Third-Party Risk Management Specialist

About The Position

Requirements

• Occasionally lift and/or move up to 10 lbs.
• Literacy in English.
• Ability to sit for extended periods of time, twist, bend, sit, walk use hands to twist, handle or feel objects, tools, or controls, such as computer mouse, computer keyboard, calculator, stapler, telephone, staple puller, etc., reach with hands and arms, balance, stoop, kneel, talk, or hear.
• Specific vision abilities required by the job include close vision, distance vision, peripheral vision, depth perception and the ability to adjust focus.
• 3-5 years’ experience in third-party management. Information security knowledge preferred.
• Must possess strong organizational skills and attention to detail.
• Competent in Microsoft Office specifically Outlook and Excel.
• Must possess a high degree of integrity and trust along with strong communication skills and ability to work individually, within a team and with other business groups.
• Knowledge of third-party management regulatory requirements.
• Ability to understand and interpret third-party management review documents (i.e. SOC reports, Information Security Programs, business continuity/disaster recovery documents, etc.)
• Must have ability to communicate effectively.
• Ability to work in an agile environment.

Nice To Haves

• Project and program management concepts and controls experience not required but preferred.

Responsibilities

• Manages Third-Party Management review efforts to ensure adequate performance, reporting, and oversight requirements are in place.
• Works with business owners to manage collection of third-party management required documents.
• Performs third-party management tracking and reporting for the Third-Party Management Committee.
• Assist with Third-Party Management program efforts to ensure adequate performance and security practices are in place.
• Perform third-party management analysis when required to ensure risks are being addressed.
• Responsible for Third-Party Management Committee agenda, minutes and reporting.
• Primary person responsible for third-party information security reviews and documentation.
• Assists with tracking recommendations and remediation efforts regarding the Information Security Program.
• Assists with tracking and documentation for the Information Security Program including policies and procedures.
• Assists with tracking and documentation for the Information Technology Steering Committee.
• Assists with tracking and documentation for the Enterprise Risk Management Program including policies and procedures.
• Assists with tracking and documentation for the IT Audit Program including testing results.
• Assists with tracking and documentation for the Business Continuity and Disaster Recovery program including policies, procedures, and testing results.
• Monitor and escalate any security or compliance issues and alerts to management.
• Help define and support process improvements.

Benefits

• Employee Stock Ownership Plan & 401k Plan
• Healthcare (Medical, Dental, Vision, Telehealth, Life insurance)
• 12-week Paid Medical Leave
• Paid Parental Leave: 21-weeks Primary Care Parent, 14-weeks Secondary Care Parent
• $5,000 Family Care Reimbursement: Childcare, Elder Care, Student Loan Debt, Pet expenses, down payment assistance
• PTO from 13 to 23 days depending on tenure. Cashout and Carryover options.
• 10 Days Sick Time
• 11 Paid Holidays
• 4 Days Volunteer Time
• 2 Days Self Allowance Time
• Tuition Assistance