About the Role
Design and implement a comprehensive third-party cyber risk management program.
Develop and enforce policies and procedures for assessing and managing third-party risks.
Continuously improve the program based on evolving threats and regulatory requirements.
Conduct thorough risk assessments of third-party vendors, including initial due diligence and ongoing monitoring.
Identify potential vulnerabilities and recommend mitigation strategies.
Collaborate with third parties to address and remediate identified risks.
Build and maintain strong relationships with key third-party vendors and partners.
Ensure that third-party contracts include appropriate cybersecurity requirements and standards.
Work with legal and procurement teams to negotiate cybersecurity terms in contracts.
Support the response to cyber incidents involving third-party vendors.
Provide regular updates to senior management on the status of the third-party cyber risk management program.
Prepare and present reports on third-party risk assessments and mitigation efforts.
Communicate effectively with internal teams and third-party vendors regarding cyber risk expectations and requirements.
Requirements
- Ensure that the third-party cyber risk management program complies with relevant regulations and industry standards (e.g., GDPR, CCPA, NIST, ISO 27001).
- Stay current on regulatory changes and update the program as needed.
- Bachelor's degree or higher (completed and verified prior to start) from an accredited institution
- Ten (10) years of experience in Cybersecurity in a private, public, government or military environment
- Five (5) years of management and/or supervisory experience
- CISSP certification
About the Company
PRI Technology, a division of Perennial Resources International, is a full service Information Technology staff augmentation and executive search firm comprised of high performing industry professionals focused on your success. We employ the utilization of cutting edge recruiting technologies which allow for greater optimization of our capabilities in serving your needs.