Job Description
In this role, you will be responsible for assessing, monitoring, and managing IT and cybersecurity risks associated with third-party vendors and service providers. You will work closely with cross‑functional stakeholders across Procurement, Legal, Compliance, Cybersecurity, and IT to ensure third‑party risks are identified, evaluated, and effectively mitigated throughout the vendor lifecycle.
Responsibilities:
- Lead and perform IT risk assessments on third‑party vendors and service providers, including cloud services, SaaS, infrastructure providers, and managed services.
- Define and maintain the third‑party risk management (TPRM) framework, processes, and controls in alignment with internal policies, regulatory requirements, and industry best practices.
- Collaborate with procurement and business units during vendor onboarding and renewal to conduct due diligence, risk reviews, and control assessments.
- Evaluate vendor responses...