Digital Compliance Consultant

Role Overview: The Digital Compliance and Third-Party Risk Specialist is responsible for interpreting and applying digital regulatory requirements and managing cybersecurity risks associated with third parties. The role ensures compliance with global digital regulations and supports supplier cybersecurity due diligence and ongoing risk assessment activities. Primary Skill Set: • Digital regulatory compliance (Cyber, AI, Data Management,etc) • Interpretation and application of digital regulations (e.g., NIS2, RED act, AI act, Data act, Machinery regulations, local regulations ie Cybersecurity Law in China, etc.) • Third-party and supplier cyber risk management • Cybersecurity compliance verification for third parties • Risk assessment and control testing methodologies Secondary Skill Set: • Supplier due diligence and risk reporting on the state of cybersecurity • Periodic risk and control assessment planning • Stakeholder coordination with procurement, legal, and security teams • Documentation and evidence-based assessment • Regulatory and risk reporting

Roles and Responsibilities

• Interpret digital regulatory requirements and translate them into applicable compliance controls • Apply industry knowledge to assess organizational alignment with cyber, AI, and data-related regulations • Manage cybersecurity risks related to third parties and suppliers • Conduct supplier cybersecurity due diligence and compliance verification activities • Perform periodic risk assessments and control testing for third parties • Support risk treatment and remediation activities with suppliers and internal stakeholders • Provide clear reporting on digital compliance and third.