Third Party Risk Senior Consultant

Crowe LLPSan Francisco, CA
1dRemote
Match Resume

About The Position

Third Party Senior Staff Job Summary: The position will be primarily responsible for assessing the information security posture of key clients’ third parties and coordinating the overall execution and delivery of assessments. The position will work within a Crowe team at a client or third party site and be responsible for leading the effort to identify key risks and information security gaps. Projects would be performed through interacting with the client’s IS and Business Unit leadership, as well as the client’s vendors, service providers, and partners. Specific projects may include: Conducting Third Party Risk Assessments by evaluating third party questionnaire responses, performing control validation, and assessment of documentation per established procedures and standards Performing site visits to third-party facilities Evaluating the effectiveness of security controls for compliance with applicable policies, security laws, and regulations Assessing cloud technologies such as Software as a Service (SaaS) hosted applications, Platform as a Service (PaaS), and Infrastructure as a Service deployments (IaaS) Documenting information security risk and compliance findings and recommendations for remediation Perform quality assurance and review of assessments performed by other team members Delivering high quality, thorough reports Coordinating the schedules and assessments for key third party clients and overseeing all key deliverables Our clients operate in and our team members work across the following industries: Pharmaceutical Life Sciences Biotechnology Healthcare Manufacturing Financial Services Technology, Media and Telecomm

Requirements

  • Bachelor's Degree
  • Information Technology and/or Cybersecurity background and/or experience, including 2-4 years IT experience with network, platform, and/or application technology
  • Willingness to obtain the Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), or Certified Third Party Risk Assessor (CTPRA) designations
  • Knowledge of security areas such as auditing, policy, database security, firewall design and implementation, risk analysis, identity management, access management, or web
  • Working knowledge of at least one compliance framework, such as SOC2, ISO 27001, NIST, HIPAA
  • Experience managing multiple projects, in a fast-paced environment
  • Proven ability to learn new technologies and systems, especially through independent research and self-study
  • Ability to communicate technical information verbally and through written documentation
  • Ability to manage project schedules and client expectations
  • Ability to travel domestically an average of 20%-50% per year

Nice To Haves

  • Bachelors and/or advanced degree with a concentration in: Cybersecurity, Risk Management, Computer Science, or Management Information Systems
  • Any experience working with or assessing third party vendors is preferred but not required
  • IT experience at a leading industry public company. This might include either IT auditing or being a member of an IT or Cybersecurity team
  • Experience with Archer, Process Unity, ServiceNow or other GRC/VRM tools
  • Experience with security ratings platforms
  • Bilingual
  • Open to remote

Responsibilities

  • Conducting Third Party Risk Assessments by evaluating third party questionnaire responses, performing control validation, and assessment of documentation per established procedures and standards
  • Performing site visits to third-party facilities
  • Evaluating the effectiveness of security controls for compliance with applicable policies, security laws, and regulations
  • Assessing cloud technologies such as Software as a Service (SaaS) hosted applications, Platform as a Service (PaaS), and Infrastructure as a Service deployments (IaaS)
  • Documenting information security risk and compliance findings and recommendations for remediation
  • Perform quality assurance and review of assessments performed by other team members
  • Delivering high quality, thorough reports
  • Coordinating the schedules and assessments for key third party clients and overseeing all key deliverables

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Number of Employees

1,001-5,000 employees

Job Search Resources

Similar Third Party Risk Senior Consultant job opportunities

🔥 New JobThird Party Risk Senior Consultant
Crowe
Crowe • San Francisco, CA11h
Third Party Risk Senior Consultant
Crowe
Crowe • San Francisco, CA2d
Senior Consultant, Third Party Inventory
Northern Trust
Northern Trust • Tempe, AZ13d
Senior Consultant, Concentration Risk
Northern Trust
Northern Trust • Tempe, AZ13d
Senior Consultant, Concentration Risk
Northern Trust
Northern Trust • Tempe, AZ11d
🔥 New JobSenior Third Party Risk Analyst
BankUnited, Inc.
BankUnited, Inc. • Orlando, FL18h
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service