Current jobs related to ISSO GRC Third Party Security - New York - META
-
GRC Analyst
2 days ago
New York, United States Vantage Talent Solutions Full timeAbout the Company: Vanatange are currently supporting a leading Financial institution as their Information Security team continues to grow by finding a GRC Analyst with a focus on Third (3rd) Party Risk. You'll play a pivotal role in supporting the GRC Manager with all compliance efforts across the business with compliance regulations like SOC2, ISO etc. A...
-
IT Security GRC Analyst
4 weeks ago
New London, United States RenaissanceRe Full timeRenaissanceRe is a leading writer of Property & Casualty Reinsurance. For over 25 years, we have helped customers and communities recover and build resilience through our industry-leading ability to understand risk, source efficient capital and rapidly pay claims. Our global team shares a passion for solving our customers' biggest problems through a...
-
Third Party Risk
2 weeks ago
New York, United States TEKsystems Full timeJob DescriptionJob DescriptionTop Skills' Details* Knowledgeable in multiple areas of technology, with hands-on experience and technical expertise across all Information Security domains* Experienced with local, national, and international financial services and privacy regulations, such as GLBA, NYDFS, GDPR, CCPA, etc. and credit card industry...
-
Third Party Risk Specialist
1 day ago
New York, New York, United States TEKsystems Full timeJob SummaryWe are seeking a highly skilled Third Party Risk Specialist to join our team at TEKsystems. The successful candidate will be responsible for ensuring that third parties adhere to security requirements and will work closely with various stakeholders to achieve this goal.Key ResponsibilitiesProvide Information Security subject matter expertise to...
-
GRC Security Specialist
5 days ago
New York, New York, United States Insight Global Full timeJob DescriptionAn international law firm is seeking a GRC Security Specialist to join their Security team responsible for managing risks related to security, privacy, and compliance, as well as interacting directly with clients.The Firm has more than 1,300 lawyers and has offices that span the globe from Boston, New York, Beijing, Brussels, Hong Kong,...
-
Lead Security Analyst, Third Party Security
6 days ago
New York, New York, United States CIRCLE Full timeAbout CircleCircle is a pioneering financial technology company at the forefront of the emerging internet of money. Our mission is to create an inclusive financial future with transparency at our core.Job SummaryWe are seeking a highly skilled Lead Security Analyst to join our Third Party Security team. As a key member of our security team, you will design...
-
Third Party Risk Management Specialist
4 weeks ago
New York, New York, United States TEKsystems Full timeJob OverviewPosition Summary:The role involves collaborating with various departments to ensure compliance with security standards for third-party vendors.Key Skills Required:Proficiency in diverse technological domains, with practical experience and expertise in all areas of Information Security.Familiarity with local, national, and international...
-
GRC Security Specialist
5 days ago
New York, New York, United States NetCov Full timeJob DescriptionNetCov is seeking a highly skilled GRC Security Specialist to join our growing Security Team. As a key member of our team, you will be responsible for ensuring the security and compliance of our clients' systems and data.Key Responsibilities:Conduct security audits and risk assessments to identify potential vulnerabilities and develop...
-
Director of Third Party Risk Management
6 days ago
New York, New York, United States Broadgate Full timeJob Title: Director - Third Party Risk ManagementBroadgate is seeking a highly skilled Director to lead our Third Party Risk Management team. As a key member of our organization, you will be responsible for developing and implementing strategies to mitigate risks associated with third-party relationships.Key Responsibilities:Develop a comprehensive strategy...
-
Third Party Risk Consultant
1 month ago
New York, United States Phyton Talent Advisors Full timeOur client, a Global Investment Bank, is seeking a Third Party Risk Management Consultant for their New York, NY location:RESPONSIBILITIES:Ability to manage an inventory of vendors and associated services.Facilitate onboarding of new vendors and conduct reviews of existing vendors.Facilitate, review and challenge vendor risk assessments conducted by business...
-
Third Party Risk Consultant
1 month ago
New York, United States Phyton Talent Advisors Full timeOur client, a Global Investment Bank, is seeking a Third Party Risk Management Consultant for their New York, NY location:RESPONSIBILITIES:Ability to manage an inventory of vendors and associated services.Facilitate onboarding of new vendors and conduct reviews of existing vendors.Facilitate, review and challenge vendor risk assessments conducted by business...
-
NEW YORK, United States MassMutual Full timeOverview: We are seeking an experienced and strategic leader to join our organization as the Head of Cyber Third Party and Risk Management. In this critical role, you will be responsible for overseeing and enhancing our third-party cyber risk management program, governance, security awareness and training, and ensuring the security of our business...
-
New York, United States MassMutual Full timeJob DescriptionOverview: We are seeking an experienced and strategic leader to join our organization as the Head of Cyber Third Party and Risk Management. In this critical role, you will be responsible for overseeing and enhancing our third-party cyber risk management program, governance, security awareness and training, and ensuring the security of our...
-
Third-Party Risk Management Lead
1 week ago
New York, New York, United States Federal Reserve System Full timeJob Title: Third-Party Risk Management, 4th Party Program LeadAt the Federal Reserve System, we are seeking a highly skilled Third-Party Risk Management, 4th Party Program Lead to join our team. As a key member of our Risk Management department, you will be responsible for developing, implementing, and administering the Third-Party Risk Management 4th Party...
