Job Details

Home

Immediate Interview for Cyber Security Third Party Risk Manager || Remote || USC or GC only at Remote, Remote, USA

Email: [email protected]

From:

Rajesh Kumar,

Pivotal Technologies, Inc

[email protected]

Reply to: [email protected]

Title:

Cyber Security Third Party Risk Manager

Location:

Remote

Location Details:

work EST hours ~8-5

Duration:

3-6 months c2h

USC/GC only

Must Haves:

Minimum 3 years experience successfully managing a third-party risk team, or vendor due diligence team in cyber security.

Can build the program from minimal manual processes into an automated program that aligns with best practices and follows NIST and ISO 27001 frameworks.

Experience in managing people and bringing a team together to achieve a common goal

Need to be able to juggle multiple priorities.

Experience with various industry regulations and frameworks (PCI, HIPAA, ISO27001/2, NIST, HITRUST, etc.)

Bachelors degree in computer science, Information Security, or experience in related field

Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA)

Experience with GRC tools such as Service Now, One Trust, Archer, etc.

Experience working in a highly regulated environment.

Strong background in risk and controls, security controls, auditing, and system security.

Experience negotiating IT contracting terms with vendors legal and information security teams

Ability to express complex technical concepts in business terms.

Organized and detail-oriented, able to work well under deadlines in a changing environment and complete multiple projects effectively and concurrently.

Demonstrated customer focus evaluates decisions through the eyes of the customer; builds strong customer relationships and creates processes with customer viewpoint.

Strong analytical skills strong problem-solving skills, communicates in a clear and succinct manner and effectively evaluates information/data to make decisions; anticipates obstacles and develops plans to resolve.

Change oriented actively generates process improvements; supports and drives change and confronts difficult circumstances in creative ways. Self-motivated, self-directed, flexible, and able to work under pressure and in fast paced team environment.

Demonstrated ability to lead and motivate staff and to apply skills and techniques to solve dynamic problems.

Plus:

-

Onetrust

Cyber Security Third Party Risk Manager

Job Description

:

As a Cyber Security Third-Party Risk Manager, you will play a critical role developing, enhancing and executing the third-party risk management program including onboarding, maintenance and ongoing monitoring, and offboarding of third-party suppliers. Your primary responsibilities will include identifying and categorizing third party vendors based on risk, understanding and prioritizing the risks, establishing and enforcing key controls to mitigate the risk, perform continuous monitoring that tracks and reassesses third parties, and ensure third party contractual compliance with Sentara policy and standards.

Minimum Requirements:

Experience with various industry regulations and frameworks (PCI, HIPAA, ISO27001/2, NIST, HITRUST, etc.)

Experience with GRC tools such as Service Now, One Trust, Archer, etc.

Experience working in a highly regulated environment.

Minimum three years experience successfully managing a third-party risk, or vendor due diligence team in cyber security.

Strong background in risk and controls, security controls, auditing, and system security.

Experience negotiating IT contracting terms with vendors legal and information security teams

Ability to express complex technical concepts in business terms.

Organized and detail-oriented, able to work well under deadlines in a changing environment and complete multiple projects effectively and concurrently.

Demonstrated customer focus evaluates decisions through the eyes of the customer; builds strong customer relationships and creates processes with customer viewpoint.

Strong analytical skills strong problem-solving skills, communicates in a clear and succinct manner and effectively evaluates information/data to make decisions; anticipates obstacles and develops plans to resolve.

Change oriented actively generates process improvements; supports and drives change and confronts difficult circumstances in creative ways. Self-motivated, self-directed, flexible, and able to work under pressure and in fast paced team environment.

Demonstrated ability to lead and motivate staff and to apply skills and techniques to solve dynamic problems.

Key Responsibilities:

Regularly interact with all levels of management to present and discuss third-party risk management

Conduct comprehensive risk assessments of third-party vendors based on risk

Manage a team of assessors for performing vendor assessments and vendor contracts negotiations

Analyze and prioritize risks based on their potential impact on the organizations operations, data, and reputation.

Develop and streamline the third-party risk management process.

Identify and assess vulnerabilities within vendor systems, networks, and applications.

Collaborate with cross-functional teams, including IT, security, and compliance, to develop and implement risk mitigation strategies.

Prepare detailed third-party risk assessment reports, including findings, recommendations, and mitigation plans, for presentation to management.

Maintain accurate and up-to-date documentation of third-party risk assessment activities, findings, and risk treatment plans.

Assist in audits and assessments to demonstrate compliance with cybersecurity standards.

Qualifications and Skills:

Bachelors degree in computer science, Information Security, or experience in related field

Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA)

Strong understanding of cybersecurity principles, risk assessment methodologies, and threat landscape analysis.

At least 3 years experience managing a third-party risk management program and team

Proficiency in performing third-party risk assessments and negotiating contractual security language

Knowledge of regulatory compliance requirements and industry standards.

Excellent analytical and problem-solving skills.

Effective communication and interpersonal abilities to collaborate with multidisciplinary teams.

Attention to detail and the ability to prioritize tasks in a dynamic environment.

