Search Results

< Back INDUSTRY CALL Q4 Industry Roundtable: Financial Institutions Monday, October 6, 2025 Date Monday, October 6, 2025 Time 1:00 - 2:00 PM CT Intended Audience TPRA Practitioner Members in the Finance Sector (including FinTech) Duration 60 minutes CPE Credits 0 Fee Free Register Event Description Delve into the unique complexities of third-party risk management within the financial sector at this interactive roundtable. Facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA, this quarterly gathering invites financial professionals to collaborate, share cutting-edge strategies, and address emerging industry risks. With agendas shaped by participants, each session delivers highly relevant insights to tackle the ever-evolving challenges of the financial world. SPEAKER(S) INFORMATION CPE CREDIT These meetings are roundtables with topics chosen each quarter by attendees and participants, facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA. About These Meetings Industry Roundtables (previously called Special Interest Calls) are industry-specific meetings where the agendas are set each quarter by its participants and facilitated by community members. Any TPRA Practitioner Member belonging to the industry noted above may join the calls. Who Should Attend All TPRA Practitioner Members in the related industry are invited to these events. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . No CPE credits are provided for this event type.

< Back INDUSTRY CALL Q2 Industry Roundtable: Financial Institutions Monday, April 14, 2025 Date Monday, April 14, 2025 Time 1:00 - 2:00 PM CT Intended Audience TPRA Practitioner Members in the Finance Sector (including FinTech) Duration 60 minutes CPE Credits 0 Fee Free Register Event Description Delve into the unique complexities of third-party risk management within the financial sector at this interactive roundtable. Facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA, this quarterly gathering invites financial professionals to collaborate, share cutting-edge strategies, and address emerging industry risks. With agendas shaped by participants, each session delivers highly relevant insights to tackle the ever-evolving challenges of the financial world. SPEAKER(S) INFORMATION CPE CREDIT These meetings are roundtables with topics chosen each quarter by attendees and participants, facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA. About These Meetings Industry Roundtables (previously called Special Interest Calls) are industry-specific meetings where the agendas are set each quarter by its participants and facilitated by community members. Any TPRA Practitioner Member belonging to the industry noted above may join the calls. Who Should Attend All TPRA Practitioner Members in the related industry are invited to these events. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . No CPE credits are provided for this event type.

< Back INDUSTRY CALL Q1 Industry Roundtable: Financial Institutions Monday, January 27, 2025 Date Monday, January 27, 2025 Time 1:00 - 2:00 PM CT Intended Audience TPRA Practitioner Members in the Finance Sector (including FinTech) Duration 60 minutes CPE Credits 0 Fee Free Register Event Description Delve into the unique complexities of third-party risk management within the financial sector at this interactive roundtable. Facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA, this quarterly gathering invites financial professionals to collaborate, share cutting-edge strategies, and address emerging industry risks. With agendas shaped by participants, each session delivers highly relevant insights to tackle the ever-evolving challenges of the financial world. SPEAKER(S) INFORMATION CPE CREDIT These meetings are roundtables with topics chosen each quarter by attendees and participants, facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA. About These Meetings Industry Roundtables (previously called Special Interest Calls) are industry-specific meetings where the agendas are set each quarter by its participants and facilitated by community members. Any TPRA Practitioner Member belonging to the industry noted above may join the calls. Who Should Attend All TPRA Practitioner Members in the related industry are invited to these events. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . No CPE credits are provided for this event type.

