Third Party Risk InfoSec Analyst (#Hybrid - Perm at our Chicago HQ near O'Hare Airport)

In this role, you will ensure third-party relationships adhere to company InfoSec policies and are compliant with regulatory guidelines and industry best practices. Coordinate risk assessments, due diligence, and management of third-party relationships using industry GRC tools. Support the day-to-day delivery of other third-party risk functions including process monitoring, end-user support and reporting to both internal and Board-level governance committees.
Responsibilities

• Conduct compliance and information security risk assessments on prospective third parties in financial services
• Ensure third-party relationships adhere to company policies and are compliant with regulatory InfoSec guidelines and industry best practices (ISIM & NIST)
• Conduct periodic performance and risk reviews of existing third-parties
• Ensure new third-party due diligence and supporting documents are properly captured in the appropriate systems such as S upplier Information Management (SIM) system and the Governance, Risk and Compliance (GRC) system
• Manage recurring reports to be shared with the organization which will include risk ratings, policy exceptions, and other risk management key performance indicators (KPIs)
• Understanding of regulatory examinations in financial services
• Knowledge of National Credit Union Administration (NCUA), Federal Financial Institutions Examinations Council (FFIEC), and Consumer Financial Protection Bureau (CFPB), Office of the Comptroller of the Currency (OCC) and Federal Deposit Insurance Corporation (FDIC) regulations and guidance

Education:

• Bachelor's Degree in Business, Finance or Related - Preferred

Years of Experience:

• 1 year - Third-Party Risk Management, Information Security, Compliance or Related - Minimum

In Lieu of Education:

• 6 years - Third-Party Risk Management, Information Security, Compliance or Related - Minimum

As a thank you for joining our team, you'll benefit from:

• Competitive medical, dental, and free vision benefits
• Paid parental leave
• Competitive compensation plan
• Gym memberships discounts
• Generous PTO and banking holidays off
• Tuition reimbursement
• 401k with immediate employer match and vesting

Adhere to and ensure compliance of all business transactions with policy and process of the Bank Secrecy Act. Ensures compliance with all applicable state and federal laws, company procedures and policies. Maintains integrity and ethics in all actions and conversations with or regarding credit union members and their accounts; complies with Privacy Act directives.
The responsibilities listed do not contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this position. Duties, responsibilities and activities may change at any time with or without notice.