Cyber Security Specialist- 3rd Party Risk Assessment
Are you collaborative, innovative, and enjoy visionary thinking? Are you a self-motivated individual who is hardworking with proven work history? Are you forward thinking, creative individual who willingly takes ownership of complex and challenging initiatives? Then, Apply Now!
Working with one of the top financial clients this role calls for a Cyber Security Specialist- 3rd Party Risk Assessment who will define, develop and implement program on applications and in assigned business. The successful candidate will be responsible for compliance to standards and respond to questionnaires adjusting to target audience. This person will serve as key liaison and contact for stakeholder groups.
Responsibilities:
- Provide consultation and advice to partners on a broad range Technology Controls / Information Security programs / policies / standards and incidents including regulatory compliance requirements and reporting
- Conduct project consulting on assessment of risk, definition of required controls, appropriateness of implemented control procedures, vulnerability assessments and any other relevant areas
- Lead or contribute to completion of risk and control design assessments for applications in assigned business, communicate and document impact of control gaps to the business and the overall client, risk mitigation, remediation plans, and remediation strategy
- Contribute to the definition, development, and oversight of a global security management strategy and framework.
- Ensure technology, processes, and governance are in place to monitor, detect, prevent, and react to both current and emerging technology and security threats against TDBGs business.
- Develop on-going Technology Risk reporting, monitoring key trends and defining metrics to regularly measure control effectiveness for own area
- Adhere to internal policies / procedures, technology control standards, and applicable regulatory guidelines
- Understand the business implications of technology risks and the commensurate security and IT risk strategies associated with these risks; escalating urgent issues in a time appropriate manner
- Contribute to the review of internal processes and activities and assist in identifying potential opportunities for improvement
- Adhere to, advise, oversee, monitor and enforce enterprise frameworks and methodologies that relate to technology controls / information security activities.
- Influence behavior to reduce risk and foster a strong technology risk management culture throughout the enterprise
- Define / develop / implement / manage standards, policies, procedures, and solutions that mitigate risk and maximize security, availability of service, efficiency and effectiveness
- Actively manage relationships with other areas of Technology / businesses / corporate and/or control functions and ensure alignment with enterprise and/or regulatory requirements
- Keep abreast of emerging issues, bank policies/standards/processes, trends, and evolving regulatory requirements and assess potential impacts to the Bank
- Participate in business specific / cross-functional / enterprise initiatives as a subject matter expert helping to identify risk / provide guidance
- Identify and recommend opportunities to enhance productivity, effectiveness and operational efficiency
- Establish effective relationships across multiple business and technology partners, program and project managers
- Participate in knowledge transfer within the team and business units
Desired Skill-Set:
- Risk management experience
- Cyber Security experience
- Governance experience
- Info Security experience
- Coupa experience
- 3rd party risk experience
- 3rd party risk assessments experience
- Cloud Security experience
- Network Security experience
- DLP experience
- Identity access management and encryption experience
Nice to Have:
- Experience with managing a small team
- Experience as a Team Lead
- Archer experience
BeachHead is an equal opportunity agency and employer. We advocate for you and welcome anyone regardless of race, color, religion, national origin, sex, physical or mental disability, or age.