< Back Field Sales Director, Third Party RIsk Solutions (NY Market) Apply Now Remote Job Type Full Time Organization SecurityScorecard Application Deadline November 30, 2024 About the Role Client Relationship Management: Build and maintain deep relationships with key decision-makers in the supply chain and defense sectors, understanding their security challenges and requirements. Sales Execution: Drive revenue growth through a consultative sales approach, identifying client needs, presenting SecurityScorecard solutions, and closing business. Supply Chain Risk Management Expertise: Utilize in-depth knowledge of supply chain vulnerabilities and the cyber defense landscape to tailor security solutions for clients. Cross-Functional Collaboration: Work closely with internal teams such as Customer Success, Solutions Architects, and Engineering to ensure a seamless client experience and ongoing support. Market Expansion: Actively pursue new business opportunities and drive account expansion within targeted industries, focusing on supply chain and defense markets. Client Education: Present thought leadership on supply chain defense and cybersecurity to educate clients and position SecurityScorecard as a trusted partner in securing their supply chains. Pipeline Management: Track and manage sales pipelines, ensuring timely follow-up, accurate forecasting, and goal attainment. Requirements Experience: 5+ years of experience in client-facing roles within the cybersecurity industry, preferably with a focus on supply chain defense or enterprise risk management. Knowledge: Strong understanding of supply chain security threats, third-party risk management, and cyber defense strategies. Sales Acumen: Proven track record of driving sales and achieving quotas, with a consultative selling approach. Communication Skills: Exceptional verbal and written communication skills with the ability to articulate complex cybersecurity concepts to diverse audiences. Collaboration: Strong team player with the ability to work effectively across departments to meet client needs and company objectives. Technical Knowledge: Familiarity with cybersecurity frameworks, standards, and tools, including security ratings platforms and risk assessment methodologies. Education: Bachelor's degree in a relevant field (e.g., Cybersecurity, Business, or Information Technology) preferred; relevant certifications (CISSP, CISM, etc.) are a plus. About the Company Funded by world-class investors, including Evolution Equity Partners, Silver Lake Partners, Sequoia Capital, GV, Riverwood Capital, and others, SecurityScorecard is the global leader in cybersecurity ratings, response, and resilience, with more than 12 million companies continuously rated. Founded in 2013 by security and risk experts Dr. Aleksandr Yampolskiy and Sam Kassoumeh, SecurityScorecard's patented rating technology is used by over 25,000 organizations for enterprise risk management, third-party risk management, board reporting, due diligence, cyber insurance underwriting, and regulatory oversight. SecurityScorecard makes the world a safer place by transforming the way companies understand, improve and communicate cybersecurity risk to their boards, employees, and vendors. SecurityScorecard is listed as a free cyber tool and service by the U.S. Cybersecurity & Infrastructure Security Agency (CISA). Every organization has the universal right to its trusted and transparent Instant SecurityScorecard rating Apply Now < Prevous Next >

< Back Roundtable Q2 Special Interest Call - Healthcare/Insurance Thursday, April 15, 2021 Date Thursday, April 15, 2021 Time 10:00 - 11:30 AM CT Intended Audience TPRA Practitioner & Vendor Members Duration 90 minutes CPE Credits Fee Free Register Event Description Fourth/Fifth Party Risk Management Show More SPEAKER(S) INFORMATION CPE CREDIT Julie Gaiaschi CEO & Co-Founder | Third Party Risk Association (TPRA) Julie Gaiaschi, CISA, CISM, is the CEO & Co-Founder of the Third Party Risk Association (TPRA). She has over 15 years of technology and information security risk experience, with the last 10 years specializing in third party risk identification and mitigation techniques. In her role as CEO, she provides strategic direction for the non-profit, whose mission it is to further the third party risk profession through knowledge sharing and networking. She also has a passion for helping others enhance their own third party risk management programs. In 2021, Julie was awarded " CEO of the Year " by Women in Governance, Risk, and Compliance. Prior to co-founding the TPRA, Julie consulted on third party risk for a large bank. She also developed and led a large health payer organization’s Third Party Security program. There, she established and executed the third party risk assessment process, which included integration into the Procurement process. Prior to her role as the leader over Third Party Security, Julie was a Senior IT Auditor. Julie resides in Iowa with her husband and two girls. She enjoys traveling and cooking. About These Meetings Monthly Member Meetings are held every second Thursday of the month. Join us for relevant and informative roundtables, panels, and/or presentations on TPRM topics and pain points our members noted within the 2023 end-of-year survey. TPRM Tool Talk Demos | 30 Minutes Certain meetings feature "TPRM Tool Talk" demos in the last 30 minutes of the call. Hear from TPRM Service Providers on new and innovative tools as your schedule allows! Who Should Attend TPRA Practitioner and Vendor Members are able to register for all of these meetings. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . Attendees are eligible to receive 0.5 CPE credits for every 30 minutes of the LIVE meeting that they attend. (Ex. Attend for 30 minutes = 0.5 CPE credits. Attend for 1 hour = 1 CPE credits). CPE Credit will be issued upon completion of the post-event survey. Please allow at least one week following the event to receive your CPE certificate.

