The Third Party Risk Analyst position's core responsibilities are to conduct application and third party information security assessments.
The Third Party Risk Analyst position's core responsibilities are to conduct application and third party information security assessments. Additional responsibilities may include leading process improvement activities, participating in information security assessment special projects and other assessment related activities. Must be able to develop an understanding of the third parties' IT control environment and perform basic risk management approaches to evaluate their IT controls. Actively participate in decision making with third parties and Banks management for mitigating identified deficiencies and seek to understand the broader impact of the decisions made
Ideal Candidate will have: - 3+ years of risk management and/or internal controls - Big 4, Consulting or IT internal audit experience - Experience with Shared Assessments evaluations - CTPRP, CISM, CIA, CISSP certification - Demonstrate professional skepticism to ensure evidence is sufficient when assessing the relevant controls - Communicate and present concisely and effectively based on the appropriate level of management - Manage competing deadlines and prioritize responsibilities to effectively meet business needs.