Key skills/knowledge/experiences:
* An appreciation and understanding of supply chain/supplier/third party security assurance using manual and automated processes coupled with relevant experience in a supply chain security assurance related role.
* Proven experience as a technical specialist or a similar role within a software development & implementation team.
* Knowledge of Information Security Principles and best practices and experience in managing information security risk and controls in a regulatory environment.
* Significant experience of implementing cloud based GRC tooling (ideally with a focus on Supply Chain/Supplier/Third Party Security Assurance).
* Experience with integrating different software systems and APIs.
* Good understanding of software development life cycles and methodologies from an IT and Security perspective.
* Ability to create/decipher and maintain detailed technical documentation and technical specifications relating to software implementation.
* Ability to diagnose and resolve technical issues quickly and efficiently.
* Strong analytical skills to understand complex systems and workflows.
* Experience in providing ongoing support and maintenance for implemented software.
* Experience in training and creating user manuals/guides.
* Experience of operating in all stages of the software delivery life cycle (including security aspects).
* Good automation skills, including experience with unit testing and automated testing tools.
* Experience of automated and manual AppSec testing practices and principles.
* Knowledge of common application and infrastructure security vulnerabilities and mitigations.
* Experience in tools like Jira, Automation Scripting experience (eg Python, Javascript etc ), Confluence, Lucid/Visio, Excel, SQL, PowerPoint, SaaS Implementation.