< Back Finance & Insurance, Special Interest Call Q2 Special Interest Call - Healthcare & Insurance Thursday, April 16, 2020 Date Thursday, April 16, 2020 Time 10:00 - 11:30 AM CT Intended Audience TPRA Practitioner & Vendor Members Duration 90 minutes CPE Credits Fee Free Register Event Description Maturity of TPRM Programs Show More SPEAKER(S) INFORMATION CPE CREDIT Julie Gaiaschi CEO & Co-Founder | Third Party Risk Association (TPRA) Julie Gaiaschi, CISA, CISM, is the CEO & Co-Founder of the Third Party Risk Association (TPRA). She has over 15 years of technology and information security risk experience, with the last 10 years specializing in third party risk identification and mitigation techniques. In her role as CEO, she provides strategic direction for the non-profit, whose mission it is to further the third party risk profession through knowledge sharing and networking. She also has a passion for helping others enhance their own third party risk management programs. In 2021, Julie was awarded " CEO of the Year " by Women in Governance, Risk, and Compliance. Prior to co-founding the TPRA, Julie consulted on third party risk for a large bank. She also developed and led a large health payer organization’s Third Party Security program. There, she established and executed the third party risk assessment process, which included integration into the Procurement process. Prior to her role as the leader over Third Party Security, Julie was a Senior IT Auditor. Julie resides in Iowa with her husband and two girls. She enjoys traveling and cooking. About These Meetings Monthly Member Meetings are held every second Thursday of the month. Join us for relevant and informative roundtables, panels, and/or presentations on TPRM topics and pain points our members noted within the 2023 end-of-year survey. TPRM Tool Talk Demos | 30 Minutes Certain meetings feature "TPRM Tool Talk" demos in the last 30 minutes of the call. Hear from TPRM Service Providers on new and innovative tools as your schedule allows! Who Should Attend TPRA Practitioner and Vendor Members are able to register for all of these meetings. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . Attendees are eligible to receive 0.5 CPE credits for every 30 minutes of the LIVE meeting that they attend. (Ex. Attend for 30 minutes = 0.5 CPE credits. Attend for 1 hour = 1 CPE credits). CPE Credit will be issued upon completion of the post-event survey. Please allow at least one week following the event to receive your CPE certificate.

< Back Field Cyber Risk Advisor Apply Now United States (Remote) Job Type Full Time Organization SecurityScorecard Application Deadline November 2, 2024 About the Role Job Overview: As a Field Cyber Risk Advisor for MAX, you will serve as both a technical expert and a trusted advisor to our clients and prospects. You’ll collaborate with our sales team and service delivery team to help demonstrate the value of MAX, our Managed Service Solution. You will be the technical expert providing leadership and guidance during the sales process ensuring that our customer’s security needs are met through tailored solutions. This role requires a highly credible and technical cybersecurity practitioner who can effectively communicate with both technical and non-technical stakeholders, helping to close deals and drive business growth. Key Responsibilities: Collaborate with the sales team to identify customer requirements and provide tailored solutions using the MAX managed service offering. Conduct product demonstrations, technical deep dives, and Proof of Concept (PoC) engagements to showcase the value of MAX to potential customers. Act as a subject matter expert on cybersecurity, risk management, and SecurityScorecard’s offerings, addressing technical questions from prospects and customers. Work closely with customers to design and implement managed service solutions that meet their unique cybersecurity needs. Assist in RFP responses, technical documentation, and presentations as part of the sales cycle. Provide feedback to the product team regarding customer needs and potential enhancements to the MAX solution. Stay up to date on the latest trends in cybersecurity and continuously improve your technical expertise in managed services and security best practices. Support post-sale activities, ensuring smooth onboarding and satisfaction with the MAX solution. Requirements Required Qualifications: Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. 