Third Party Risk Manager

Holland America Line   •  

Seattle, WA

Industry: Leisure and Travel

  •  

5 - 7 years

Posted 382 days ago

Job Details

The Third Party Risk Manager will oversee our Third Party Risk Management Program which is part of the overall Information SecurityRisk Management Program. In administering the Program, they ensure comprehensive risk management and oversight of third party relationships throughout the entire lifecycle. This includes coordination of third party onboarding, analysis, ongoing monitoring, issue management, off-boarding, program reporting and liaison with internal stakeholders.

Responsibilities:

  • Functioned as a project manager and liaison between the company and multiple 3rd Party vendors to define and manage risk 

  • Implement and lead the Third Party Risk Management program

  • Define, implement, operate and enforce appropriate security controls throughout the IT organization, based on security policies and standards

  • Deliver best practice execution, interpretation, and compliance with IT security policies and procedures

  • Partner with internal teams and third party vendors to implement the relevant security policies and procedures, including regulatory and legal requirements

  • Develop and implement metrics and reporting summaries for the team

  • Participate in internal and external securityaudits as required

  • Review and analyze documentation received from third party vendors to ensure regulatory compliance

  • Monitor the industry for trends and proactively upgrade the Program as necessary

  • Serve as the subject matter expert for Third Party Risk questions and best practices

  • Analyze internal reporting and create presentation documents for the Board of Directors and Executive Management

  • Serve as primary Office of the CISO liaison to business units, legal and technical staff on Third Party Risk Management issues

  • Ensure the brands business unit’s monitor vendor performance, especially against service level expectations

  • Proactively monitor high-risk vendors for negative news, acquisitions, etc. and present risk information to executive leadership through annual high-risk vendor reviews

  • Acts as a subject matter expert to assist the business in identifying and mitigating risks of their Third Party relationships

  • Ensure completeness and accuracy of information maintained on third parties

Requirements:

  

  • BA/BS with 5+ years related work experience managing a risk program, or relevant work experience.

  • Security CIPP/US or CISM Certification or in process of obtaining equivalent  

  • Ability to establish and communicate timelines, process modifications, enhancements, program deliverables and risk assessments to ensure partner incentive status and onboarding eligibility

  • Working knowledge of risk, compliance, and control practices

  • Ability to successfully deliver in a global environment with different cultural challenges

  • Full knowledge of international security endeavors such as EU GDPR

  • Previous experience with risk management tools

  • Ability to perform functions independently with minimal supervision

  • Experience addressing needs of a variety of high-demand, high-pressure projects ranging from design, development, testing and implementation

  • Excellent communication and presentation skills (both written and oral)

  • Analysis, critical thinking and problem resolution skills

  • Strong operational experience across large scale, complex organizations

  • An ability to work effectively in a matrix organization is essential

  • Relationship management skills, ability to build and create a strong internal network across levels

  • Highly effective planning and prioritization skills
    Promote and deliver continuous training and awareness to Business partners on third party risk

Benefits...

  • Flexible Work Schedule! – 9/80 alternative workweek schedule option providing each employee with one (1) weekday off every two weeks.
  • Time off benefits – 8 paid holidays, paid vacation and paid sick time
  • Travel – Generous Cruise and Travel Privileges for you and your family
  • Health – Complete benefit plans including medical, dental, vision and flexible spending accounts
  • Wellness – Health and wellness programs include discounted health benefits and memberships
  • Tuition Reimbursement – Up to 80% with a maximum of $2000 per fiscal year
  • 401(k) – Company match of 33% on employees first 6% contribution with 100% vesting after 4 years of service 
  • Profit Sharing Plan – Eligible after 1 year of service
  • Employee Stock Purchase Plan – Discount on Carnival Corporation stock
  • Training – In-house Discover University courses on professional development
  • Rewards & Incentives – Employee Recognition and Reward Programs; rideshare, financial commuter incentives; special employee discounts for local venues, banking services and retail stores

8149