Information Security and Supplier Assurance Consultant

Social network you want to login/join with:

col-narrow-left

The European Bank for Reconstruction and Development

London, United Kingdom

Other

-

Yes

col-narrow-right

6f4de97c883c

5

12.08.2025

26.09.2025

col-wide

We are looking for a highly skilled Information Security and Supplier Assurance Consultant to join our Operational Risk Management (ORM) team at the European Bank for Reconstruction and Development (EBRD). This is a unique opportunity to play a vital role in protecting the EBRD’s Information Assets and IT Facilities, supporting the delivery of critical projects, and shaping our security and risk governance across the Bank.

Your Role and Purpose

As an Information Security and Supplier Assurance Consultant, you will support the Head of Information Security in managing Information Security (IS) risks across the Bank. You will be responsible for:

• Delivering key IS projects and driving supplier and project security assurance activities.
• Reviewing and updating IS policies, procedures, and the broader Information Security Framework.
• Providing technical security consultancy and managing risk assessments, including third-party and cybersecurity risks.
• Ensuring regulatory compliance and supporting internal/external reviews.

Key Responsibilities

• Act as the Bank’s IS technical consultant on Supplier and Project Assurance activities.
• Oversee the administration of the SureCloud platform and baseline control set maintenance.
• Lead security triaging and approvals of new projects and suppliers.
• Conduct security assessments and technical risk evaluations.
• Liaise with IT and MSSP teams to identify and remediate security risks/incidents.
• Draft reports, risk register updates, and maintain documentation aligned with best practice (ISO 27001, NIST CSF).
• Track and advise on industry security trends and their implications.
• Contribute to social engineering assessments, BAU risk mitigation, and business process evaluations.
• Influence and support change by aligning policy updates with new regulations and business needs.

What We’re Looking For

• A Bachelor’s or Master’s degree (preferably in IT, Security, or Risk).
• At least one recognised IS qualification (CISM, CISA, CISSM, ISO 27001 Lead Auditor/Implementer, CIPP/E).
• Proven experience in delivering project and supplier assurance activities in the IS domain.
• Strong written and verbal communication skills, especially the ability to translate technical details into business-friendly language.
• Effective project management and stakeholder engagement abilities.
• Ability to work independently, manage multiple priorities, and maintain high attention to detail.
• A collaborative mindset with strong influencing and problem-solving capabilities.

Why Join EBRD?

Working with us means contributing to projects that promote economic transition and sustainable growth. You'll be part of a diverse, mission-driven team with a real-world impact across the EBRD’s regions. In this role, you’ll be at the heart of strengthening our cybersecurity and information resilience in a dynamic, international environment.

What is it like to work at the EBRD?

Our agile and innovative approach is what makes life at the EBRD a unique experience! You will be part of a pioneering and diverse international organisation, and use your talents to make a real difference to people's lives and help shape the future of the regions we invest in.

The EBRD environment provides you with:

• Varied, stimulating and engaging work that gives you an opportunity to interact with a wide range of experts in the financial, political, public and private sectors across the regions we invest in;
• A working culture that embraces inclusion and celebrates diversity;
• An environment that places sustainability, equality and digital transformation at the heart of what we do.