Position: Cyber Security Third Party Governance Senior Analyst
Duration: 1 year contract
40+ hours a week.
Job Location: NYC, NY, NJ, Pittsburgh,PA or Washington DC
Key Roles & Responsibilities of this position include, but are not limited to:
• Assess the cyber security risk of third party vendors with an appropriate level of detail
• Travel to vendor locations for on-site assessments
• Interface with procurement, technology risk management, business teams and third party program management on cyber security issues
• Identify controls to address gaps in third party vendor relationships
• Monitor the implementation of controls
• Recommend and implement cyber security related improvements to the BNYM TPG processes
• Act as a liaison between Cyber Security teams and third party governance processes
• Define and create relevant metrics and reports
• Review the cyber related attestations by third parties such as SOC1, SOC2, ISO 27001 and report any observations for further review
• Support the creation and update of third party related policies.
• Review vendor risk reports created by internal teams for impacts to cyber security
• Provide SME support to business and technology teams which have third party issues in-scope
• Keep up-to-date on the latest trends, methodologies and tools related to third party
Qualifications:
• Bachelor's degree in computer science or a related discipline, or equivalent work experience required, advanced degree preferred. Industry certifications such as CISSP or CISM a plus
• 8-10 years of experience in cyber security and policy related activities required
• Hands-on experience in performing control-level technical cyber risk assessments
• Experience in the securities or financial services industry is a plus
• Experience in third party governance is desired but not required
• Ability to manage multiple projects
• Solid understanding of geographically diverse regulatory requirements and concerns. Familiarity with various global regulations and industry standards concerning information and cyber security
• Strong verbal and written communication skills
The recruiter working on this position is Rakesh Murali
His/her contact number is +(1) (510) 4706154
His/her contact email is rakesh_murali@msysinc.com
Our recruiters will be more than happy to help you to get this contract.