2,186 Third Parties jobs in the United States
Director of Identity Security - Third Parties
Posted 7 days ago
Job Viewed
Job Description
**Details** + **Department:** Security + **Schedule:** Full Time Monday - Friday 8-5pm CT + **Location:** Remote **Benefits** Paid time off (PTO) Various health insurance options & wellness plans Retirement benefits including employer match plans Long-term & short-term disability Employee assistance programs (EAP) Parental leave & adoption assistance Tuition reimbursement Ways to give back to your community _Benefit options and eligibility vary by position. Compensation varies based on factors including, but not limited to, experience, skills, education, performance and salary range at the time of the offer._ **Responsibilities** The **Director of Identity Security - Third Parties** is a strategic leadership role responsible for governing and securing identity and access for third-party entities, including major service providers and buyers involved in mergers, acquisitions, and divestitures. This leader will design, implement, and oversee the identity governance framework for external organizations interacting with the healthcare system, ensuring secure, compliant, and seamless access management across the enterprise ecosystem. The ideal candidate brings extensive experience in Identity Governance and Administration (IGA) tools, strong understanding of IAM processes, and a deep appreciation for the complexity of third-party risk management in the healthcare sector. **Key Responsibilities** **Strategic Leadership** + Define and execute the third-party identity security strategy aligned with organizational goals and healthcare regulatory requirements. + Provide IAM leadership during M&A transactions, ensuring secure onboarding/offboarding and ongoing access management for buyers and divested entities. + Serve as the enterprise authority on third-party identity governance and lifecycle management. **Identity Governance and Administration** + Lead the deployment and optimization of IGA platforms (e.g., SailPoint, Saviynt, or equivalent) Identity Proofing (e.g: Clear) solutions for third-party user lifecycle management, access certifications, policy enforcement, and reporting. + Establish identity policies and procedures for provisioning, deprovisioning, and recertification of third-party users. **Third-Party Access Management** + Oversee the access management program for external vendors, service providers, and joint venture partners, ensuring least privilege access, role-based access control (RBAC), and adherence to segregation of duties (SoD) principles. + Collaborate with Legal, Compliance, Procurement, and IT Security to define identity requirements in third-party contracts and business associate agreements (BAAs). **Risk and Compliance** + Monitor and manage identity-related risks introduced by third-party relationships, ensuring adherence to HIPAA, HITECH, and other regulatory standards. + Lead periodic audits and third-party access reviews, remediating non-compliant access in collaboration with business owners. **Cross-Functional Collaboration** + Work closely with M&A integration/divestiture teams, Infrastructure, Application Owners, Legal, and Security Operations to support seamless transitions of identity services. + Act as the liaison between IAM and business units regarding third-party access requests, escalations, and exception management. **Qualifications** **Education & Experience:** + Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or a related field (Master's preferred). + 10+ years of progressive experience in Identity & Access Management, with at least 5 years in a leadership role. + 3+ years managing identity services for third parties, particularly in complex, federated environments. + Deep experience with IGA platforms such as SailPoint, Saviynt, or One Identity. **Preferred Industry Experience:** + Healthcare provider environment with knowledge of EHR systems (e.g., Epic, Cerner), clinical workflows, and patient privacy standards. + Involvement in M&A activities with exposure to system separation, access divestiture, and third-party identity transition planning. **Skills and Competencies:** + Strong leadership and program management skills + Expert knowledge of IAM processes (Joiner/Mover/Leaver, RBAC, SSO, MFA, PAM) + Excellent communication and stakeholder management abilities + Analytical mindset with a focus on governance, compliance, and risk mitigation + Strong vendor management and contract negotiation skills related to identity services **Requirements** Licensure / Certification / Registration: + Law Enforcement.Licensure specific to state in which work is performed is preferred. Education: + Bachelor's degree required. + Master's degree preferred. Work Experience: - 7 years of experience required. - 10 years of experience preferred. - 5 years of leadership or management experience preferred. **Additional Preferences** **Certifications (Preferred but not required):** + CISSP, CISM, or similar + Identity-specific certifications (e.g., SailPoint Certified IdentityNow Professional) #LI-Remote **Why Join Our Team** When you join Ascension, you join a team of over 134,000 individuals across the country committed to a Mission of serving others and providing compassionate, personalized care to all. Our inclusive culture, continuing education programs, career coaches and benefit offerings are just a few of the resources and tools that team members can use to create a rewarding career path. In fact, Ascension spent nearly $46 million in tuition assistance alone to support associate growth and development. If you are looking for a career where you can grow and make a difference in your community, we invite you to join our team today. **Equal Employment Opportunity Employer** Ascension provides Equal Employment Opportunities (EEO) to all associates and applicants for employment without regard to race, color, religion, sex/gender, sexual orientation, gender identity or expression, pregnancy, childbirth, and related medical conditions, lactation, breastfeeding, national origin, citizenship, age, disability, genetic information, veteran status, marital status, all as defined by applicable law, and any other legally protected status or characteristic in accordance with applicable federal, state and local laws. For further information, view the EEO Know Your Rights (English) ( poster or EEO Know Your Rights (Spanish) ( poster. As a military friendly organization, Ascension promotes career flexibility and offers many benefits to help support the well-being of our military families, spouses, veterans and reservists. Our associates are empowered to apply their military experience and unique perspective to their civilian career with Ascension. Pay Non-Discrimination Notice ( Please note that Ascension will make an offer of employment only to individuals who have applied for a position using our official application. Be on alert for possible fraudulent offers of employment. Ascension will not solicit money or banking information from applicants. **E-Verify Statement** This employer participates in the Electronic Employment Verification Program. Please click the E-Verify link below for more information. E-Verify (
Director of Identity Security - Third Parties

