Current jobs related to Head of Cyber Third Party and Risk Management - Boston - MASSMUTUAL
-
Cyber Third-Party Analyst
7 days ago
Boston, United States Undisclosed Full timeThe OpportunityWe are seeking an experienced Third-Party Analyst to join our Cyber Third-Party team. You will join a highly collaborative, fast paced team focused on assessing and mitigating third-party risk. This role will require collaboration across multiple disciplines, exceptional communication and documentation skills, and an exceptional understanding...
-
Cyber Third-Party Analyst
2 weeks ago
BOSTON, United States MassMutual Full timeThe OpportunityWe are seeking an experienced Third-Party Analyst to join our Cyber Third-Party team. You will join a highly collaborative, fast paced team focused on assessing and mitigating third-party risk. This role will require collaboration across multiple disciplines, exceptional communication and documentation skills, and an exceptional understanding...
-
Boston, United States State Street Corporation Full timeWho we are looking for State Street's Global Cyber Security (GCS) Third Party Cyber Risk Management (TPCRM) program seeks to mitigate a variety of third-party information security risk in accordance with the Bank's cyber risk appetite. Through a framework that addresses policy, process, operations, people, and technology, GCS protects our infrastructure,...
-
Cyber Third-Party Analyst
7 days ago
Boston, MA, United States MassMutual Full timeThe OpportunityWe are seeking an experienced Third-Party Analyst to join our Cyber Third-Party team. You will join a highly collaborative, fast paced team focused on assessing and mitigating third-party risk. This role will require collaboration across multiple disciplines, exceptional communication and documentation skills, and an exceptional understanding...
-
Director, Global Third Party Risk Management
3 weeks ago
Boston, Massachusetts, United States The Liberty Mutual Foundation Full timeJob SummaryThe Director, Global Third Party Risk Management will lead the development and implementation of a comprehensive Third Party Risk Management program across the organization. This role will be responsible for managing a team of risk analysts and ensuring that all third-party vendors are properly assessed and monitored for risk.Key...
-
Head of IT Risk
2 days ago
Boston, United States Arrowstreet Capital Full timeJob OverviewThe Head of IT Risk & Governance reports to a Co-Head of IT (the Head of Enterprise IT) and is responsible for leading enterprise-wide information technology risk assessment and mitigation activities. The individual in this role will work closely and collaboratively with business leaders and compliance teams to develop, implement, and ensure...
-
Global Director of Third Party Risk Management
2 weeks ago
Boston, Massachusetts, United States Liberty Mutual Full timeJob DescriptionAt Liberty Mutual, we are seeking an experienced professional to fill the role of Director, Global Third Party Risk Management. This position provides leadership for the current Third Party Risk Program in the US and oversees the efforts to include Global regulatory requirements for all Liberty Mutual international locations.Key...
-
Director, Global Third Party Risk Management
3 weeks ago
Boston, Massachusetts, United States Liberty Mutual Full timeAbout the Role:This is an exciting opportunity for an experienced Third Party Risk Management professional to join Liberty Mutual as the Director, Global TPRM. The successful candidate will lead the TPRM Office and be responsible for the current Third Party Risk Program in the US, as well as leading efforts to include Global regulatory requirements for all...
-
Cyber Risk Assessment Director
4 weeks ago
Boston, Massachusetts, United States J&J Family of Companies Full timeCyber Risk Assessment DirectorJohnson & Johnson is seeking a highly skilled Cyber Risk Assessment Director to lead a team of security and risk professionals in conducting cybersecurity risk and compliance assessments. The ideal candidate will have a strong background in information security, cybersecurity controls, and industry frameworks, as well as...
-
Associate Vendor Risk Management Specialist
4 weeks ago
Boston, Massachusetts, United States Towne Family of Companies Full timeJob SummaryWe are seeking a highly skilled Associate Vendor Risk Management Analyst to join our team at Towne Family of Companies. As a key member of our Vendor Risk Management team, you will play a critical role in assisting in the identification, assessment, and monitoring of risks associated with outsourcing products and services to third-party...
