Third Party Risk Analyst

• Develop and manage the end-to-end third-party risk management program for the Cybersecurity team which includes managing security risks associated with working with our suppliers and third parties.
• Perform ongoing risk assessments of SailPoint’s third-party relationships to identify, validate and remediate risks.
• Develop third party risk management processes such as questionnaires in accordance with SailPoint’s risk management framework.
• Support ongoing monitoring of SailPoint’s third-party relationships to review compliance with regulatory requirements.
• Partner and collaborate with internal stakeholders such as procurement, IT and other businesses to successfully manage the third-party risk program including pre and post contract activities
• Manage a consistently growing portfolio of vendors to help maintain visibility into the risk landscape of the organization's third parties.
• Assist in continuous strategic planning activities for the cybersecurity organization.
• Regularly meet with compliance to collaborate on compliance activities, control recommendations, and provide assistance with audit activities.
• Maintain documentation on processes and procedures in accordance with standards, regulations, and industry best practices. Contribute to the development and improvementof processes as well as policies and procedures to ensure our third-party risk program is aligned to regulatory requirements globally.
• Maintain understanding of emerging trends in information security threats and risks

Requirements:

• More than 5 years of related work experience working in the Cybersecurity space
• Suggested certifications: CISSP, CISA, CISM, CRISC or other relevant certifications
• Strong English language fluency
• Strong understanding of industry frameworks and best practices (e.g., NIST, ISO, FAIR,
• OWASP, CIS)
• Experience with compliance frameworks such as ISO27001, SOC2, SOX, GDPR, FedRAMP
• Excellent analytical and problem-solving skills
• Excellent communication skills (verbal and written), ability to influence without authority.
• Demonstrated teamwork and collaboration skills, in leading or contributing to multi-functional teams.
• Detail oriented, organized, methodical, follow up skills with an analytical thought process.
• Ability to manage time independently while handling multiple projects concurrently.
• Ability to work in a fast-paced environment; ability to multi-task, change direction, effectively prioritize, and meet deadlines