Jobs in 
Richmond, VA
 - made simple.
RVA Jobs is your home for work in Richmond, Henrico, Chesterfield, and more.
Family owned & operated
Richmond based
 
This listing is expired.
The listing logo for Truist Financial
Supplier Technology Assessment Team (STAT) Operations Manager - Hybrid
Truist Financial
Richmond, VA
Full time
BankingTruistCybersecurityBusinessManagement
Posted 562 day(s) ago


Lead and direct all assessment, onsite or remote, activities in support of the Supplier Technology Risk Assessment program. This program is performing risk and control assessments on third-party suppliers as it relates to the Technology Risk and Cybersecurity.


ESSENTIAL DUTIES AND RESPONSIBILITIES


Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time.

  1. Provide leadership for the onsite and remote technology assessment teams in the identification, assessment, control, and reporting of technology risk associated with the use of third parties for delivery of products/services to Truist

  2. Provides direction to the assessment team in regards to managing the risk assessment work queue, including assessor assignments, assessment prioritization, cycle time and final approval of all completed assessments.

  3. Represents Enterprise Technology’s Technology Supplier Management Office (TSMO) by cultivating partnerships with strategic business partners including Third Party Risk Management (TPRM), Tech Risk, Business Unit Service Managers, Risk Domain SMEs and Sourcing for all aspects regarding the STAT Risk Assessment program.

  4. Serves as the primary consultant regarding supplier escalations as it pertains to the Technology Risk.

  5. Provides direction, coaching, and mentoring for assigned professional risk management assessment staff regarding performance evaluation, training and career development.

  6. Monitor domain and developing technologies/use cases to highlight emerging risks

  7. Leads program enhancement initiatives to ensure the assessment methodology is effectively and accurately identifying Supplier Technology Risks as well as ensuring alignment with TPRM direction.

  8. Ability to travel as required, occasionally overnight

QUALIFICATIONS


Required Qualifications:

The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

  1. Bachelor’s degree and six to eight years of experience in systems engineering or administration or an equivalent combination of education and work experience

  2. Deep specialized and/or broad functional knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security

  3. Previous experience in leading complex IT projects

Preferred Qualifications:

  1. Bachelor’s degree in Business, Computer Science, Cybersecurity or related disciplines

  2. 10+ years of IT Risk Management, Cybersecurity, Technical Operations or IT Auditing experience

  3. 10+ years of experience or an equivalent combination of education and work experience.

  4. 5+ years of experience leading a team of professional risk management practitioners

  5. Master’s degree or other advanced degree in disciplines mentioned above.

  6. Proven experience leading a team of professionals

  7. Advanced knowledge of regulatory requirements (GLBA, HIPAA, SOX), industry standards (PCI) and IT control frameworks (COBIT, ITIL, ISO, NIST)

  8. One or more professional certifications such as CISSP, CRISC, CISM, CISA or CRP

  9. Experience with GRC program tools such as Archer and Know Your Third Party (KY3P).

  10. Strong skill sets in the following: team leadership and interpersonal relationships, analytical and problem-solving, verbal and written communication, process improvement, and project management.

  11. Ability to communicate Technology risk concepts to a broad range of technical and non-technical teammates including Senior Management.

  12. Demonstrated proficiency in basic computer applications such as Microsoft Office software products.

  13. Previous experience as a Supplier Manager, or equivalent experience/knowledge of the third-party Management program and best practices

  14. Certification in Lean Six Sigma or similar process improvement, facilitation, and project management methodologies.

  15. Banking or financial services experience.


How to Apply