5+ years of hands-on cyber security experience role in a cybersecurity-focused organization. Prefer frontline IR experience as engagement manager, digital forensic investigator, threat intelligence practitioner 3+ years of TPRM experience. Must understand the vendor life cycle, pillars of third party risk management, and possess the ability to talk to how vendor risk management works. Strong knowledge of cybersecurity concepts, risk management, incident response, vulnerability management, and security operations. Experience working in a pre-sales environment, with a proven ability to influence and help close deals. Excellent communication skills with the ability to think multi-dimensionally to both technical, compliance focused, and business stakeholders Hands-on experience with cybersecurity tools and platforms, including SIEM, EDR, and vulnerability scanning solutions. Strong problem-solving skills and the ability to communicate solutions that meet customer needs Industry certifications such as CISSP, CISM, or CEH are a plus About the Company SecurityScorecard is the global leader in cybersecurity ratings, with over 12 million companies continuously rated, operating in 64 countries. Founded in 2013 by security and risk experts Dr. Alex Yampolskiy and Sam Kassoumeh and funded by world-class investors, SecurityScorecard’s patented rating technology is used by over 25,000 organizations for self-monitoring, third-party risk management, board reporting, and cyber insurance underwriting; making all organizations more resilient by allowing them to easily find and fix cybersecurity risks across their digital footprint. Headquartered in New York City, our culture has been recognized by Inc Magazine as a "Best Workplace,” by Crain’s NY as a "Best Places to Work in NYC," and as one of the 10 hottest SaaS startups in New York for two years in a row. Most recently, SecurityScorecard was named to Fast Company’s annual list of the World’s Most Innovative Companies for 2023 and to the Achievers 50 Most Engaged Workplaces in 2023 award recognizing “forward-thinking employers for their unwavering commitment to employee engagement.” SecurityScorecard is proud to be funded by world-class investors including Silver Lake Waterman, Moody’s, Sequoia Capital, GV and Riverwood Capital. Apply Now < Prevous Next >

< Back Senior Account Executive - EMEA Apply Now Remote Job Type Full TIme Organization Rapid Ratings Application Deadline November 30, 2024 About the Role As a leading fintech company with a vast addressable market, we empower our employees to be thought leaders in navigating diverse customer challenges—both internal and external. At RapidRatings, we're actively seeking a proven Senior Account Executive (AE) to join our exceptional Sales team and expand our go-to-market presence across Europe. Mission of the Senior Account Executive: The Senior Account Executive plays a crucial role in creating enterprise value for our customers through the deployment of our predictive analytics and reporting systems. Our focus is on two key areas: 1) generating new business opportunities within the designated territory and 2) closing qualified opportunities with high conversion rates to achieve quarterly and annual sales targets. This role demands a proactive and entrepreneurial mindset, effective discovery skills to identify leads with potential business challenges, and strong communication abilities to align those challenges with RapidRatings' solutions through a value-driven sales process. A successful Senior Account Executive at RapidRatings embodies a continuous selling mentality; top performers consistently engage beyond the initial deal to ensure ongoing value delivery and drive substantial enterprise growth after adoption. Expectations of Sales Activity: Strategically manage a designated territory of Enterprise Target Accounts across Europe with focus on finding and closing new business. Work alongside Business Development Representatives (BDRs) to execute targeted outreach toward high-value accounts and leads within the assigned territory. Consistently achieve quarterly and annual pipeline objectives and sales targets. Quote, negotiate, and close complex sales to large enterprises Actively engaging in territory planning and opportunity development Staying abreast of competitive intelligence and providing feedback for management Manage pipeline and opportunity stages in accordance with RapidRatings Sales Policy and forecast reliably. Requirements What Would Make You Successful? Preference will be given to UK-based candidates Minimum 3 years of experience selling into the Enterprise space, with a demonstrable understanding of the B2B sales process. Proven track record of consistently achieving new business sales targets in Enterprise accounts. Experience in Supply Chain, Third Party Risk, Credit Risk, or Risk Management fields preferred. Experience selling into risk personas necessary Cross-functional experience working with partners and internal teams to drive opportunities and secure deals. Experience in Enterprise SaaS, Software Sales, or Technology with knowledge of MEDDPIC principles and/or Solution Selling Methodology. Professional presence with outstanding interpersonal, verbal, written communication, and negotiation skills. Familiarity with Salesforce, Outreach, Gong, ZoomInfo, and LinkedIn Sales Navigator. Bachelor’s degree in business, Marketing, or a related field, or relevant work