Third Party Risk Consultant at MassMutual Romania | Hybrid Hired

About the role

Third Party Risk Consultant overseeing cyber security due diligence for new and existing suppliers. Collaborating with teams to communicate findings and manage third-party risks.

Responsibilities

Perform cyber security due diligence of new suppliers and performance of on-going due diligence for existing supplier relationships.
Hold and drive internal and external discussions with business partners regarding third-party cyber security requirements.
Communicate results and findings of third-party assessments in a clear and professional manner with all levels of the organization, in addition to external business partners.
Evaluate third-party threats, vulnerabilities, and control weaknesses to determine applicability and significance, and recommend mitigation.
Work with cyber team lead to understand control requirements to enforce and determine cyber security risks of third parties.
Monitor for third-party cyber incidents and manage responses and mitigations when they occur.

Requirements

Ability to read, understand, and perform due diligence of vendors by analyzing and reviewing cyber security controls and documentation provided, such as SOC 2’s, written information security programs, industry certifications, and network penetration testing results.
Experience with vulnerability management, incident management
Demonstrated experience as a trusted advisor and partner.
Excellent analytical and problem-solving skills, including ability to create and adapt to unconventional controls.
Broad understanding of cyber security practices for third party risks including software, cloud, SaaS.
Experience with the review of cyber security contractual agreements and amendments, applying risk-driven techniques.
Familiarity with managing your workload using a Jira Kanban board.
Software security lifecycle and vulnerability management experience including familiarity with threat modeling, static code analysis, dynamic scanning, and penetration testing.
Strong communication and advocacy skills, both verbal and written, with the ability to express complex and technical issues in clear and concise business terms.
Strong project management skills with the ability to manage multiple priorities.
Working with and executing proficiently in industry known GRC tools.

Benefits

Health insurance
Paid time off
Flexible working arrangements
Professional development opportunities

Similar roles

Browse all Risk jobs

9 minutes ago

SA

Data Governance Analyst

Satori Analytics

Data Governance Analyst in AI - focused company ensuring compliance and data quality across projects. Collaborating with cross - functional teams in the hybrid work environment of Athens.

Hybrid Role

Athens Greece Risk

2 hours ago

PR

IT Governance Consultant Freelancer

PRIORITY

Freelance IT Governance Consultant at PRIORITY Quality Consultants supporting IT Service Management and Data governance projects across Greece. Facilitating workshops, developing frameworks, and conducting audits for client projects.

Hybrid Role

Lykovrysi Greece Risk

10 hours ago

VM

Senior Market Risk Advisory Consultant, FX & Rates

Validus Risk Management

Senior Risk Advisory Consultant at Validus offering market risk analysis and client leadership. Engaging with institutional and private capital clients to drive risk strategy and innovative solutions.

Hybrid Role

London United Kingdom Risk

11 hours ago

ZI

Enterprise Risk Analyst

Zurich Insurance

Enterprise Risk Analyst at Zurich Life Assurance Plc collaborating with diverse teams to strengthen risk management culture and implement frameworks. Involves governance, risk assessment, reporting, and training activities.

Onsite Role

Blackrock Ireland Risk

11 hours ago

PA

Risk Manager

PayJoy

Risk Manager optimizing portfolios for PayJoy's financial products. Using data and ML tools to improve risk outcomes and support business growth.

Hybrid Role

Mexico City Mexico Risk

16 hours ago

NI

Senior Analyst – Enterprise Risk

Nium

Senior Analyst assessing enterprise and operational risks and strengthening business process controls in a fintech environment. Collaborating with multiple teams to provide risk insights and support governance.

Hybrid Role

Chennai India Risk

18 hours ago

LY

Manager LRP, OneStream Governance

LyondellBasell

Manager LRP & OneStream Governance role at LyondellBasell managing finance processes and reporting. Supporting long - range planning and performance forecasting with financial analysis expertise.

Onsite Role

Houston United States Risk

18 hours ago

FB

Risk & Strategy Analyst I

Fifth Third Bank

Analyst position at Fifth Third Bank focusing on pricing and risk strategies through data - driven decisions. Collaborating with multiple teams to develop financial models for new lending products and optimize credit performance.

Onsite Role

Chicago United States Risk

$61,200 - $125,500 per year

21 hours ago

BL

Especialista en Gobernanza Clínica y Transformación

Bupa Global Latinoamérica

Clinical Governance and Transformation Specialist ensuring compliance with health service standards. Leading clinical committees and coordinating improvement plans in a hybrid work model.

Hybrid Role

Dominican Republic Risk

21 hours ago

WU

Document Governance Specialist

Webster First Federal Credit Union

Document Governance Specialist overseeing end - to - end document governance processes for First West Credit Union. Responsible for guidance, operational advice, and oversight of document management initiatives.

Hybrid Role

Langley Canada Risk

CA$56,800 - CA$72,800 per year