Vacancy expired!
BE PART OF A BANK LIKE NO OTHER.
When you work with the world's most innovative companies, you know you're making a difference.Our clients are the game changers, leaders and investors who fuel the global innovation economy. They're the businesses behind the next medical breakthroughs. And the visionaries whose new technologies could transform the way people live and work.They come to SVB for our expertise, deep network and nearly forty years of experience in the industries we serve, and to partner with diverse teams of passionate, enterprising SVBers, dedicated to an inclusive approach to helping them grow and succeed at every stage of their business.Join us at SVB and be part of bringing our clients' world-changing ideas to life. At SVB, we have the opportunity to grow and collectively make an impact by supporting the innovative clients and communities SVB serves. We pride ourselves in having both a diverse client roster and an equally diverse and inclusive organization. And we work diligently to encourage all with different ways of thinking, different ways of working, and especially those traditionally underrepresented in technology and financial services, to apply.Job DescriptionThe Sr. Cybersecurity TPRM Analyst provides cyber security advisory services to business units at SVB and supports cybersecurity initiatives. This position will assess the security posture of third parties and provide their observations to relevant stakeholders. This position will review and give input on security terms in Master Service Agreements. The Sr. TPRM Analyst will work with the Program Manager and Scrum Master to complete cybersecurity projects and initiatives. The Sr. Cybersecurity TPRM Analyst will serve as a point of escalation for risk assessments. The analyst will work with, and under the direction of the Director of Cybersecurity TPRM. The Sr. Cybersecurity TPRM Analyst will be assigned projects to help further mature the Cybersecurity TPRM function.Essential Functions:- Independently analyze third party Information Security Assessments and review supporting documentation in order to determine the information security risk posture of a third-party
- Redline security terms in agreements and report opinion back to procurement team
- Work with project manager and scrum manager to complete cybersecurity third-party risk projects
- Serve as a first point of escalation for Associate level analyst regarding inherent risk during the security assessment review
- Acts as a liaison for all cybersecurity TPRM activities with stakeholders
- Create and generate required reports to ensure compliance with processes and policies
- Identify and drive opportunities to mature the TPRM Program
- Deep understanding of the TPRM lifecycle
- Experience reviewing information security third-part risk assessments
- Ability to understand, interpret and disposition the controls on the SIG and SIG Lite
- Experience reviewing security terms within an MSA
- Above average knowledge of vendor contracts and risk constructs
- Experience reviewing and interpreting SOC 2 Type 2 reports
- Knowledge of NIST
- Advanced analytical and problem-solving skills
- Ability to report out results to stakeholders
- Advanced written and verbal communication skills
- Demonstrates well-developed problem-solving skills to research and resolve discrepancies
- Bachelor's degree in Management Information Systems, Computer Science, and/or Business, or equivalent work experience
- 8+ years working in third-party risk management
Vacancy expired!