Location: Remote 

Contract Duration: 6 months (with possibility of extension)

Contract details: B2B/ PFA or SRL

Role Overview

We are looking for an AI Security & Resilience Support Specialist to support Third Party Security Assessments (TPSA) for vendors involved in solution delivery, with a strong focus on AI-related, architectural, and security risks.

The role enables informed vendor risk decisions and supports Procurement, Legal, and Governance functions by delivering clear, decision-ready security risk assessments that facilitate confident contracting and timely sourcing decisions.

Key Responsibilities

Third Party Security Assessment (TPSA) Support

• Deliver end-to-end TPSA outcomes for vendors engaged in solution delivery, including:

  • Inherent risk identification

  • Control gap analysis

  • Residual risk assessment

• Review and evaluate vendor risk summaries generated through LGs TPSA risk tooling.

• Identify and assess security, architectural, and AI-related risks early in the vendor engagement lifecycle to avoid downstream sourcing delays.

Risk Analysis & Decision Support

• Produce decision-ready risk summaries suitable for:

  • risk acceptance

  • escalation

  • remediation tracking

• Clearly articulate security findings, risk levels, and recommended actions to stakeholders.

• Support risk acceptance processes by providing concise, well-documented security inputs.

Procurement & Contractual Enablement

• Translate security findings into actionable contractual controls and obligations.

• Work closely with Procurement and Legal teams to ensure:

  • appropriate security clauses are included in contracts

  • relevant security schedules are defined and enforced

• Enable Procurement and Legal to contract with confidence by ensuring risks are clearly understood and mitigated.

Stakeholder Collaboration

• Provide timely security input during vendor briefings and sourcing activities.

• Collaborate with Procurement, Legal, Architecture, AI, and Governance teams to align on risk posture and mitigation strategies.

• Act as a trusted security advisor throughout the vendor onboarding and assessment process.

Required Skills & Experience

Security & Risk Management

• Strong experience in Third Party Risk Management (TPRM / TPSA)

• Ability to assess and articulate:

  • inherent risk

  • control effectiveness

  • residual risk

• Experience supporting risk acceptance, escalation, and remediation workflows

AI & Architecture Awareness

• Good understanding of AI-related security risks, including data protection, model risk, and ethical considerations

• Ability to identify architectural security risks in vendor-provided solutions

• Familiarity with cloud-based and modern solution architectures

Governance & Compliance

• Experience translating security findings into governance and contractual requirements

• Understanding of regulatory, compliance, and security control frameworks (e.g. ISO 27001, NIST, SOC2 – knowledge level acceptable)

Communication & Stakeholder Skills

• Strong written and verbal communication skills

• Ability to present complex security findings in a clear, decision-ready format

• Proven experience working with Procurement, Legal, and Governance stakeholders

Nice-to-Have

• Experience working with AI solutions or AI-enabled vendors

• Familiarity with vendor risk tooling and automated TPSA platforms

• Background in enterprise security, risk, or resilience functions

What This Role Delivers

• Faster, more confident vendor onboarding decisions

• Reduced security and AI-related sourcing risks

• Clear, actionable risk visibility for Procurement, Legal, and Governance

• Improved contractual security posture with third-party vendors