Keywords: information technology green card
Immediate Interview for Cyber Security Third Party Risk Manager || Remote || USC or GC only
[email protected]

[email protected]
View all

Thu Oct 24 00:49:00 UTC 2024

To remove this job post send "job_kill 1871547" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to [email protected] -

To

Subject
Message -

rajesh.kumar@pivotal-technologies.com wrote:
From:

Rajesh Kumar,

Pivotal Technologies, Inc

rajesh.kumar@pivotal-technologies.com

Reply to:   rajesh.kumar@pivotal-technologies.com

Title:

Cyber Security Third Party Risk Manager

Location:

Remote

Location Details:

work EST hours ~8-5

Duration:

3-6 months c2h

USC/GC only

Must Haves:

Minimum 3 years experience successfully managing a third-party risk team, or vendor due diligence team in cyber security.

Can build the program from minimal manual processes into an automated program that aligns with best practices and follows NIST and ISO 27001 frameworks.

Experience in managing people and bringing a team together to achieve a common goal

Need to be able to juggle multiple priorities.

Experience with various industry regulations and frameworks (PCI, HIPAA, ISO27001/2, NIST, HITRUST, etc.)

Bachelors degree in computer science, Information Security, or experience in related field

Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA)

Experience with GRC tools such as Service Now, One Trust, Archer, etc.

Experience working in a highly regulated environment.

Strong background in risk and controls, security controls, auditing, and system security.

Experience negotiating IT contracting terms with vendors legal and information security teams

Ability to express complex technical concepts in business terms.

Organized and detail-oriented, able to work well under deadlines in a changing environment and complete multiple projects effectively and concurrently.

Demonstrated customer focus  evaluates decisions through the eyes of the customer; builds strong customer relationships and creates processes with customer viewpoint.

Strong analytical skills  strong problem-solving skills, communicates in a clear and succinct manner and effectively evaluates information/data to make decisions; anticipates obstacles and develops plans to resolve.

Change oriented  actively generates process improvements; supports and drives change and confronts difficult circumstances in creative ways. Self-motivated, self-directed, flexible, and able to work under pressure and in fast paced team environment.

Demonstrated ability to lead and motivate staff and to apply skills and techniques to solve dynamic problems.

Plus:

Onetrust

Cyber Security Third Party Risk Manager

Job Description

As a Cyber Security Third-Party Risk Manager, you will play a critical role developing, enhancing and executing the third-party risk management program including onboarding, maintenance and ongoing monitoring, and offboarding of third-party suppliers. Your primary responsibilities will include identifying and categorizing third party vendors based on risk, understanding and prioritizing the risks, establishing and enforcing key controls to mitigate the risk, perform continuous monitoring that tracks and reassesses third parties, and ensure third party contractual compliance with Sentara policy and standards.

Minimum Requirements:

Experience with various industry regulations and frameworks (PCI, HIPAA, ISO27001/2, NIST, HITRUST, etc.)

Experience with GRC tools such as Service Now, One Trust, Archer, etc.

Experience working in a highly regulated environment.

Minimum three years experience successfully managing a third-party risk, or vendor due diligence team in cyber security.

Strong background in risk and controls, security controls, auditing, and system security.

Experience negotiating IT contracting terms with vendors legal and information security teams

Ability to express complex technical concepts in business terms.

Organized and detail-oriented, able to work well under deadlines in a changing environment and complete multiple projects effectively and concurrently.

Demonstrated customer focus  evaluates decisions through the eyes of the customer; builds strong customer relationships and creates processes with customer viewpoint.

Demonstrated ability to lead and motivate staff and to apply skills and techniques to solve dynamic problems.

Key Responsibilities:

Regularly interact with all levels of management to present and discuss third-party risk management

Conduct comprehensive risk assessments of third-party vendors based on risk

Manage a team of assessors for performing vendor assessments and vendor contracts negotiations

Analyze and prioritize risks based on their potential impact on the organizations operations, data, and reputation.

Develop and streamline the third-party risk management process.

Identify and assess vulnerabilities within vendor systems, networks, and applications.

Collaborate with cross-functional teams, including IT, security, and compliance, to develop and implement risk mitigation strategies.

Prepare detailed third-party risk assessment reports, including findings, recommendations, and mitigation plans, for presentation to management.

Maintain accurate and up-to-date documentation of third-party risk assessment activities, findings, and risk treatment plans.

Assist in audits and assessments to demonstrate compliance with cybersecurity standards.

Qualifications and Skills:

Bachelors degree in computer science, Information Security, or experience in related field

Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA)

Strong understanding of cybersecurity principles, risk assessment methodologies, and threat landscape analysis.

At least 3 years experience managing a third-party risk management program and team

Proficiency in performing third-party risk assessments and negotiating contractual security language

Knowledge of regulatory compliance requirements and industry standards.

Excellent analytical and problem-solving skills.

Effective communication and interpersonal abilities to collaborate with multidisciplinary teams.

Attention to detail and the ability to prioritize tasks in a dynamic environment.

Keywords: information technology green card 
Immediate Interview for Cyber Security Third Party Risk Manager || Remote || USC or GC only
rajesh.kumar@pivotal-technologies.com

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]
Time Taken: 0

Location: ,