Job summary:


Title:
Cyber Security Third Party Governance Senior Analyst

Location:
New York, NY, USA

Length and terms:
12 Months - W2 or C2C


Position created on 03/01/2018 09:55 pm

Job description:


Position: Cyber Security Third Party Governance Senior Analyst

Duration: 1 year contract

40+ hours a week.

Job Location: NYC, NY, NJ, Pittsburgh,PA or Washington DC

 

Key Roles & Responsibilities of this position include, but are not limited to:

• Assess the cyber security risk of third party vendors with an appropriate level of detail

• Travel to vendor locations for on-site assessments

• Interface with procurement, technology risk management, business teams and third party program management on cyber security issues

• Identify controls to address gaps in third party vendor relationships

• Monitor the implementation of controls

• Recommend and implement cyber security related improvements to the BNYM TPG processes

• Act as a liaison between Cyber Security teams and third party governance processes

• Define and create relevant metrics and reports

• Review the cyber related attestations by third parties such as SOC1, SOC2, ISO 27001 and report any observations for further review

• Support the creation and update of third party related policies.

• Review vendor risk reports created by internal teams for impacts to cyber security

• Provide SME support to business and technology teams which have third party issues in-scope

• Keep up-to-date on the latest trends, methodologies and tools related to third party

Qualifications:

• Bachelor's degree in computer science or a related discipline, or equivalent work experience required, advanced degree preferred. Industry certifications such as CISSP or CISM a plus

• 8-10 years of experience in cyber security and policy related activities required

• Hands-on experience in performing control-level technical cyber risk assessments

• Experience in the securities or financial services industry is a plus

• Experience in third party governance is desired but not required

• Ability to manage multiple projects

• Solid understanding of geographically diverse regulatory requirements and concerns. Familiarity with various global regulations and industry standards concerning information and cyber security

• Strong verbal and written communication skills

Contact the recruiter working on this position:



The recruiter working on this position is Rakesh Murali
His/her contact number is +(1) (510) 4706154
His/her contact email is rakesh_murali@msysinc.com

Our recruiters will be more than happy to help you to get this contract.