Third Party Cyber Assurance Technical Manager

The Third Party Cyber Assurance Tech Manager is responsible for managing a portfolio of assessors charged for executing information security assessments with the bank's third parties located within the United States, LATAM and Canada. In this role, you will provide tactical support to a team of assessors and ensure flawless execution throughout the assessment lifecycle. Additionally, you will be expected to maintain clear and consistent communication between their team and the LOB vendor management community regarding their assessments, as well as handle any escalation that may arise.

Additional tasks include:

• Identification of process optimization opportunities, including technology and work flow enhancements

• Work across the assessment vertical to ensure processes are aligned to meet TPCA procedures end-to-end

• Assist with resource planning to ensure the program has the necessary resources to effectively execute their assessments

• Stay aware of emerging cybersecurity trends and help determine if/when to integrate item into the assessment program

• Support inquiries into the programs operations and/or assessment results from internal risk and support partners from GIS and the LOBs

Previous information technology/security audit/assessment experience preferred. Strong attention to detail, analytical skills, ability to multi-task, and ability to work both independently as well as part of a due diligence team are also required. Must be able to plan, execute, and document assessment activities following established processes and procedures. Five to seven years’ experience in information security required. CISSP, CRISC, or CISA recommended.

• Experience communicating to Sr. Management

• 5+ years experience in Information technology/security audit/assessments.

• Experience working within the risk framework to execute assessments

• Strong people management skills

• Ability to work independently on initiatives with little oversight; motivated and willing to learn

• Strong analytical skills/problem solving/conceptual thinking

• Must be comfortable in delivering messages across a wide spectrum of individuals having varying degrees of technical understanding

• Ability to direct personnel towards a set of goals and hold them accountable

• Experience developing and implementing new processes/procedures

• Experience working with global and/or virtual teams.

• Ability to work with Technical and Non-Technical business owners

• Experience in Sourcing/Vendor Management, Business Continuity & recovery, Data Transmission, Privacy domains

• Experience supporting regulatory or sector policy initiatives.

• Experience with assessments based on relevant threat intelligence (network penetration testing, Red Teaming, etc.).