Third Party Risk Management Specialist

POSITION SUMMARY
We are seeking an experienced and skilled Cyber TPRM Specialist to join our Cyber Security team. The successful candidate will be responsible for conducting comprehensive risk assessments of our third-party vendors and partners, focusing on their cybersecurity posture and potential risks to our organization. Additionally, this role will involve mentoring junior cyber risk analysts, fostering their professional growth, and enhancing the overall capabilities of the team. The Specialist will work closely with the TPRM Lead in Australia.

The activity will include:

Conduct questionnaire-based assessments to evaluate vendors' cybersecurity practices.
Perform on-site assessments of critical vendors as necessary.
Analyze assessment results and provide detailed risk reports to stakeholders.
Collaborate with internal teams to remediate identified risks.
Prepare and report on key metrics to measure the effectiveness of the TPRM program.
Develop dashboards and reports to communicate TPRM performance to senior management.
Review variations to the standard cyber clause in contracts and facilitate necessary negotiations and approvals in collaboration with legal, procurement and risk teams.
Stay current with industry trends, regulations, and best practices in cybersecurity and third-party risk management.
Mentor and guide junior cyber risk analysts in their professional development.
Provide training and support to team members on TPRM methodologies, tools, and best practices.
Foster a culture of continuous learning and improvement within the team.
Assist in developing and refining assessment processes and methodologies.
Contribute to the creation of training materials and internal knowledge bases.
Work closely with the TPRM Lead in Australia to align assessment processes and risk management strategies.