Third party risk managment Specialist (TPRM Specialist)

Job Description

Conduct questionnaire-based assessments to evaluate vendors' cybersecurity practices. Perform on-site assessments of critical vendors as necessary. Analyze assessment results and provide detailed risk reports to stakeholders. Collaborate with internal teams to remediate identified risks. Prepare and report on key metrics to measure the effectiveness of the TPRM program. Develop dashboards and reports to communicate TPRM performance to senior management. Review variations to the standard cyber clause in contracts and facilitate necessary negotiations and approvals in collaboration with legal, procurement and risk teams. Stay current with industry trends, regulations, and best practices in cybersecurity and third-party risk management. Mentor and guide junior cyber risk analysts in their professional development. Provide training and support to team members on TPRM methodologies, tools, and best practices. Foster a culture of continuous learning and improvement within the team. Assist in developing and refining assessment processes and methodologies. Contribute to the creation of training materials and internal knowledge bases. Work closely with the TPRM Lead in Australia to align assessment processes and risk management strategies.