Posted 15 days ago
Job Viewed
Job Description
+ **Department:** Security
+ **Schedule:** Full Time Monday - Friday 8-5pm CT
+ **Location:** Remote
**Benefits**
Paid time off (PTO)
Various health insurance options & wellness plans
Retirement benefits including employer match plans
Long-term & short-term disability
Employee assistance programs (EAP)
Parental leave & adoption assistance
Tuition reimbursement
Ways to give back to your community
_Benefit options and eligibility vary by position. Compensation varies based on factors including, but not limited to, experience, skills, education, performance and salary range at the time of the offer._
**Responsibilities**
The **Director of Identity Security - Third Parties** is a strategic leadership role responsible for governing and securing identity and access for third-party entities, including major service providers and buyers involved in mergers, acquisitions, and divestitures. This leader will design, implement, and oversee the identity governance framework for external organizations interacting with the healthcare system, ensuring secure, compliant, and seamless access management across the enterprise ecosystem.
The ideal candidate brings extensive experience in Identity Governance and Administration (IGA) tools, strong understanding of IAM processes, and a deep appreciation for the complexity of third-party risk management in the healthcare sector.
**Key Responsibilities**
**Strategic Leadership**
+ Define and execute the third-party identity security strategy aligned with organizational goals and healthcare regulatory requirements.
+ Provide IAM leadership during M&A transactions, ensuring secure onboarding/offboarding and ongoing access management for buyers and divested entities.
+ Serve as the enterprise authority on third-party identity governance and lifecycle management.
**Identity Governance and Administration**
+ Lead the deployment and optimization of IGA platforms (e.g., SailPoint, Saviynt, or equivalent) Identity Proofing (e.g: Clear) solutions for third-party user lifecycle management, access certifications, policy enforcement, and reporting.
+ Establish identity policies and procedures for provisioning, deprovisioning, and recertification of third-party users.
**Third-Party Access Management**
+ Oversee the access management program for external vendors, service providers, and joint venture partners, ensuring least privilege access, role-based access control (RBAC), and adherence to segregation of duties (SoD) principles.
+ Collaborate with Legal, Compliance, Procurement, and IT Security to define identity requirements in third-party contracts and business associate agreements (BAAs).
**Risk and Compliance**
+ Monitor and manage identity-related risks introduced by third-party relationships, ensuring adherence to HIPAA, HITECH, and other regulatory standards.
+ Lead periodic audits and third-party access reviews, remediating non-compliant access in collaboration with business owners.
**Cross-Functional Collaboration**
+ Work closely with M&A integration/divestiture teams, Infrastructure, Application Owners, Legal, and Security Operations to support seamless transitions of identity services.
+ Act as the liaison between IAM and business units regarding third-party access requests, escalations, and exception management.
**Qualifications**
**Education & Experience:**
+ Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or a related field (Master's preferred).
+ 10+ years of progressive experience in Identity & Access Management, with at least 5 years in a leadership role.
+ 3+ years managing identity services for third parties, particularly in complex, federated environments.
+ Deep experience with IGA platforms such as SailPoint, Saviynt, or One Identity.
**Preferred Industry Experience:**
+ Healthcare provider environment with knowledge of EHR systems (e.g., Epic, Cerner), clinical workflows, and patient privacy standards.
+ Involvement in M&A activities with exposure to system separation, access divestiture, and third-party identity transition planning.
**Skills and Competencies:**
+ Strong leadership and program management skills
+ Expert knowledge of IAM processes (Joiner/Mover/Leaver, RBAC, SSO, MFA, PAM)
+ Excellent communication and stakeholder management abilities
+ Analytical mindset with a focus on governance, compliance, and risk mitigation
+ Strong vendor management and contract negotiation skills related to identity services
**Requirements**
Licensure / Certification / Registration:
+ Law Enforcement.Licensure specific to state in which work is performed is preferred.
Education:
+ Bachelor's degree required.
+ Master's degree preferred.
Work Experience:
- 7 years of experience required.
- 10 years of experience preferred.
- 5 years of leadership or management experience preferred.
**Additional Preferences**
**Certifications (Preferred but not required):**
+ CISSP, CISM, or similar
+ Identity-specific certifications (e.g., SailPoint Certified IdentityNow Professional)
#LI-Remote
**Why Join Our Team**
When you join Ascension, you join a team of over 134,000 individuals across the country committed to a Mission of serving others and providing compassionate, personalized care to all. Our inclusive culture, continuing education programs, career coaches and benefit offerings are just a few of the resources and tools that team members can use to create a rewarding career path. In fact, Ascension spent nearly $46 million in tuition assistance alone to support associate growth and development. If you are looking for a career where you can grow and make a difference in your community, we invite you to join our team today.