-
Cyber Application Platform Architect
5 days ago
Boston, United States Avangrid Inc. Full timeCyber Application Platform Architect LOCATION: Boston MA SALARY RANGE: The base salary range for this position is dependent upon experience and location, ranging from $135k to $165k. Relocation: Eligible Bonus: Eligible Job Summary Join a critical team within Offshore O&M Operations Engineering and lead the development and implementation of cybersecurity...
-
Cyber Application Platform Architect
5 days ago
Boston, United States Iberdrola Energie Deutschland GmbH Full timeTITLE: Cyber Application Platform Architect LOCATION: Boston MA SALARY RANGE: The base salary range for this position is dependent upon experience and location, ranging from $135k to $165k. Relocation: Eligible Bonus: Eligible Job Summary Join a critical team within Offshore O&M Operations Engineering and lead the development and implementation of...
-
Offer Director
3 months ago
Boston, United States Boston Consulting Group Full timeWHAT YOU'LL DOThe Technology and Digital Advantage (TDA) Practice provides strategic, transformational, and technical offerings. Across industries, we bring together experts in strategy, architecture, cybersecurity, next gen ERP and more to drive end to end transformation. Our teams are galvanized to unlock potential, at speed and with lasting impact â...
-
Cyber Application Platform Architect
5 days ago
Boston, United States Iberdrola SA Full timeCyber Application Platform Architect LOCATION: Boston MA SALARY RANGE: The base salary range for this position is dependent upon experience and location, ranging from $135k to $165k. Relocation: Eligible Bonus: Eligible Job Summary Join a critical team within Offshore O&M Operations Engineering and lead the development and implementation of cybersecurity...
-
Cyber Risk Services Coordinator
4 weeks ago
Boston, United States Travelers Full timeWho Are We?Taking care of our customers, our communities and each other. That's the Travelers Promise. By honoring this commitment, we have maintained our reputation as one of the best property casualty insurers in the industry for over 160 years. Join us to discover a culture that is rooted in innovation and thrives on collaboration. Imagine loving what you...
-
Boston, United States State Street Corporation Full timeWho we are looking for State Street's Model Risk Management (MRM) is seeking a Head of Model Risk Governance (MD) who will lead the Model Risk Governance team within the Model Risk Management group. The Head of Model Risk Governance plays a crucial role in promoting risk excellence culture, partnering with stakeholders in ensuring the robustness of Model...
-
Cyber Threat Intelligence Analyst
4 weeks ago
Boston, Massachusetts, United States Highmark Health Full timeCyber Threat Intelligence Analyst Job DescriptionThis role is responsible for leveraging threat intelligence to identify, comprehend, and decipher emerging threats. The Cyber Threat Intelligence Analyst will closely monitor indicators of compromise (IOC) and take remediation actions. They will perform investigations into potential and existing security...
-
Risk Management Associate
4 weeks ago
Boston, Massachusetts, United States Fidelity Investments Full timeJob Description:Role Overview:We are seeking a highly analytical and detail-oriented Co-op to join our Asset Management Independent Investment Risk Management team. As a Co-op, you will work closely with our team to define relevant risk metrics and produce reporting that provides assurance that investment managers are taking appropriate types and levels of...
-
Senior Enterprise Risk Manager
4 weeks ago
Boston, Massachusetts, United States Northeast Bank Full timeJob SummaryNortheast Bank is seeking a highly skilled Enterprise Risk Manager to join its team. As a key member of the Bank's Enterprise Risk Management department, you will be responsible for managing oversight programs, including enterprise risk aggregation and reporting, model risk management, and third-party relationship management.Key...