experience. Willingness to travel 30-50% of the time across Europe. About the Company We work with sophisticated analytics, innovative algorithms, and industry-leading technologies to speak the language of financial health. By sourcing financial statements and digging into the data, we are able diagnose weaknesses and strengths in a company’s financial health with unparalleled accuracy and precision. What’s more, we’re able to use these insights to project behavior and trends many years forward, and distill these discoveries into clear, digestible reports to help institutions around the world protect themselves and their partners from unnecessary exposure to risk. With the current supply chain issues that are not close to stopping, it is now more important than ever for our clients to assess the financial health risk of their suppliers. To learn more visit: www.rapidratings.com . Apply Now < Prevous Next >

< Back Third Party Vendor Manager Apply Now Westlake TX, (hybrid) Job Type Full Time Organization Wells Fargo Application Deadline October 31, 2024 About the Role Manage and oversee moderate to highly complex activities associated with the development and implementation of business-specific programs, processes, and controls which identify, assess, monitor, measure, and mitigate risk Identify and recommend opportunities for process improvement, risk mitigation, and control strategies Determine appropriate strategies and actions, interpret and develop policies and procedures, and provide leadership to strategize and execute a variety of programs, services, initiatives, protocols, and deliverables that are moderate to high-risk within scope of responsibility Collaborate with and influence all levels of professionals including senior managers Engage and influence business heads, regulators, control management, risk, legal, and audit partners to successfully ensure appropriate management of business risk Develop and guide a culture of talent development to meet business objectives and strategy Requirements Required Qualifications: 5+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education 5+ years of risk management, business controls, or compliance experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education 3+ years of Relationship Management experience demonstrating ability to foster a large team of individuals across multiple locations Desired Qualifications: Experience in developing and presenting third party management materials to senior management and ability to act as a bridge between the company and the third parties. Effective communication in written and verbal. Strong critical thinking skills and consistent attention to detail Third Party Risk Management (TPRM) SME (subject matter expert) within the finance sector or other regulated industries (e.g. government, utilities) Ability to solve complex problems while balancing ability to meet deadlines amidst competing priorities About the Company Wells Fargo & Company (NYSE: WFC) is a diversified, community-based financial services company with approximately $1.9 trillion in assets. Wells Fargo’s vision is to satisfy our customers’ financial needs and help them succeed financially. Founded in 1852 and headquartered in San Francisco, Wells Fargo provides banking, investment and mortgage products and services, as well as consumer and commercial finance, through more than 7,300 locations, 12,000 ATMs, the internet (wellsfargo.com) and mobile banking, and has offices in over 40 countries and territories to support customers who conduct business in the global economy. With approximately 250,000 team members, Wells Fargo serves one in three households in the United States. Wells Fargo & Company was ranked No. 41 on Fortune’s 2022 rankings of America’s largest corporations. News, insights and perspectives from Wells Fargo are also available at Wells Fargo Stories. Apply Now < Prevous Next >

< Back Senior Third Party Risk Specialist Apply Now Raleigh, NC (Remote) Job Type Full TIme Organization Intaso Application Deadline November 30, 2024 About the Role Senior Third-Party Risk Specialist Intaso has partnered with a major global player to bring in a dedicated, proactive Third-Party Risk Analyst to join their enterprise risk team. This is a role for someone who wants to do more than "check a box"—we're looking for someone with the drive and enthusiasm to transform third-party risk processes and make a real impact. Role Highlights (Please Read): Own third-party risk initiatives within a global organization under one of the best CISOs in the industry. Lead the global expansion of OneTrust — prior experience is required. 