Cybersecurity Third Party Risk Management Analyst
Vacancy expired!
As a Cybersecurity Third Party Risk Management Analyst in OneMain's Cybersecurity Risk and Controls team, you will be performing risk-based due diligence of third party's technology controls and policies. This position is an important member of the team responsible for understanding and managing cybersecurity risk associated with third parties that OMF relies upon and/or shares data with. You will be a key partner with Third Parties and Relationship Managers across the organization to manage risk throughout the third party's lifecycle in an open and collaborative effort to better position the company.Members of the Cybersecurity Risk and Controls team are motivated, detail-oriented, and thrive in a collaborative environment where they will add value to key business partners. This position will require you to be adaptive, willing to drive change and innovation, and work in a fast-paced environment requiring collaboration and the ability to organize and prioritize assignments.Responsibilities:
- Evaluating third party's cybersecurity control and ensuring they are in compliance with OMF standards and industry best practices
- Track and monitor the status of each due diligence review and communicate the status with management and key stakeholders on a regular basis
- Articulate risks and potential options for remediation or compensating controls
- Demonstrate the ability to work in a fast-paced environment.
- Support the overall goal of collaboration and supporting a cybersecurity culture by building and maintaining relationships across third party engagements.
- Support innovation through process improvements and updating team documentation and procedures.
- Collaborate with the team to enhance and further develop the program and support adherence to Cybersecurity standards.
- Willingness to learn.
- Knowledge and willingness to learn cybersecurity requirements, controls, and standards.
- Knowledge of CIS Top 20 and New York Department of Financial Services 23 NYCRR 500 Regulation ("NYDFS").
- Have strong organizational and communication skills.
- Ability to identify gaps and non-compliance with a standard.
- Ability to work in a fast-paced environment and great collaborator within a team.
- Strong attention to detail and ability to closely follow defined processes.
- Health and wellbeing options for team members and their dependents
- Up to 4% matching 401(k)
- Tuition reimbursement
- Continuing education
- Bonus eligible
- Paid time off
- Paid volunteer time
- And more
Vacancy expired!