Third Party Cyber Risk Management Security Analyst Full Time

To thoroughly perform cyber/information security assessments of third party service providers enterprise using State Streets risk management framework and cybersecurity assessment methods for vendors of varying sizes and complexities. Review/analyze third party attestation and certification artifacts (SOC 2, SIG, NIST, ISO 27001/2 Certifications, etc.) shared by third parties to identify the information security risks.

Document assessment results consistent with State Streets TPCRM, Issue Management and Enterprise Risk Management standards. Provide subject matter expertise in the Third Party information security program and provide timely recommendations to identified problems.

What we value. These skills will help you succeed in this role 5 years of experience working in Cybersecurity, Information Security, Governance Risk and Compliance role or Third-Party Cybersecurity Risk Management 5 years of experience performing Third Party Cyber/ Information Security Assessment or Cyber Sec…Security Analyst, Risk, Management, Security, Analyst, Cybersecurity, Technology