100% remote, with a preference for candidates based in the Southeastern U.S. Competitive Salary: $132,000 to $149,000 base, plus a 9% annual bonus and comprehensive benefits. About the Role: In this key position, you’ll: Elevate the third-party risk program, design a vendor tiering methodology, improve processes, and lead the organization in risk education and assessment. Work closely with stakeholders across the company to instill a proactive risk management culture. Requirements What You’ll Bring: 5+ years in Third-Party Risk Management: Skilled in identifying vendor due diligence needs, planning vendor engagements, and overseeing monitoring. Strong TPRM and Regulatory Knowledge: Familiar with OCC, FFIEC, FDIC, and CFPB standards, plus working knowledge of NIST, COBIT, and COSO. OneTrust Expertise: Hands-on experience is essential. Enterprise Environment Experience. Relevant Certifications: CTPRP, CISA, CISSP, etc. Strong Communication Skills: Confident presenting to diverse organizational levels. Education: Bachelor’s in Business, Finance, Risk Management, or related field. About the Company At Intaso we are firm believers that not every business has the same Cyber/ Information Security talent shortages and demands a bespoke offering. Having extensive expertise of contingent, executive search, in-house, team-build and consultancy experience we are privileged to have the expertise to offer a complete set of innovative talent solutions tailored to every organisation. We pride ourselves on having a deep industry expertise, technical training, extensive networks and the softer skills to make intelligent matches on behalf of our loyal client base. Apply Now < Prevous Next >

< Back Associate Apply Now Washington DC, Reston, VA, Plano, TX - Flex hybrid Job Type Full-Time Organization Fannie Mae Application Deadline November 16, 2024 About the Role As a valued colleague on our team, you will assist the team with identifying and assessing potential risks that may threaten our reputation, safety, security, and/or financial success, as well as participate with the team in communicating and collaborating with key stakeholders across the enterprise, and understanding business objectives. THE IMPACT YOU WILL MAKE The Supply Base Management - Risk Management - Associate role will offer you the flexibility to make each day your own, while working alongside people who care so that you can deliver on the following responsibilities: Assist team with determining suppliers that pose potential risks to the enterprise. Review and analyze the impact of inherent third-party risks to the enterprise and third-party controls. Document control guidelines and methods to mitigate risk and resolutions. Maintain processes to comply with regulatory and enterprise requirements. Advise stakeholders on third party risk management Partner with the team to carry out business strategies that will drive success in the face of shifting priorities, risk, and regulations. Requirements Minimum Required Experiences Strong project management skills; ability to manage multiple projects effectively, strong time management and prioritization skills. Strong written and oral communication skills, attention to detail and interpersonal skills. Experience gathering accurate information to explain concepts and answer questions. Influencing skills; can negotiate, persuade others to accomplish tasks, facilitate meetings, and resolve conflict. Excellent presentation skills up to Officer level; able to present information and/or ideas to an audience in a way that is engaging and easy to understand. Proven relationship management skills including engaging and managing stakeholders, internal customers, vendors, etc. Ability to work with people with different functional expertise respectfully and cooperatively towards a common goal. Ability to understand complex business process and risk issues. About the Company At Fannie Mae, futures are made. The inspiring work we do helps make a home a possibility for millions of homeowners and renters. Every day offers compelling opportunities to impact the future of the housing industry while being part of an inclusive team thriving in an energizing, flexible environment. Here, you will grow your career and help create access to fair, affordable housing finance. Apply Now < Prevous Next >

< Back TPRM - Mgr Program Management Apply Now Norcross, GA Job Type Full Time Organization ACI Worldwide Application Deadline November 30, 2024 About the Role Essential Functions And Responsibilities Leads and executes ACI’s Third Party Risk Management program and framework, including program training, communications, process / program adherence, effective challenge, process improvement, policies and procedures, tools / technology, escalating risk information, reporting and communications to appropriate forums. Responsible for the day-to-day management and delivery of the TPRM program framework, including: Support the planning for third party suppliers, and complete periodic risk assessment and due diligence activities for existing third-party relationships, which may include the distribution of questionnaires and collection and evaluation of responses and supporting documentation. Engagement of second line risk and compliance SMEs as needed for the review