as the leader in fast-moving and complex security operations
  • Professional and/or academic qualifications in operational security risk management
  • Or significant relevant experience operating at a senior level in an operational security environment
Job Responsibility
Job Responsibility
  • Setting up the function and implementing Vodafone Corporate Security policies & best practice in VST
  • Direct responsibility for all Corporate Security operational activities and advice across VST business and function
  • Sponsor and coordinator of local Corporate Security agenda
  • Support the engagement with external stakeholders on VST operational Corporate Security matters
  • Support Property, Facilities & Security manager in all on site building activities in all VST locations and ensure consistency between implemented measures and Group policies
  • Leading support to VST (as required) in all operational matters regarding: Business Continuity, Crisis Management, Personnel and Physical Security, Fraud Management, Supplier security, Security Awareness, Access management, BEMS – Security devices
  • Responsible for the production and delivery of local strategies, internal policies, advice and consultancy in the above functional areas in line with Group policies and local laws
  • Secretary to the VST Crisis Management Team
  • Supporting the reporting manager to engage on these issues with governments, international organisations and NGOs
Read More
Arrow Right

Supplier Cyber Security Specialist - Third Party Risk Management

We are seeking a seasoned cyber security professional to lead the Vulnerability ...
Location
Location
India , Pune
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Possess over 10 years of IT experience with a strong focus on cyber security, vulnerability management, and remediation
  • Proficient in tools such as QualysGuard VMDR, WAS, and cloud scanning solutions
  • Skilled in web application penetration testing and knowledgeable in OWASP, Kali Linux, Burp Suite, CVE, SSL PKI, IAM, SIEM, and perimeter security
  • Experienced in managing large-scale vulnerability scanning operations and reporting
  • Strong stakeholder management and communication skills
  • Solid understanding of networking and cyber security policies, standards, and procedures
Job Responsibility
Job Responsibility
  • Lead the Vulnerability Management and Responsible Disclosure team to strengthen Vodafone’s cyber defence capabilities
  • Drive vulnerability management initiatives, ensuring timely identification, communication, and remediation of threats
  • Oversee penetration testing activities related to responsible disclosures and support incident response during crises
  • Research emerging threats, including zero-day vulnerabilities, and ensure targeted scans and mitigation actions
  • Champion continuous improvement through automation and cross-functional collaboration
  • Act as a technical expert in security scanning and penetration testing
  • Foster team development through individual growth plans and maintain high engagement levels
  • Contribute to administrative and delivery initiatives across domains
What we offer
What we offer
  • Opportunity to lead a high-impact domain within a global cyber security function
  • Exposure to cutting-edge vulnerability management tools and practices
  • Collaboration with international teams and stakeholders across Vodafone markets
  • A chance to influence Vodafone’s cyber risk strategy and operational resilience
  • A dynamic and inclusive work environment that values innovation and continuous improvement
  • Fulltime
Read More
Arrow Right