**Equal Employment Opportunity Employer**
Ascension provides Equal Employment Opportunities (EEO) to all associates and applicants for employment without regard to race, color, religion, sex/gender, sexual orientation, gender identity or expression, pregnancy, childbirth, and related medical conditions, lactation, breastfeeding, national origin, citizenship, age, disability, genetic information, veteran status, marital status, all as defined by applicable law, and any other legally protected status or characteristic in accordance with applicable federal, state and local laws.
For further information, view the EEO Know Your Rights (English) ( poster or EEO Know Your Rights (Spanish) ( poster.
As a military friendly organization, Ascension promotes career flexibility and offers many benefits to help support the well-being of our military families, spouses, veterans and reservists. Our associates are empowered to apply their military experience and unique perspective to their civilian career with Ascension.
Pay Non-Discrimination Notice ( note that Ascension will make an offer of employment only to individuals who have applied for a position using our official application. Be on alert for possible fraudulent offers of employment. Ascension will not solicit money or banking information from applicants.
**E-Verify Statement**
This employer participates in the Electronic Employment Verification Program. Please click the E-Verify link below for more information.
E-Verify (
Risk Management
Posted 27 days ago
Job Viewed
Job Description
Duties: Drive the development of analytics tools to enhance the overall efficiency of the stress testing group. Partner with Risk, Finance, and Quantitative Research groups to assist in the enhancement of existing loan stress models. Collect data from various sources, synthesize the information, perform analysis, and interpret results to make recommendations that impact portfolio risk management. Run and review stress loss forecasting models to meet regulatory reporting requirements and ongoing portfolio monitoring. Support the production of the Comprehensive Capital and Analysis Review and Dodd-Frank Act Stress Tests (CCAR & DFAST) and quarterly Risk Appetite stress testing exercises. Collaborate with the Quantitative Research group to implement and maintain a new loss estimation framework. Prepare and present results to regulators and management teams in Risk and Finance. Support the development of complex sensitivity analysis and the extension of stress testing results for risk management purposes. Work with the Risk Identification team to align stress testing with risks identified across the portfolio.
QUALIFICATIONS:
Minimum education and experience required: Master's degree in Business Analytics, Data Analytics, Information Technology, Data Science, Economics, Finance, or related field of study plus three (3) years of experience in the job offered or as Risk Management, Business Intelligence Analyst, Quantitative Analyst, Software Engineer, Software Quality Analyst, or related occupation. The employer will alternatively accept a Bachelor's degree in Business Analytics, Data Analytics, Information Technology, Data Science, Economics, Finance, or related field of study plus five (5) years of experience in the job offered or as Risk Management, Business Intelligence Analyst, Quantitative Analyst, Software Engineer, Software Quality Analyst, or related occupation.
Skills Required: This position requires experience with the following: developing and maintaining Python-based code for data analysis and calculations; collaborating with various teams designing, developing, and deploying Python-based codebase; troubleshooting and debugging issues that arise in the Python-based codebase; manipulating, aggregating, and summarizing data and model results; creating visualizations in Tableau and Excel that support decision making; using Excel, PowerPoint, and Word applications for data analysis, documentation, and presentation purposes; creating dynamic reports using pivot tables in Excel; loss modelling; predictive analysis on loan defaults; defining requirements for reporting enhancements. Experience in the skills may be gained through professional work experience, graduate coursework experience, or internships.
Job Location: 8181 Communications Parkway, Plano, TX 75024.
JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.
We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.
JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans
Third Party Risk Management Lead

Posted 1 day ago
Job Viewed
Job Description
WHAT IS THE OPPORTUNITY?
Third Party Risk Management (TPRM) Lead is responsible for providing Enterprise wide third party risk management services, including taking a lead role to define, implement, and maintain a risk framework, operating model, policies, procedures, governance and oversight programs for all lines of business and subsidiaries. CNB established the TPRM program as a second line function, enabling CNB to manage third party risk effectively and efficiently, relative to its size and complexity. The lead is responsible for ensuring the program meets regulatory guidance, aligns with CNB's parent company, and incorporate changes as necessary.
WHAT WILL YOU DO?
* In partnership with the TPRM Program Manager, develop a successful implementation plan consisting of: Assist with the development and execution of an TPRM risk framework, policies and procedures. Direct assessments on key controls and overall compliance with the TPRM program, including the timeliness, completeness, and accuracy of risk assessments. Provide risk-consulting serves to first line third party risk managers for complex arrangements. Develop risk analysis and reporting, including risk metrics, for dissemination to both first line of defense (technology) leadership, risk management committees, CNB's parent holding company, and CNB's regulators. Streamline processes for risk identification and assessment, control assessment, testing and issue management.
* Lead continuous improvement activities and initiatives for TPRM, working with stakeholders, subject matter experts, and analysis of exception reports to define issues, determine root cause, and determine appropriate changes.
* Identify and assess requirements for CNB's GRC system to increase automation, and process effectiveness and efficiency.
