At Mindbox we connect top IT talents with technology projects for leading enterprises across Europe.
Join our client’s team as a TPSA Senior Consultant!
Are you passionate about cybersecurity, risk management, and consulting on global projects? We are looking for a Senior Risk Consultant to drive third-party security assessment and risk consultancy within a major transformation program. This is a unique opportunity to shape and implement an innovative approach to third-party risk assessment, enabling smarter and safer onboarding of critical vendors.
Sounds like your kind of challenge?
#LI- Hybrid – 6 days a month from the office in Kraków
What you’ll be doing
- Define and deliver the TPSA consultancy strategy, ensuring cyber risk methodologies are integrated into supplier management processes.
- Provide end-to-end security risk consultancy during the selection and onboarding of critical third-party suppliers.
- Act as an SME on risk and control frameworks, informing design and remediation strategies for technical and process-related gaps.
- Engage and influence stakeholders globally, including Cybersecurity leadership, Control Officers, Risk Stewards, and regulators.
- Conduct Quality Assurance reviews of TPSA assessments to maintain best-in-class standards.
- Collaborate across multiple teams to drive continuous improvement in third-party security governance.
- Prepare concise presentations, reports, and senior stakeholder updates.
- Contribute to a culture of security excellence and embed new approaches through peer training and advocacy.
Note: Detailed project information will be shared during the recruitment process.
What you get in return
- Flexible cooperation model – choose the form that suits you best
(B2B, employment contract, etc.) - Hybrid work setup – 6 days a month from the office in Kraków
- Collaborative team culture – work alongside experienced professionals eager to share knowledge
- Continuous development – access to training platforms and growth opportunities
- Comprehensive benefits – including Interpolska Health Care, Multisport card, Warta Insurance, and more
- High quality equipment – laptop and essential software provided
Who we’re looking for
- Experience & Knowledge:
- 5+ years in cybersecurity or risk management roles, ideally within financial services or large-scale global enterprises.
- Proven experience in third-party/supply chain governance and risk assessment.
- Familiarity with regulatory expectations and engagement with global stakeholders.
- Technical Skills:
- Strong understanding of risk and control frameworks and their operationalization.
- Knowledge of Cloud Security (SaaS focus), AI risk considerations, and control design.
- Bachelor’s degree in IT security or equivalent experience, complemented by relevant cybersecurity certifications (CISSP, CISA, CISM, CRISC, CCSP).
- Soft Skills:
- Excellent communication and influence skills—capable of translating technical detail into business risk for decision-makers.
- Experience working in agile, complex, and multinational environments.
- Ability to manage multiple priorities, work independently, and deliver at pace without compromising quality.
Joining this project you’ll become part of Mindbox – a tech-driven company where consulting, engineering, and talent meet to build meaningful digital solutions. We’ll back you up every step of the way, accelerate your development, and ensure your skills make a difference.
