Job Responsibilities
Strategy Development:
• Develop a comprehensive strategy for continuous monitoring of third and fourthparty relationships.
• Define goals, objectives, and key performance indicators (KPIs) to measure the effectiveness of the monitoring program.
• Stay abreast of industry trends, regulatory requirements, and emerging threats to continuously enhance the monitoring strategy. Process Implementation
• Design and implement processes for collecting, analyzing, and interpreting data from monitoring platforms.
• Establish protocols for risk assessment, threat identification, and remediation prioritization.
• Ensure alignment of monitoring processes with organizational policies, regulatory standards, and best practices. Technology Utilization
• Evaluate and select appropriate technology platforms for continuous monitoring, considering factors such as scalability, flexibility, and integration capabilities.
• Oversee the implementation and configuration of monitoring tools, ensuring optimal performance and functionality. Risk Assessment And Remediation
• Lead efforts to assess risk exposure associated with third and fourth-party relationships.
• Analyze monitoring data to identify potential threats, vulnerabilities, and compliance issues.
• Develop remediation plans and coordinate implementation efforts with relevant stakeholders to address identified risks promptly. Team Leadership
• Recruit, train, and mentor a team of monitoring professionals, fostering a culture of excellence and continuous learning.
• Provide guidance and support to team members in executing their responsibilities effectively.
• Manage workload distribution, performance evaluations, and career development initiatives for team members.
What You'll Need
• Bachelor's degree in Business Administration, Information Technology, Risk Management, or a related field. Advanced degree preferred.
• 10+ years of experience in third-party risk management, cyber security, or related fields, with a focus on monitoring and testing.
• Relevant certifications such as Certified Third Party Risk Professional (CTPRP), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), or equivalent.
• In-depth knowledge of monitoring platforms, tools, and technologies used for assessing third-party risk.
• Demonstrated expertise in leveraging technology solutions for continuous monitoring and risk assessment.
• Proven experience in developing and implementing risk management strategies and processes within a financial institution or regulated industry.
• Strong analytical skills with the ability to interpret complex data sets and identify actionable insights.
• Excellent communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and senior management.
• Proven track record of building and leading high-performing teams, including recruiting, training, and performance management.