* Responsible for reviewing SSAE 18 reports for CNB's third parties and evaluate for completeness, appropriateness, and assess impact to CNB on findings and exceptions to support CNB's Sarbanes Oxley, FDICA, and SOC programs.
* Manage coordination of assignment of resources based on demand and capacity, and required subject matter expertise, including augmenting internal staff with external resources as necessary.
* Ensure appropriate escalate of issues to first line and senior management as required.
WHAT DO YOU NEED TO SUCCEED?
*Required Qualifications**
* Minimum of 7 years of third party risk management, assurance and / or oversight or relevant supplier or third party audit or compliance experience
* Minimum of 4 years of experience in risk and controls for information technology and cybersecurity, appropriately scoping assessments, providing credible challenges, and performing assurance testing.
* Minimum of 4 years working with a GRC system, incorporating continuous improvement for the system and process.
*Additional Qualifications*
* Comprehensive knowledge of third party and information technology risk management processes and methodologies
* Experience using third party risk management /Governance, Risk and Compliance (GRC) systems
* Experience assessing contracts, including master service agreements, statements of work, and license agreements.
* Experience assessing cloud servicing arrangements
* Knowledge of and experience in designing and operating governance, frameworks and processes to comply with vendor management / third party risk management related regulatory requirements, guidance and oversight (OCC 2013-29, Fed SR 13-19 or other relevant third party risk management / vendor management regulation applicable to the financial services industry)
* Currently hold or quickly obtain industry recognized third party risk management or vendor management certification
* Excellent oral and written communication skills; experience performing both detailed and executive-level documentation
* Advanced knowledge of Microsoft Office tools; specifically, Excel, PowerPoint and SharePoint
* Experience with reporting platforms such as Tableau, SQL scripts, and Microsoft SSRS desirable
*WHAT'S IN IT FOR YOU?*
*Compensation*Starting base salary: $111,408 - $189,738 per year. Exact compensation may vary based on skills, experience, and location. This job is eligible for bonus and/or commissions.
*Benefits and Perks*
At City National, we strive to be the best at whatever we do, including the benefits and perks we offer our colleagues including:
* Comprehensive healthcare coverage, including Medical, Dental and Vision plans, available the first of the month following start date
* Generous 401(k) company matching contribution
* Career Development through Tuition Reimbursement and other internal upskilling and training resources
* Valued Time Away benefits including vacation, sick and volunteer time
* Specialized health and family planning benefits including fertility benefits, and cancer, diabetes and musculoskeletal support programs
* Career Mobility support from a dedicated recruitment team
* Colleague Resource Groups to support networking and community engagement
Get a more detailed look at our US
Since day one we've always gone further than the competition to help our clients, colleagues and communities flourish. City National Bank was founded in 1954 by entrepreneurs for entrepreneurs and that legacy of integrity, community and unparalleled client relationships continues today. City National is a subsidiary of Royal Bank of Canada, one of North America's leading diversified financial services companies. To learn more about City National and our dynamic company culture, visit us at AND EQUAL OPPORTUNITY EMPLOYMENT*
City National Bank fosters an inclusive environment where all forms of diversity are valued and leveraged to make us a better company and employer. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, veteran status or other basis protected by law.
It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
*Represents basic qualifications for the position. To be considered for this position, you must at least meet the required qualifications. careers.cnb.com accepts applications on an ongoing basis, until filled.
Third Party Risk Management Lead

Posted 1 day ago
Job Viewed
Job Description
WHAT IS THE OPPORTUNITY?
Third Party Risk Management (TPRM) Lead is responsible for providing Enterprise wide third party risk management services, including taking a lead role to define, implement, and maintain a risk framework, operating model, policies, procedures, governance and oversight programs for all lines of business and subsidiaries. CNB established the TPRM program as a second line function, enabling CNB to manage third party risk effectively and efficiently, relative to its size and complexity. The lead is responsible for ensuring the program meets regulatory guidance, aligns with CNB's parent company, and incorporate changes as necessary.
WHAT WILL YOU DO?
* In partnership with the TPRM Program Manager, develop a successful implementation plan consisting of: Assist with the development and execution of an TPRM risk framework, policies and procedures. Direct assessments on key controls and overall compliance with the TPRM program, including the timeliness, completeness, and accuracy of risk assessments. Provide risk-consulting serves to first line third party risk managers for complex arrangements. Develop risk analysis and reporting, including risk metrics, for dissemination to both first line of defense (technology) leadership, risk management committees, CNB's parent holding company, and CNB's regulators. Streamline processes for risk identification and assessment, control assessment, testing and issue management.
* Lead continuous improvement activities and initiatives for TPRM, working with stakeholders, subject matter experts, and analysis of exception reports to define issues, determine root cause, and determine appropriate changes.
* Identify and assess requirements for CNB's GRC system to increase automation, and process effectiveness and efficiency.
* Responsible for reviewing SSAE 18 reports for CNB's third parties and evaluate for completeness, appropriateness, and assess impact to CNB on findings and exceptions to support CNB's Sarbanes Oxley, FDICA, and SOC programs.
