Vendor Cybersecurity Risk Specialist Job in CHARLOTTE

566 IT & Software Developer jobs in the US

Company Size

5k+

Company Type

Services

Exp Level

Regular

Job Type

Full-Time

Language

English

Visa sponsorship

Requirements

Must:

- Bachelors degree in a relevant field such as Information Technology, Cybersecurity, or Business Administration. - 4 additional years of relevant experience may substitute for the degree requirement. - 4 years of experience in vendor or third-party risk management within financial services, IT, or cybersecurity sectors. - 2 years of experience with regulatory compliance related to agencies like OCC, Federal Reserve Board, or CFPB. - In-depth knowledge of cyber processes and regulatory compliance standards. - Strong understanding of cybersecurity principles and technologies. - Experience navigating a regulated, policy-compliant environment. - Familiarity with the complete lifecycle of third-party relationships, including invoice reconciliation and termination steps. - Knowledge of cybersecurity frameworks (e.g., NIST CSF, ISO 27001) and best practices in third-party risk management (e.g., Shared Assessments). - Strong analytical and problem-solving capabilities. - Excellent communication and interpersonal skills.

Technologies

Support

Security

Responsibilities

- Implement and refine a comprehensive, risk-based Third-Party Risk Management (TPRM) framework that aligns with industry standards and regulations. - Conduct independent evaluations of the first lines identification and assessment of cybersecurity risks associated with third-party relationships. - Engage in initial and ongoing reviews of inherent risk assessments and security questionnaires. - Perform independent testing of controls established by the first line of defense and third parties related to technology systems. - Observe and ensure adherence to cybersecurity policies, standards, and procedures associated with third-party risks. - Offer constructive feedback and recommendations to enhance business processes. - Analyze key risk indicators (KRIs) and key performance indicators (KPIs) to continuously assess the cyber risk stance of third parties. - Prepare and contribute to managerial reports on third-party risks. - Stay updated on evolving cybersecurity regulations related to TPRM, ensuring program alignment. - Review incident response processes for cybersecurity incidents involving third parties. - Examine vendor due diligence processes to ensure thorough vetting of cybersecurity risks before onboarding. - Review cybersecurity requirements in vendor contracts for appropriate security clauses. - Maintain accurate and current documentation of TPRM activities. - Monitor third-party relationships for member satisfaction and ensure service level agreements are upheld. - Identify opportunities for process improvements within the second line of cyber and technology TPRM program.

Description

At USAA, our mission is to empower our members towards financial security by providing competitive products, exceptional service, and reliable advice. We strive to be the top choice for the military community and their families. We are looking for a dedicated Cyber Risk Management Analyst to join our Third-Party Risk Management team. In this role, youll contribute to our cyber resilience and enhance your skills in risk management while working in a flexible environment that requires four days in the office each week in either Charlotte, NC or Tampa, FL. We offer comprehensive benefits including medical, dental, vision, life insurance, a 401(k), and professional development opportunities.

Something wrong or incorrect with this job? Tell us in the chat 💬 on the right ➡️

IT & Software developer jobs in the USSecurity Engineer jobs in the USSecurity Engineer jobs Charlotte, NC

You can find Cyber Security Engineer salaries in the United States here.

How many Cyber Security Engineer jobs are in the United States?

Currently, there are 566 Security openings. Check also: IAM jobs, SAML jobs, Cisco jobs, Splunk jobs - all with salary brackets.

Is the US a good place for Cyber Security Engineers?

The US is one of the best countries to work as a Cyber Security Engineer. It has a vibrant startup community, growing tech hubs and, most important: lots of interesting jobs for people who work in tech.

Which companies are hiring for Cyber Security Engineer jobs in the United States?

bunny.net, Murmuration, Diploma Healthcare Group, Perri's Corporation, Clarity.ca Inc., Thales, Parc Safari among others, are currently hiring for Security roles in the United States.

The company with most openings is USAA as they are hiring for 44 different Cyber Security Engineer jobs in the United States. They are probably quite committed to find good Cyber Security Engineers.