Third Party Risk Management Analyst III

Position:

Third Party Risk Management Analyst III

Job Description:

SUMMARY

Supports Third Party Risk Management (TPRM) security program to validate security policies and regulatory requirements are met across the third-party space, ensuring the company and its systems are protected from third party security threats. Evaluates third party security controls to ensure effectiveness and compliance with the information security program and regulatory requirements; manages security control remediation efforts; and supports internal and external information security related audits. Uses information security tools and procedures to respond to inquiries. Recommends security solutions, advises on systems and application-level security configurations, and investigates/mitigates security risks as required.

LOCATION: This job is fully remote eligible within the United States. If located in Jacksonville, FL some onsite may be required.

RESPONSIBILITIES

• Monitor, assess third party security for all higher risk engagements cross the enterprise to protect company systems and information.
• Lead, assist and provide input to develop and implement security policies and procedures.
• Prepares status reports on security matters to develop security risk analysis scenarios and response procedures.
• Responsible for the tracking and monitoring of approved software and on-going security controls.
• Enforces security policies and procedures by administering and monitoring security profiles; reviews security violation reports; investigates possible security exceptions; and updates, maintains, and documents security controls.
• Assess and complete security assessment to assist On-Boarding new vendors within department SLAs
• Perform prescribed activities for all termination or renewal of existing engagements on time.
• Monitoring higher risk third parties and 4th parties for security events and take appropriate actions within timeline.
• Complete annual planned security assessments timely and with high quality based on policy, standards, and procedures.
• Provides direct support to the business and IT staff for third party security-related issues.
• Educates IT and the business about third party specific security policies and consults on security issues.
• Represents the security needs of the organization by providing expertise and assistance in all IT projects regarding third party security issues.
• Prepares status reports on security matters to develop security risk analysis scenarios and response procedures.
• Responsible for the tracking and monitoring of third-party data breaches.
• Enforces security policies and procedures; reviews security reports; investigates possible security exceptions; and updates, maintains, and documents third party security controls.
• Performs other related duties as assigned.
• May require occasional domestic travel as needed (less than 25%).

MINIMUM REQUIREMENTS

• Bachelor's Degree in Computer Science, Information Systems or the equivalent combination of education, training, or work experience
• Professional security certification such as CISA, CISSP, CISM, etc. is required
• 5+ years of experience in one or more Cybersecurity or Technology Controls disciplines, preferably in the Financial Services Industry
• 5+ years of exposure to Program Management Processes (i.e., building business cases, budget management)
• Deep understanding and experience with common information security management frameworks
• Previous working knowledge of relevant legal and regulatory requirements
• Experience with enterprise risk assessment methodologies

PREFERRED QUALIFICATIONS

• Knowledge of Black Knight business environment and the ability to evaluate risk implications
• 5+ years of experience in Information Technology Risk Management, including risk identification, classification, and remediation
• 3-5+ years of experience as IT Auditor, preferably in the Finance or Financial Technology Industry
• Previous experience in IT Security Architecture
• Strong background in security operations, processes, solutions, and technologies
• Strong understanding of policy, compliance, and best practice security principles
• Recent exposure to Agile concepts and tools like JIRA and Confluence
• Experience working with a diverse range of data sources/streams and managing these effectively
• Excellent analytical, decision-making, and problem-solving skills
• Ability to develop partnership-oriented relationships with business executives and functional leaders
• Working knowledge of Windows, Excel, and Network Operating Systems
• Proficiency in project management
• Ability to communicate well both verbally and in writing to technical and non-technical audiences
• Results oriented, business focused, and successful at interfacing across multiple organizational units

Although target pay range may vary by work location, a representative pay range is $72,800 - $126,880. Eligible to participate in medical, dental and vision insurance, life insurance and disability insurance, 401(k) plan and employee stock purchase plan. Eligible to participate in the discretionary annual performance bonus.

Black Knight carefully considers multiple factors to determine compensation, including a candidate's education, training, specialty, experience, and work location. The base salary (exempt) or hourly rate (non-exempt) is just one component of the total rewards package offered to our employees, including potential bonus or commission eligibility, insurance (medical/dental/vision/life/disability), matching 401(k) plan and matching employee stock purchase plan

EEO Statement:

Black Knight is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, disability, age, and protected veteran or military family status. Our employees' diversity is our strength, and when we embrace our differences, it makes us better and brighter. Black Knight's commitment to inclusion is at the core of who we are, and motivates us in how we do business each and every day.

Location:

Jacksonville, FL

Time Type:

Full time