Sr Principal, Solutions Consultant -3rd Party Resiliency

Job description

Tasks

• Resiliency Solution Design
• Development and implementation of third-party resilience frameworks, including business continuity, disaster recovery and incident response planning
• Evaluation and design of risk management processes to improve the resilience of third-party providers
• Collaborate with cross-functional teams to support business strategies and ensure alignment with organizational goals and industry standards
• Conducting risk and resilience assessments of third-party vendors and partners, focusing on operational, technical and strategic risks
• Evaluate third-party disaster recovery and business continuity plans to ensure they meet the organization's resilience standards
• Identifying problems, risks and control gaps and taking appropriate risk mitigation measures
• Develop and maintain third-party vendor monitoring solutions to enable ongoing assessment of vendor performance and resilience metrics
• Creation of frameworks for regular tests, such as tabletop exercises, failure scenario simulations and crisis management exercises
• Work with procurement, vendor management and legal teams to incorporate resilience requirements into contracts and terms of reference
• Collaborate with IT, compliance and cybersecurity teams to address third-party risks holistically
• Developing strong working relationships with stakeholders across all business units and control functions
• Shaping the third-party strategy to ensure it is aligned with the overall business strategy
• Ensure that third-party resilience practices comply with relevant laws, regulations and industry standards (e.g. FFIEC, NIST, NYDFS, NCUA, OCC)

Requirements

• Bachelor's degree in information technology, risk management, business administration or a related field (Master's degree preferred)
• 5+ years of experience in business continuity, disaster recovery or third-party risk management
• 3+ years of experience in systems engineering with a focus on reliability, system operations and software development
• Strong background in resilience frameworks and risk assessment methods
• Experience with third-party risk management platforms (e.g. Archer, SecurityGRC)
• 5+ years of experience as a team leader or technical lead who can drive projects to completion
• Experience with on-prem and cloud solutions
• Excellent problem-solving skills and ability to master complex technical challenges
• Strong customer focus, excellent communication skills and ability to build lasting relationships
• Proven experience in the management of a monitoring team
• Technical expertise in IT and/or agile development environment

Preferred skills and certifications

• Certifications such as CBCP, MBCP, CBRS or CISA are strongly preferred
• Experience with industry standards and frameworks (e.g. NIST 800-53, NIST Cybersecurity Framework, COBIT, CISSP, FAIR)
• Strong analytical, communication and stakeholder management skills
• Familiarity with cloud-based architectures and SaaS solutions is a plus

We offer

• Salary range: $164,000 - $288,000 USD
• Comprehensive benefits package (health insurance, vision insurance, dental insurance) plus paid vacation, parental and nursing leave, short-term and long-term disability insurance, life and accident insurance and other voluntary and wellness benefits
• Discretionary bonus program, which may include an equity component