KEY DUTIES AND RESPONSIBILITIES

WHAT YOU’LL NEED TO SUCCEED

• 4 or more years of experience in IT audit, supplier IT risk, vendor, or third-party security risk management
• Bachelor’s Degree in Information Technology, Information Systems, Computer Science or a related technical field of study. Related experience may be considered in lieu of required education
• Working experience with third party security assessment and management tools (Archer preferred)
• Working experience in third party security risk assessment methodologies and industry frameworks
• Knowledge of Shared Assessment Third-Party Risk Management practices and questionnaires
• Solid experience in application, network, and cloud security domains and assessments
• Certifications: Certified Information on Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Shared Assessments Certified Third Party Risk Professional (CTPRP) or Certified Third Party Risk Assessor (CTPRA), Information Systems Security Architecture Professional (ISSAP), or Information Systems Security Engineering Professional (ISSEP)
• Strong critical thinking and planning skills
• Experience in large enterprise environments
• Strong verbal and written communication, negotiation, analytical, time management, organizational, and relationship management skills• Comfortable dealing with ambiguity, making decisions with sub-optimal/incomplete information
• Ability to analyze and challenge current working methods to create improvements in processes and result
• Experience working with cross functional teams
• Ability to work independently within a geographically dispersed team
• Understand and comply with all applicable company policies