Senior Third Party Risk Analyst

at  Rapid7

Praha, Praha, Czech -

Start DateExpiry DateSalaryPosted OnExperienceSkillsTelecommuteSponsor Visa
Immediate29 Jul, 2024Not Specified02 May, 2024N/AGood communication skillsNoNo
Add to Wishlist Apply All Jobs
Required Visa Status:
CitizenGC
US CitizenStudent Visa
H1BCPT
OPTH4 Spouse of H1B
GC Green Card
Employment Type:
Full TimePart Time
PermanentIndependent - 1099
Contract – W2C2H Independent
C2H W2Contract – Corp 2 Corp
Contract to Hire – Corp 2 Corp

Description:

Rapid7 is seeking an experienced, self-motivated, and strategic Third Party Senior Risk Analyst to revamp and grow our Third Party Risk Program.
This will be a trusted strategic advisor within the Information Security team, and work alongside Senior Leadership to develop and establish an industry best practice TPRM program. The ideal candidate will effectively collaborate with stakeholders in Procurement, IT, Legal, and others across the organization to drive a global program that effectively manages the risk assessment and due diligence processes, both at on-boarding and throughout the lifecycle of third-parties.

Responsibilities:

As Third Party Risk Analyst you will:

  • Develop and Manage the end-to-end Third-Party Risk Management Program within Rapid7 which includes managing business, security, compliance, and contractual risks associated with working with third-parties.
  • Administer and manage the distribution of due diligence questionnaires to the suppliers, review submitted questionnaires for completeness, ensure Risk stakeholders finalize reviews and determine overall residual risk rating.
  • Partner with business Stakeholders, including Senior Leadership, Third-party vendors and Subject Matter Experts (security, compliance, legal, etc.) to ensure programs and processes are successfully executed.
  • Partner with a cross functional team supporting pre- and post-contract supplier due diligence efforts including inherent risk triage, administration of appropriate security assessments, continuous monitoring and issue management/remediation and escalation.
  • Manage a consistently growing portfolio of vendors to help maintain visibility into the risk landscape of the organization’s most critical third parties.
  • Identify, prioritize and pursue opportunities to enhance and streamline Rapid7’s TPRM processes.
  • Contribute to the development of detailed procedural documents and ensure alignment of TPRM with applicable regulatory requirements globally.
  • Review contracts identifying and making sure that requirements relevant to Rapid7 are properly addressed by Rapid7 vendors.
  • Help to monitor and attend during 3rd Party Breaches.


REQUIREMENT SUMMARY

Min:N/AMax:5.0 year(s)

Financial Services

IT Software - Network Administration / Security

Finance

Graduate

Proficient

1

Praha, Czech