AVP, Third Party Cyber Risk Management @ MetLife

Job Information

Job Description:

Key Responsibilities:

·       Providing leadership and oversight over cyber risk assessment and risk management of third-parties ensuring risk is appropriately assessed

·       Identifying opportunities for improving operational effectiveness

·       Driving program and tool enhancements

·       Deploying the TPCRM globally to ensure standardized and consistent processes are followed.

·       Supporting communication and training related to the program and systems to ensure Third-Party Cyber Risk Management (TPCRM) awareness

·       Reporting on performance and risk metrics

·       Partnering with internal and external auditors, where required

·       Partnering with key Risk Partners – Procurement, Vendor Management, Privacy, Business Resiliency, etc.

·       Conducting regular program self-assessments

·       Partner with legal, compliance, IT, and business to proactively identify and mitigate risk

·       Support of potential third party cyber / data related events, as necessary

Essential Business Experience and Technical Skills:

  • 3-5 years of experience in third party risk management
  • Current working experience building out and leading a Third Party Cyber Risk Management Program
  • Demonstrated strong process experience
  • Demonstrated ability to change Teams and drive a risk mindset
  • Demonstrated ability to hold Teams accountable and drive action
  • Experience tracking key metrics for the preparation of key reports and development of executive communications for presentation to governance committees, senior leaders and regulatory bodies
  • Experience navigating third-party capability and security discussions to evaluate technical and non-technical security controls
  • Experience in supporting third-party cyber incident response activities in partnership with security, legal, or crisis management teams
  • Ability to implement third-party risk tracking framework and risk mitigation
  • Keep abreast of cyber, information security, technology, and associated trends and risks, as well as an understanding of existing and upcoming regulations
  • Be experienced in leading people
  • Strong process management and communication skills
  • Possess strong written and verbal communication skills, and the ability to adjust communication style for the audience
  • Build and maintain effective relationships across the organization
  • Effectively manage competing priorities
  • Be passionate about their work and supporting customers

Experience Level: Mid-Senior
Work From: Onsite United States of America

Company Information

View all jobs of Company: Click here

Pin It on Pinterest