SUMMARY OF DAY TO DAY RESPONSIBILITIES:

About the role: We are looking for someone to lead and execute third party cyber risk assessments of global suppliers. The assessor will provide specialized expertise and guidance on assessing risks, identifying potential gaps and providing security solutions to mitigate risks and protect. The assessor may also participate in department initiatives of moderate to high complexity and provide complex reporting, analysis, and assessments at the functional, business line or enterprise level.

• Coordinate with key risk stakeholders to initiate, scope and plan third party cyber risk assessments of new and existing suppliers of all risk levels.

• Lead or contribute to the completion of third-party cyber risk assessments at the business application, portfolio, or overall enterprise level.,

• Communicate the cyber risk assessment results to internal and external stakeholders.

Must haves:

3+ years of third party cyber risk assessment/assessor experience.

Expert knowledge of IT security and risk disciplines and practices.

Advanced knowledge of organization, technology controls, security and risk issues.

Demonstrated ability to participate in complex, comprehensive or large projects and initiatives.

Ability to serve as a lead expert resource in technology controls and information security for project teams, the business, organization and outside vendors.