Senior Third Party Risk Analyst
at Rapid7
Praha, Praha, Czech -
Start Date | Expiry Date | Salary | Posted On | Experience | Skills | Telecommute | Sponsor Visa |
---|---|---|---|---|---|---|---|
Immediate | 29 Jul, 2024 | Not Specified | 02 May, 2024 | N/A | Good communication skills | No | No |
Required Visa Status:
Citizen | GC |
US Citizen | Student Visa |
H1B | CPT |
OPT | H4 Spouse of H1B |
GC Green Card |
Employment Type:
Full Time | Part Time |
Permanent | Independent - 1099 |
Contract – W2 | C2H Independent |
C2H W2 | Contract – Corp 2 Corp |
Contract to Hire – Corp 2 Corp |
Description:
Rapid7 is seeking an experienced, self-motivated, and strategic Third Party Senior Risk Analyst to revamp and grow our Third Party Risk Program.
This will be a trusted strategic advisor within the Information Security team, and work alongside Senior Leadership to develop and establish an industry best practice TPRM program. The ideal candidate will effectively collaborate with stakeholders in Procurement, IT, Legal, and others across the organization to drive a global program that effectively manages the risk assessment and due diligence processes, both at on-boarding and throughout the lifecycle of third-parties.
Responsibilities:
As Third Party Risk Analyst you will:
- Develop and Manage the end-to-end Third-Party Risk Management Program within Rapid7 which includes managing business, security, compliance, and contractual risks associated with working with third-parties.
- Administer and manage the distribution of due diligence questionnaires to the suppliers, review submitted questionnaires for completeness, ensure Risk stakeholders finalize reviews and determine overall residual risk rating.
- Partner with business Stakeholders, including Senior Leadership, Third-party vendors and Subject Matter Experts (security, compliance, legal, etc.) to ensure programs and processes are successfully executed.
- Partner with a cross functional team supporting pre- and post-contract supplier due diligence efforts including inherent risk triage, administration of appropriate security assessments, continuous monitoring and issue management/remediation and escalation.
- Manage a consistently growing portfolio of vendors to help maintain visibility into the risk landscape of the organization’s most critical third parties.
- Identify, prioritize and pursue opportunities to enhance and streamline Rapid7’s TPRM processes.
- Contribute to the development of detailed procedural documents and ensure alignment of TPRM with applicable regulatory requirements globally.
- Review contracts identifying and making sure that requirements relevant to Rapid7 are properly addressed by Rapid7 vendors.
- Help to monitor and attend during 3rd Party Breaches.
REQUIREMENT SUMMARY
Min:N/AMax:5.0 year(s)
Financial Services
IT Software - Network Administration / Security
Finance
Graduate
Proficient
1
Praha, Czech