Sr Engineer, Vendor Third Party Risk - Nationwide

View full description

Requirements:

• Experience in IT risk management and contract negotiation.
• Strong analytical and problem-solving skills.
• Proficient in assessing and adapting to business priorities.
• Interpersonal and communication skills are essential.
• Certifications in security or risk management (CISSP, CISA, etc.) are preferred.
• Network security knowledge and experience with cloud technologies.
• Bachelor’s Degree in a related field or equivalent experience is desired.

Responsibilities:

• Assess governance, risk, and compliance aspects of third-party vendors.
• Ensure effective communication between vendors and internal requirements.
• Conduct quality assurance and peer reviews for assessments and reports.
• Analyze data sets for metrics development and strategic initiatives.
• Negotiate security terms with vendors and collaborate with Legal Counsel.
• Monitor compliance with HIPAA, SOX, and PCI requirements.
• Advise on industry trends and emerging threats.
• Act as a subject matter expert on third party risk management.
• Support audit engagements and lead remediation efforts.
• Recommend improvements for policies and procedures.