Loading...
Share this Job

Supply Chain Controls Senior Analyst

Location: 

Warwick, GB, CV34 6DA

Division:  IT Security Technology Risk
Job Type: 
Requisition Number:  22269
Job Category:  IT
Job Function:  Information Technology

About the role

 

Supply Chain Controls, Senior Analyst, Warwick

 

We have an exciting new opportunity for a Supply Chain Controls, Senior Analyst to join us and be responsible for support over Security Controls Assurance for National Grid’s IT Supply Chain and evaluation of supplier risks in relation to the services provided.  


The role has been created to ensure compliance with regulations and internal controls by performing supplier assurance evaluations, identifying control deficiencies, recommending improvements in internal control structure and conducting independent assessments of third parties/vendors.  


This role spans both 1st and 2nd Line of Defence (LoD) within the 3 Lines of Defense model for Risk Management, and we are looking for someone to build knowledge of, establish and maintain good working relationships across IT, Security, Commercial, Procurement, Legal and supplier sponsors.  
 

About you

 

You will come from a background in Risk Management, Audit, Information Security and Compliance with strong interpersonal and relationship building skills, and the willingness to challenge programmes, projects and leadership on controls, compliance and security matters.


You’ll provide IT supply chain assurance support, advice and challenge for National Grids 1st line of defence functions prior to the contracting of services or products, whilst reviewing supplier responses to defined security questionnaires, identifying and quantifying areas of risk and potential vulnerability.


Key to the role is the ability to create, manage and maintain Supplier profiles within National Grids Archer eGRC tool (SRM), ensuring security assurance artefacts, IT control test plans, findings and remediations are raised, managed, updated and resolved within an agreed timeframe.


Technically, you will have demonstrable knowledge of industry standards, regulations and methodologies (NIST, COBIT, ISO, SOx, GDPR) and an uunderstanding of SSAE 16, ISAE 3402, SOC 1, SOC 2 and AUP reports and principles.
Certifications such as CISA, CRISC, CISM are highly desirable for this position.

About us

 

National Grid touches the lives of almost everyone in the UK, with an energy network that stretches across the Atlantic. We’re an international team, and our work underpins the lives of millions of people. Feet forwards, head up, and eyes bright, we’re working hard to create value for people today – and shape the future of energy tomorrow.

 

In the UK, we don’t generate or sell energy – we join the dots to get energy from A to B. From making a cup of tea in the morning, to keeping the lights on in hospitals, our electricity network puts power in the hands of people. Without it, the world as we know it would grind to a halt.

 

The world of energy is changing beyond recognition. Working at National Grid, you won’t just be touching the lives of almost everyone in the UK – you’ll be shaping the way we use and consume energy for generations to come. 

 

More Information

 

We encourage candidates to submit their applications as early as possible. National Grid’s recruitment periods can and may vary. We reserve the right to remove this advert or close it to further applications at any point during the recruitment process.

 

For further information please contact Sukhi.Shina2@nationalgrid.com

#LI-FD1

At National Grid, we work towards the highest standards in everything we do, including how we support, value and develop our people. Our aim is to encourage and support employees to thrive and be the best they can be. We celebrate the difference people can bring into our organisation, and welcome and encourage applicants with diverse experiences and backgrounds, and offer flexible and tailored support, at home and in the office.

Our goal is to drive, develop and operate our business in a way that results in a more inclusive culture. All employment is decided on the basis of qualifications, the innovation from diverse teams & perspectives and business need. We are committed to building a workforce so we can represent the communities we serve and have a working environment in which each individual feels valued, respected, fairly treated, and able to reach their full potential.