* Manage coordination of assignment of resources based on demand and capacity, and required subject matter expertise, including augmenting internal staff with external resources as necessary.
* Ensure appropriate escalate of issues to first line and senior management as required.
WHAT DO YOU NEED TO SUCCEED?
*Required Qualifications**
* Minimum of 7 years of third party risk management, assurance and / or oversight or relevant supplier or third party audit or compliance experience
* Minimum of 4 years of experience in risk and controls for information technology and cybersecurity, appropriately scoping assessments, providing credible challenges, and performing assurance testing.
* Minimum of 4 years working with a GRC system, incorporating continuous improvement for the system and process.
*Additional Qualifications*
* Comprehensive knowledge of third party and information technology risk management processes and methodologies
* Experience using third party risk management /Governance, Risk and Compliance (GRC) systems
* Experience assessing contracts, including master service agreements, statements of work, and license agreements.
* Experience assessing cloud servicing arrangements
* Knowledge of and experience in designing and operating governance, frameworks and processes to comply with vendor management / third party risk management related regulatory requirements, guidance and oversight (OCC 2013-29, Fed SR 13-19 or other relevant third party risk management / vendor management regulation applicable to the financial services industry)
* Currently hold or quickly obtain industry recognized third party risk management or vendor management certification
* Excellent oral and written communication skills; experience performing both detailed and executive-level documentation
* Advanced knowledge of Microsoft Office tools; specifically, Excel, PowerPoint and SharePoint
* Experience with reporting platforms such as Tableau, SQL scripts, and Microsoft SSRS desirable
*WHAT'S IN IT FOR YOU?*
*Compensation*Starting base salary: $111,408 - $189,738 per year. Exact compensation may vary based on skills, experience, and location. This job is eligible for bonus and/or commissions.
*Benefits and Perks*
At City National, we strive to be the best at whatever we do, including the benefits and perks we offer our colleagues including:
* Comprehensive healthcare coverage, including Medical, Dental and Vision plans, available the first of the month following start date
* Generous 401(k) company matching contribution
* Career Development through Tuition Reimbursement and other internal upskilling and training resources
* Valued Time Away benefits including vacation, sick and volunteer time
* Specialized health and family planning benefits including fertility benefits, and cancer, diabetes and musculoskeletal support programs
* Career Mobility support from a dedicated recruitment team
* Colleague Resource Groups to support networking and community engagement
Get a more detailed look at our US
Since day one we've always gone further than the competition to help our clients, colleagues and communities flourish. City National Bank was founded in 1954 by entrepreneurs for entrepreneurs and that legacy of integrity, community and unparalleled client relationships continues today. City National is a subsidiary of Royal Bank of Canada, one of North America's leading diversified financial services companies. To learn more about City National and our dynamic company culture, visit us at AND EQUAL OPPORTUNITY EMPLOYMENT*
City National Bank fosters an inclusive environment where all forms of diversity are valued and leveraged to make us a better company and employer. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, veteran status or other basis protected by law.
It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
*Represents basic qualifications for the position. To be considered for this position, you must at least meet the required qualifications. careers.cnb.com accepts applications on an ongoing basis, until filled.
Third Party Risk Management Principal

Posted 1 day ago
Job Viewed
Job Description
Primary activities include, but are not limited to, gathering information (such as security gaps, mitigating controls, design, financials, security program artifacts) to execute risk assessments on the third party being assessed. The successful candidate will utilize their security and technical expertise to define cybersecurity risks, rate those risks, communicate those risks, defend their analysis, and work with the business to drive down risk to acceptable levels. Additionally, the selected candidate will manage and facilitate the assessment process. Additionally, for third party risk assessments, they will ensure contractual requirements are incorporated into legal agreements.
The selected individual will provide support internally to the Global Cybersecurity Services (GCS) team, which is responsible for the Risk Management function, including the Third Party Security Risk Management program. They will manage service level agreements for assessment reviews, troubleshoot and enhance functionality within the tool used to conduct assessments (OneTrust), and act as the primary escalation liaison between the TRSPM team and the business owners of the third party relationships.
Strong process management and communication skills are required for this role. A sound knowledge of the industry and TPRM experience will be applied to assist leadership with ongoing strategic efforts, such as: integration with surrounding global functions and systems, global program facilitation and reporting capabilities, management of professional services and associated KPIs, and implementation of additional program automation and identified development opportunities.
**Essential Functions:**
+ **Third-Party Risk Management**
+ Assess the risk of third-party business partners based on their procedures and controls.
+ Facilitate third-party risk management due-diligence processes across business units.
+ Execute risk assessments for third parties working with Carnival.
+ Drive appropriate stakeholder participation in the assessment, evaluation, and response to risk.
+ Manage vendor relationships, fielding inquiries, and overseeing/assisting in the vendor assessment process."
+ **Risk Management**
+ Serve as a risk subject-matter-expert.
+ Identify, analyze, evaluate, and work with the business to manage risks.
+ Execute risk assessments for exceptions and new projects.
+ **Training and Development**
+ Conduct training as required throughout company business units to enhance understanding and awareness of risk.
+ **Reporting and Support**
+ Provide weekly leadership status updates.
