| | | 20,000+ Fresh Resumes Monthly | |
|
|
| |
Click here or scroll down to respond to this candidateTHIRD PARTY RISK ANALYSTCandidate's Name
EMAIL AVAILABLE PHONE NUMBER AVAILABLESummaryIT Professional with over five years of combined experience in Third Party risk management with an acute attention to detail, strong critical thinking skills, and the ability to execute on task while working independently with a team players attitude. Over the years, I have developed a very good understanding of risk management and various Third-Party Risk control domains responsible for supporting the security aspects of all third-party partnerships. I have implemented programs that includes managing and executing the third-party cyber risk assessment process, tracking and remediation of technical, operational, and contractual issues resulting from partnerships. As a Third-Party Risk Management analyst, my strengths include providing a good compliance function by reviewing third party due diligence and monitoring and assisting in enhancing the organizations third party risk management program.CertificationsCompTIA Security+Scrum Master CertifiedISACA Certified Information Systems Auditor (CISA)SkillsUnderstanding of cyber security threats and Risk assessments, ISO27001, Controls, Disaster Recovery, SOC 1 and 2 Review, HIPAA, Microsoft Office, thorough knowledge of industry security standards to include but not limited to NIST800-53, SOX, PCIDSS, GDPR, ServiceNow VRM, RSA Archer, Problem solving and analytical skills, Policy and procedure documentation, Strong interpersonal skills, Excellent written and verbal communication, System Monitoring & Regulatory, ability to work independently in a well-organized way with minimal direction, detail oriented with strong organizational skills and ability to manage multiple projects effectively, ability to review inherent risk questionnaire, vendors profile sheets, and through kick off call determines if assessment is in scope or out of scope.ExperienceKingsway Home health, CHICAGO. IL(Contract) 01/2022 - CurrentTHIRD PARTY RISK ANALYSTPerform risk/security assessments of Suppliers, Third-Party relationships to identify, validate, remediate risks.Using ServiceNow, RSA Archer, One Trust for risk rating and assessments.Perform interviews, document design assessments, walkthrough of Key Controls.Using pivot table, excel charts in analyzing risk methodologySupport ongoing monitoring of Suppliers and Third Party to review compliance against compliance and regulatory requirements.Perform onsite assessments of Third Parties against Key Controls and industry security standards.Support risk/security assessments for special projects involving Third Parties.Exhibit pragmatism in formulating process remediation, implementation strategies, defining work tracks, submitting assessment findings and recommendations.Develop trusted relationships with Business Partners, IT Executives, Security & Compliance Officers and other team members to gain consensus approvals on strategies, recommendations, findings and project plans, etc. Performing third-party risk assessments, analyzing the risk level of third-party engagements, both for new and existing vendors (as part of ongoing review and update cycles).Analyzed due diligence documentation to arrive at risk-level determinations against the Bank's risk methodology, in accordance with regulatory and industry standards.Assessed the adequacy of due diligence documentation received from vendors as level of QC before passing on to subject matter experts (SMEs), where necessary.Synthesized inputs from Bank's risk SMEs, vendor documentation, and conversations with lines of business to develop risk assessments.Authored risk narratives to communicate what key risks are for an engagement or vendor, support, why a certain risk level has been assigned.Monitored, analyzed, and maintained vendor information and documentation.Formed strong relationships with lines of business and risk SMEs across the Bank, to facilitate a positive and open working relationship.Used strong understanding of risk topics and 'risk mindset' to actively challenge inputs (e.g., Vendor and business claims).Presented when required, analysis and findings to senior stakeholders and committees.Worked with business units to ensure documentation is received and updated as needed.Worked collaboratively with other teams in supply chain management as well as with stakeholders across the business.Managed and executed risk management projects to determine deficiencies and appropriate corrective actions.Arthur Schuman, HOUSTON ELIGIN, IL (Contract) 02/2018-12/2021THIRD PARTY SECURITY ANALYSTDocuments, maintain and improve processes across the enterprise to mitigate and reduce third party security and resiliency risk.Assist in kick off, status, and closing meetings with engagement team and clients and contributes to party audit knowledge base and internet projects development initiatives.Partners with internal and external stakeholders to perform due diligence reviews of current and prospective third-party providers to determine their suitability as a business partner and assists the company in meetings its business and strategic objectivesReports findings through use of formalized reviews, exception reporting, and risk acceptance reporting.Organizes virtual meetings with the vendors security team to have an overview of third-party security postures and policy and documentation availability.Ensure that proper documentation for new and existing third-party relationships is properly completed and retained.Performed kick off call to conduct vendor scoping by collecting details of vendors engagement with the organization from the business owner.Determined vendors inherent risk and identifies third party vendor weakness that could be exploited while providing services to our organization.Assists with monitoring and testing adherence to policies and procedures.Tracking and monitoring resolutions of issues arising at vendors.Monitor activities to minimize the companys exposure to risk e.g. risk identification and remediation.Performed kickoff call to conduct vendor scoping by collecting details of vendors engagement with the organization from the business owner.Determine vendors risk and identifies third party vendor weakness that could be exploited while providing exploited while providing service to our organization.EducationUniversity of Porharcourt, - River state Nigeria Bachelor of ScienceAccounting, 12/2010 |