of risks and issues arising from third party assessments. Work with business partners on the identification and management of risks related to ACI’s suppliers and external strategic partners. Collaborates with key program stakeholders, business partners and business line risk officers to ensure understanding and compliance with program requirements. Participates as needed in preparation and presentations on the TPRM program for internal and external audits and assessments Develops and delivers on TPRM program priorities and roadmaps; recommends improvements and adjustments to programs and frameworks where appropriate to address evolving needs of ACI and its clients. Collaborates within ACIs horizontal and vertical functions to address third party risk and support needs; consults with business leaders and stakeholders on solutions based on good internal models and advice. Supports the Director of TPRM, Audit & Assurance with Board and Executive Leadership communications and materials. Partners and builds trust with key business partners; is a respected and sought-after resource. Influences the organization to create a more risk and compliance aware culture with respect to third party risks. Peer leader, third party risk subject matter expert, and trusted risk partner; is intellectually curious; learns the business. Provides insight as well as information. Support Crisis Management Team activities that relate to ACI's third parties such as additional review of third parties who have had a security incident or identifying third parties who may be impacted by a security incident. Perform other duties as assigned Understand and adhere to all corporate policies to include but not limited to the ACI Code of Business Conduct and Ethics. Requirements Qualifications (Education, Experience, Knowledge, Skills, And Abilities) Bachelor’s degree or equivalent work experience, preferably in information systems related field of study, Information security Risk Management/Third Party Risk Management, or Compliance. 5+ years experience in related fields, such as Third Party Risk Management, GRC program management, Third party risk management professional certifications, such as CTPRP (Certified Third-Party Risk Professional), CRISC (Certified in Risk & Information Systems Control), CISA (Certified Information Systems Auditor), CRVPM (Certified Regulatory Vendor Program Manager) Strong background including application of advanced third-party risk concepts, practices, and procedures to effectively manage risk to achieve defined outcomes and desired results. Knowledge of related federal, state, and international laws, rules and regulations, DORA, EBA, PCI, GLBA, HIPAA, GDPR, etc. Experience with the development of program policies and standards. Ability to continuously prioritize projects based on risk or impact; thrives in ambiguous environments and can create clarity and structure out of chaos and noise. Skilled negotiator with the ability to lead without direct authority, influence and build consensus across functional teams Ability to set strategy but focus on tactical and detail for execution. Ability to continually assess options to utilize data and automation to assess and improve ACI’s internal control environment. Experience and/or expertise in financial services industry, or payments business strongly preferred. Sharp decision-making skills and an ability to prioritize and execute on multiple activities. Excellent written and oral communication skills. Excels with high levels of discretion, managing and communicating with staff at all organizational levels, from senior management to individual contributors. Demonstrated ability to think strategically and drive change throughout an organization. Ability to resolve complex and diverse technical and management challenges with agility, utilizing critical thinking, communication, and influencing skills. Preferred Qualifications (Education, Experience, Competencies) Ability to design processes and implement continuous improvements to those processes. Experience with Governance Risk and Compliance tools such as Archer, Alyne, or similar strongly preferred. Experience staffing and managing remote teams and within a matrixed environment. About the Company ACI Worldwide, an original innovator in global payments technology, delivers transformative software solutions that power intelligent payments orchestration in real time so banks, billers, and merchants can drive growth, while continuously modernizing their payment infrastructures, simply and securely. With nearly 50 years of trusted payments expertise, we combine our global footprint with a local presence to offer enhanced payment experiences to stay ahead of constantly changing payment challenges and opportunities. In short, we’re helping banks, merchants and billers capture rising real-time opportunities and volumes, all to meet the shifting needs of their consumers and business customers. Apply Now < Prevous Next >