+ Continue development of the OneTrust dashboard and reporting capabilities to highlight key program KPIs and KRIs.
+ Support program lead with all additional ongoing strategic projects to enhance program maturity.
**Qualifications:**
+ Bachelor's degree in a relevant field of study or commensurate professional experience
+ The candidate will have a minimum of 8 years of relevant Risk Management experience or similar IT function.
+ CTPRP, CISSP, CISM, CRISC
**Knowledge, Skills, and Abilities:**
+ Excellent oral and written communication, presentation and collaboration skills.
+ Strong organization skills with the ability to deal with multiple tasks and projects simultaneously.
+ Familiarity with NIST CSF, 800-30, 800-53, 800-171, 800-161
+ Experience working with legal to conduct contract language reviews.
+ Experience with GRC tools used to conduct TPRM due diligence assessments, preferably OneTrust.
+ Experience with VISO Trust.
+ Experience with Black Kite.
Physical Demands: Work primarily in a climate-controlled environment with minimal safety/health hazard potential.
Travel: Less than 25% with shipboard travel likely
Work Conditions: Work primarily in a climate-controlled environment with minimal safety/health hazard potential.
This position is classified as "in-office." As an in-office role, it requires employees to work from a designated Carnival office in South Florida Tuesday through Thursday each week. Employees may work from their homes on Mondays and Fridays. Candidates must be located in (or willing to relocate to) the Miami/Ft. Lauderdale area.
Offers to selected candidates will be made on a fair and equitable basis, taking into account specific job-related skills and experience.
At Carnival, your total rewards package is much more than your base salary. All non-sales roles participate in an annual cash bonus program, while sales roles have an incentive plan. Director and above roles may also be eligible to participate in Carnival's discretionary equity incentive plan. Plus, Carnival provides comprehensive and innovative benefits to meet your needs, including:
+ Health Benefits:
+ Cost-effective medical, dental and vision plans
+ Employee Assistance Program and other mental health resources
+ Additional programs include company paid term life insurance and disability coverage
+ Financial Benefits:
+ 401(k) plan that includes a company match
+ Employee Stock Purchase plan
+ Paid Time Off
+ Holidays - All full-time and part-time with benefits employees receive days off for 8 company-wide holidays, plus 2 additional floating holidays to be taken at the employee's discretion.
+ Vacation Time - All full-time employees at the manager and below level start with 14 days/year; director and above level start with 19 days/year. Part-time with benefits employees receive time off based on the number of hours they work, with a minimum of 84 hours/year. All employees gain additional vacation time with further tenure.
+ Sick Time - All full-time employees receive 80 hours of sick time each year. Part-time with benefits employees receive time off based on the number of hours they work, with a minimum of 60 hours each year.
+ Other Benefits
+ Complementary stand-by cruises, employee discounts on confirmed cruises, plus special rates for family and friends
+ Personal and professional learning and development resources including tuition reimbursement
+ On-site Fitness center at our Miami campus
#LI-TM1
#LI-Hybrid
#Corp
About Us
Carnival Corporation & plc is the world's largest leisure travel company, our mission to deliver unforgettable happiness to our guest through our diverse portfolio of leading cruise brands and island destinations, including Carnival Cruise Line, Holland America Line, Princess Cruises, and Seabourn in North America and Australia; P&O Cruises and Cunard Line in the United Kingdom; AIDA in Germany; Costa Cruises in Southern Europe.
Join us and embark on a career that offers not only the chance to grow professionally but also the opportunity to be part of a global community that makes a difference.
In addition to other duties/functions, this position requires full commitment and support for promoting ethical and compliant culture. More specifically, this position requires integrity, honesty, and respectful treatment of others, as well as a willingness to speak up when they see misconduct or have concerns.
Carnival Corporation & plc and Carnival Cruise Line is an equal employment opportunity/affirmative action employer. In this regard, it does not discriminate against any qualified individual on the basis of sex, race, color, national origin, religion, sexual orientation, age, marital status, mental, physical or sensory disability, or any other classification protected by applicable local, state, federal, and/or international law.
Third Party Risk Management Lead

Posted 15 days ago
Job Viewed
Job Description
WHAT IS THE OPPORTUNITY?
Third Party Risk Management (TPRM) Lead is responsible for providing Enterprise wide third party risk management services, including taking a lead role to define, implement, and maintain a risk framework, operating model, policies, procedures, governance and oversight programs for all lines of business and subsidiaries. CNB established the TPRM program as a second line function, enabling CNB to manage third party risk effectively and efficiently, relative to its size and complexity. The lead is responsible for ensuring the program meets regulatory guidance, aligns with CNB's parent company, and incorporate changes as necessary.
WHAT WILL YOU DO?
* In partnership with the TPRM Program Manager, develop a successful implementation plan consisting of: Assist with the development and execution of an TPRM risk framework, policies and procedures. Direct assessments on key controls and overall compliance with the TPRM program, including the timeliness, completeness, and accuracy of risk assessments. Provide risk-consulting serves to first line third party risk managers for complex arrangements. Develop risk analysis and reporting, including risk metrics, for dissemination to both first line of defense (technology) leadership, risk management committees, CNB's parent holding company, and CNB's regulators. Streamline processes for risk identification and assessment, control assessment, testing and issue management.