-
Director - Third Party Risk Management
2 months ago
New York, United States Broadgate Full timeJob ResponsibilitiesStrategy Development:• Develop a comprehensive strategy for continuous monitoring of third and fourthparty relationships.• Define goals, objectives, and key performance indicators (KPIs) to measure the effectiveness of the monitoring program.• Stay abreast of industry trends, regulatory requirements, and emerging threats to...
-
AVP Third Party Risk
2 months ago
New York, United States Broadgate Full timeWhat You’ll Do • Support the Maturity of the Third-Party Risk Management Program by providing recommendations and helping to provide strategy deliverables. • Be open to change and provide leadership by leading TPRM staff across the enterprise to welcome/accept change. • Provide periodic reports to management and stakeholders. • Manage vendor...
-
Information Security Consultant
2 months ago
New York, United States OTC Markets Group Inc Full timeJob DescriptionJob DescriptionOTC Markets Group, a regulated fintech company, is seeking an Information Security Consultant for a period of 6 months in a full time capacity. Applicants for this role should have capability to travel to the NYC office whenever required.Responsibilities:• Policy and Procedure Management: Review, update, and enhance all...
-
Third Party Risk Consultant
4 weeks ago
new york city, United States Phyton Talent Advisors Full timeOur client, a Global Investment Bank, is seeking a Third Party Risk Management Consultant for their New York, NY location:RESPONSIBILITIES:Ability to manage an inventory of vendors and associated services.Facilitate onboarding of new vendors and conduct reviews of existing vendors.Facilitate, review and challenge vendor risk assessments conducted by business...
-
Third Party Risk Consultant
4 weeks ago
new york city, United States Phyton Talent Advisors Full timeOur client, a Global Investment Bank, is seeking a Third Party Risk Management Consultant for their New York, NY location:RESPONSIBILITIES:Ability to manage an inventory of vendors and associated services.Facilitate onboarding of new vendors and conduct reviews of existing vendors.Facilitate, review and challenge vendor risk assessments conducted by business...
-
GRC Architect
4 weeks ago
New York, United States Riva Scientific LLC Full timeJob DescriptionJob DescriptionGRC Architect /Information security senior consultant.New York OnsiteJob Description : The GRC Architect is an experienced role and will work cross functionally across many security teams . You will be involved playing a critical role in ensuring that GRC functions are incorporated into key security services and program while...
ISSO GRC Third Party Security
4 months ago
Summary:
We are creating an operationally effective and highly efficient service of common concern for all Integrity, Security, Support, and Operations (ISSO) Governance, Risk, and Compliance (GRC) needs, ensuring Integrity, Security, Support, and Operations continue to meet global regulatory requirements and manage risk. Meta's ISSO GRC is the central engine driving risk management and compliance at the company, supporting Meta and the family of apps. Security engineering is a critical component of supporting integrity and security risk domain governance, risk, and compliance (GRC). GRC initiatives are designed to enable the business to proactively manage risk, to protect sensitive information, and to meet or exceed legal and regulatory obligations and expectations.Were seeking deeply experienced, integrity and security talent to help enable and safeguard Metas products and services which have a truly global scale. Our goal is to make Meta the premier place to work for governance, risk, compliance, security, and integrity professionals.
Required Skills:
ISSO GRC Third Party Security Responsibilities:
Collaborate with team members and stakeholders to understand or identify defined work problems and program goals, prioritize deliverables, and discuss program impact.
Identify and implement opportunities for increased automation across the program factoring in emerging regulations and proactive detection of risks.
Increase Integration of systems to provision simplified engagements for the business, consolidated and efficient workflows, and consumable view of risk for leadership
Designing, implementing, and/or assessing security controls
Validating vulnerability assessments, controls testing outcomes
Identification of risks and detailing of a mitigation plan to ensure that the project stays on track, or is brought back on track in the event of delays or blockers.
Providing technical challenge to risk domain strategies, products, designs, features, components.
Support business travel on an as needed basis (up to 10%)
Minimum Qualifications:
Minimum Qualifications:
4 + years of experience in information security, cybersecurity, transparency reporting, integrity, and/or technology risk including one or more domains (e.g., access management, vulnerability management, change management, business continuity, application security, asset management).
2 + years of experience in undertaking and managing programs of work to deliver cyber security assessments that validate the existence and effectiveness of controls to assure the confidentiality, integrity and availability of data held within third party systems.
2 + years of experience in assessing security deficiencies in information systems and recommending mitigating controls in a corporate environment. Negotiates technical capabilities and remediation plans with senior cyber security leaders in third party suppliers.
Preferred Qualifications:
Preferred Qualifications:
BSc/MSc or equivalent experience in Computer Science, Information Systems, Engineering, Cybersecurity or related field
Experience in technical challenge and validation of controls and features effectively analyzing risk, compliance, and maturity within the context of business, and technology problems
Experience in effectively analyzing risk, compliance, and maturity within the context of business, and technology problems.
Industry qualification (CISSP / CISA or similar)
Public Compensation:
$129,000/year to $189,000/year + bonus + equity + benefits
Industry: Internet
Equal Opportunity:
Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment.
Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.