-
Head of Global Enterprise Risk
4 weeks ago
Boston, United States MFS Investment Management Full timeAt MFS, you will find a culture that supports you in doing what you do best. Our employees work together to reach better outcomes, favoring the strongest idea over the strongest individual. We put people first and demonstrate care and compassion for our community and each other. Because what we do matters - to us as valued professionals and to the millions...
Head of Cyber Third Party and Risk Management
2 months ago
Overview:
We are seeking an experienced and strategic leader to join our organization as the Head of Cyber Third Party and Risk Management. In this critical role, you will be responsible for overseeing and enhancing our third-party cyber risk management program, governance, security awareness and training, and ensuring the security of our business information assets. You will lead efforts to assess, mitigate, and monitor risks associated with third-party vendors and drive information security risk management across MassMutual’s critical business units / entities.
Key Responsibilities:
- Leadership and Strategy:
- Develop and execute a comprehensive third-party risk management strategy aligned with organizational objectives, regulatory requirements, and industry best practices.
- Define and implement cyber security strategies, policies, and standards to protect company assets and data.
- Third-Party Risk Management:
- Lead the assessment and ongoing monitoring of third-party vendors and partners to identify potential risks and vulnerabilities.
- Establish risk assessment frameworks, methodologies, and scoring models to evaluate the security posture of third parties.
- Vendor Due Diligence and Contract Management:
- Implement robust due diligence processes for assessing the security capabilities of prospective vendors and partners.
- Collaborate with legal and procurement teams to incorporate security requirements into vendor contracts and agreements.
- Risk Mitigation and Remediation:
- Develop and oversee the implementation of risk mitigation strategies and controls to address identified vulnerabilities and risks with third parties.
- Monitor and track remediation efforts to ensure timely resolution of security issues impacting third-party relationships.
- Cyber Security Governance:
- Develop and enforce cyber security policies, standards, and guidelines across the organization.
- Ensure compliance with regulatory requirements and industry standards (e.g., ISO 27001, NIST CsF) related to information security.
- Security Awareness and Training:
- Establish a world class enterprise cyber security awareness and training program.
- Develop relevant metrics to measure the efficiency and effectiveness of the security awareness and training program, facilitate appropriate resource allocation, and increase the maturity of the program.
- Cross-Functional Collaboration:
- Collaborate with internal stakeholders including IT, law, compliance, privacy procurement, and senior leadership to integrate third-party risk management and information security into business processes.
- Communicate security risks and recommendations to senior management, advocating for necessary investments and resources.
Required Skills and Qualifications:
- Bachelor’s degree in computer science, Information Technology, Business Administration, or related field; advanced degree preferred.
- Proven experience (8+ years) in third-party risk management, information security, or related cybersecurity roles, with at least 5 years in a leadership capacity.
- Deep understanding of third-party risk management frameworks (e.g., NIST SP 800-161, ISO 27001), regulatory requirements, and industry standards.
- Strong knowledge of information security principles, practices, and technologies, including data protection, encryption, access control, and identity management.
- Excellent leadership and people management skills, with the ability to lead and mentor a diverse team of professionals.
- Experience working with business process reengineering and IT solutioning; experience working on project teams bringing together both business & technology. Capable of explaining technical concepts to a non-technical audience.
- Effective communication skills, with the ability to articulate complex security concepts to non-technical stakeholders and influence decision-making at all levels.
Preferred Qualifications:
- Industry certifications such as CISSP, CISM, CRISC, or related certifications in risk management and cybersecurity.
- Experience in financial services, healthcare, or other regulated industries with stringent security and privacy requirements.
- Familiarity with emerging technologies and trends in cybersecurity, such as cloud security, IoT security, and DevSecOps practices.
#LI-MC1
MassMutual is an Equal Employment Opportunity employer Minority/Female/Sexual Orientation/Gender Identity/Individual with Disability/Protected Veteran. We welcome all persons to apply. Note: Veterans are welcome to apply, regardless of their discharge status.
If you need an accommodation to complete the application process, please contact us and share the specifics of the assistance you need.
#J-18808-Ljbffr