* Lead continuous improvement activities and initiatives for TPRM, working with stakeholders, subject matter experts, and analysis of exception reports to define issues, determine root cause, and determine appropriate changes.
* Identify and assess requirements for CNB's GRC system to increase automation, and process effectiveness and efficiency.
* Responsible for reviewing SSAE 18 reports for CNB's third parties and evaluate for completeness, appropriateness, and assess impact to CNB on findings and exceptions to support CNB's Sarbanes Oxley, FDICA, and SOC programs.
* Manage coordination of assignment of resources based on demand and capacity, and required subject matter expertise, including augmenting internal staff with external resources as necessary.
* Ensure appropriate escalate of issues to first line and senior management as required.
WHAT DO YOU NEED TO SUCCEED?
*Required Qualifications**
* Minimum of 7 years of third party risk management, assurance and / or oversight or relevant supplier or third party audit or compliance experience
* Minimum of 4 years of experience in risk and controls for information technology and cybersecurity, appropriately scoping assessments, providing credible challenges, and performing assurance testing.
* Minimum of 4 years working with a GRC system, incorporating continuous improvement for the system and process.
*Additional Qualifications*
* Comprehensive knowledge of third party and information technology risk management processes and methodologies
* Experience using third party risk management /Governance, Risk and Compliance (GRC) systems
* Experience assessing contracts, including master service agreements, statements of work, and license agreements.
* Experience assessing cloud servicing arrangements
* Knowledge of and experience in designing and operating governance, frameworks and processes to comply with vendor management / third party risk management related regulatory requirements, guidance and oversight (OCC 2013-29, Fed SR 13-19 or other relevant third party risk management / vendor management regulation applicable to the financial services industry)
* Currently hold or quickly obtain industry recognized third party risk management or vendor management certification
* Excellent oral and written communication skills; experience performing both detailed and executive-level documentation
* Advanced knowledge of Microsoft Office tools; specifically, Excel, PowerPoint and SharePoint
* Experience with reporting platforms such as Tableau, SQL scripts, and Microsoft SSRS desirable
*WHAT'S IN IT FOR YOU?*
*Compensation*Starting base salary: $111,408 - $189,738 per year. Exact compensation may vary based on skills, experience, and location. This job is eligible for bonus and/or commissions.
*Benefits and Perks*
At City National, we strive to be the best at whatever we do, including the benefits and perks we offer our colleagues including:
* Comprehensive healthcare coverage, including Medical, Dental and Vision plans, available the first of the month following start date
* Generous 401(k) company matching contribution
* Career Development through Tuition Reimbursement and other internal upskilling and training resources
* Valued Time Away benefits including vacation, sick and volunteer time
* Specialized health and family planning benefits including fertility benefits, and cancer, diabetes and musculoskeletal support programs
* Career Mobility support from a dedicated recruitment team
* Colleague Resource Groups to support networking and community engagement
Get a more detailed look at our US
Since day one we've always gone further than the competition to help our clients, colleagues and communities flourish. City National Bank was founded in 1954 by entrepreneurs for entrepreneurs and that legacy of integrity, community and unparalleled client relationships continues today. City National is a subsidiary of Royal Bank of Canada, one of North America's leading diversified financial services companies. To learn more about City National and our dynamic company culture, visit us at AND EQUAL OPPORTUNITY EMPLOYMENT*
City National Bank fosters an inclusive environment where all forms of diversity are valued and leveraged to make us a better company and employer. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, veteran status or other basis protected by law.
It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
*Represents basic qualifications for the position. To be considered for this position, you must at least meet the required qualifications. careers.cnb.com accepts applications on an ongoing basis, until filled.
Be The First To Know
About the latest Third parties Jobs in United States !
Operational Risk Management Department-Third Party Risk Management AVP/Associate
Posted today
Job Viewed
Job Description
Established in 1912, Bank of China is one of the largest banks in the world, with over $3 trillion in assets and a footprint that spans more than 60 countries and regions. Our long-term outlook, institutional weight and global breadth provide our clients with a stable and reliable financial partner, whether in Corporate or Personal Banking or our Trade Services, Commodities, Financial Institutions and Global Markets lines of business.
Overview
The incumbent is responsible for all aspects of and will provide oversight, guidance and challenge to the Bank's Third Party Risk Management (TPRM). S/he will establish and enhance the Third Party Risk Framework, draft and maintain TPRM policies and standards, develop and execute TPRM annual work plans, and conduct periodic risk assessments. S/he will also assess, monitor and track TPRM lifecycle activities, ensure documentation completeness, and prepare aggregated TPRM reports on risk data and analysis.
