Job Description
In this role, you will be responsible for assessing, monitoring, and managing IT and cybersecurity risks associated with third-party vendors and service providers. You will work closely with cross-functional stakeholders across Procurement, Legal, Compliance, Cybersecurity, and IT to ensure third-party risks are identified, evaluated, and effectively mitigated throughout the vendor lifecycle.
Responsibilities:
- Lead and perform IT risk assessments on third-party vendors and service providers, including cloud services, SaaS, infrastructure providers, and managed services.
- Define and maintain the third-party risk management (TPRM) framework, processes, and controls in alignment with internal policies, regulatory requirements, and industry best practices.
- Collaborate with procurement and business units during vendor onboarding and renewal to conduct due diligence, risk reviews, and control assessments.
- Evaluate vendor ...