Responsibilities
Include but are not limited to
Third Party Risk Management Framework
- Establish and enhance the Third Party Risk Framework, ensure it consists of appropriate components to effectively manage third party risks
- Update third party risk management policies and procedures
- Develop and execute a third party risk annual work plan to review and challenge risk identification, assessment, control evaluation and testing activities
- Utilize a consistent risk rating methodology for controls that aligns with the Operational Risk Framework
- Conduct periodic risk assessment of third party risks
- Assess, monitor and track third party risk management lifecycle activities as second line of defense
- Provide third party risk management guidance to First Line Units ("FLUs")
- Ensure the completeness of the central documentations of the bank wide third party population
- Prepare aggregated third party risk report
- Keep abreast of current industry tools, trends, and regulatory requirements
- Work with other SMEs under the third party risk management framework to ensure the third party risk management activities are efficient
- Ensure third party risk management system is implemented and all updates are installed timely
- Provide timely training of system upgrades or updates to all system users
- Assist with new product management risk assessment process
- Assist with RACA quarterly review in the expertise of third party risk management
- Complete required BSA/AML, and other compliance trainings as provided
- Beware of BSA/AML issues, provide risk warnings to First Line Units and internal risk management departments when noticed
- Bachelor's degree is required, and an advanced degree is preferred
- Minimum 5 years of work experience in financial service industry is required for AVP level
- Minimum 5 years of work experience in risk management and minimum 2 years of third party risk management experience are required for AVP level; Minimum 1 year of work experience in third party risk management is required for Associate level
- Knowledge of operational risk management and assessment, regulatory and compliance, general IT risk/IT operation as well as business lines and workflow in financial/banking industry is required
- Certified Third Party Risk Professional or Certified Regulatory Vendor Program Manager is preferred but not required
Pay Range
Actual salary is commensurate with candidate's relevant years of experience, skillset, education and other qualifications.
USD $2,000.00 - USD 150,000.00 /Yr.
Risk Management - Liquidity Risk Management - Vice President

Posted 10 days ago
Job Viewed
Job Description
As a Vice President within the Risk Management team, you will collaborate with various business units, corporate treasury, and other risk divisions to gather, comprehend, analyze, and infer potential liquidity risk implications within the firm's operations. You will be responsible for continuously evaluating emerging risks to the firm's liquidity by monitoring the evolving short-term funding markets and presenting your findings to senior management.
**Job Responsibilities**
+ Identify, assess, and monitor liquidity risks related to the firm's activities
+ Provide effective independent risk challenge and oversight on business units and liquidity management teams
+ Undertake analysis of balance sheet changes to assess liquidity risk impacts and provide risk view on day-to-day and longer-term changes in internal liquidity stress scenarios and regulatory prescribed liquidity scenarios (liquidity coverage ratio, net stable funding ratio)
+ Review liquidity forecasts to assess reasonableness and adequacy and to highlight issues and areas of improvement to Treasury and senior management
+ Monitor balance sheet through limits and indicators that are designed to control and monitor liquidity risk
+ Develop and present material for risk committees.
+ Fulfil regulatory requests pertaining to liquidity risk for independent risk management.
+ Articulate key evolving risks to senior management in easy to understand manner.
+ Be involved in second line review and challenge of requirements such as change management, user testing, data and controls review and other matters that impact liquidity risk for product coverage area
**Required qualifications, capabilities, and skills**
+ Minimum 7 years of experience in banking industry across treasury, liquidity risk, market risk and/or trading of fixed income products
+ Understanding of liquidity risk concepts and requirements. Understanding of balance sheet analysis for global banks across traditional banking and complex non-banking products
+ Understanding of the governance and controls surrounding risk monitoring including, stress testing, limits and indicators, and ongoing monitoring
+ Strong grasp of basic financial theory and accounting principles
+ Working knowledge of Excel and PowerPoint
+ Effective verbal and written communication skills and strong attention to detail
+ Bachelor's degree in Finance, Economics, Mathematics or related discipline required
**Preferred qualifications, capabilities, and skills**
+ Experience in Liquidity Risk management with a wide range of experience with quantitative, financial and risk management techniques & systems preferred
+ Experience with stress testing preferred
+ Deep understanding of product knowledge and how it impacts liquidity risks (e.g. deposits, prime brokerage, secured funding, derivatives etc) is a strong plus
JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.
We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.
JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans
**Base Pay/Salary**
NewYork,NY $114,000.00 - $222,000.00 / year
Third-Party Risk Management (TPRM) Specialists
Posted today
Job Viewed
Job Description
- Providing superior service delivery & support to the LOB clients and Corporate sector clients in the region ie
- Primary TPRM Lead in any Regulatory matters, including exams, meetings, in the region
- Develop and manage a third party risk management monitoring and reporting process that tracks third party risks
- Oversee and assist in the technical build of the tool during Q4'15
- Work directly with IBP and the TPMO Office team to define issues and information needs and translate into implementable technical enhancement to the tool
- Deliver reporting for all four disciplines VRM, CRM, Contract Management (CM) and Vendor Management (VM)
- Employ the analytics features to compile and synthesize data to make grounded recommendations to assess and protect against risk exposure to guide decision making to advise the business with respect to VM and CM
- Champion and execute updates to existing reporting and technology framework to reduce risk and enhance efficiency
- Oversee and make recommendations about additional add-on features
- Oversee and liaise with broader CS technology to ensure that all feeds and updates between and amongst systems are fully optimized (MySourcing, MVC, etc)