Third Party Risk Management Consultant (100% Remote)

Our customer is a large United States insurance company that is backed by more than 100 years of experience and provides insurance products and services for businesses and professionals in the United States., Canada and Europe. Headquartered in Chicago, IL, they have more than 20 US locations.

We are seeking a contract Third Party Risk Management Consultant to support our Customer's business needs. This role is 100% remote.

Responsibilities:

• Performs Third Party Risk assessments by evaluating Third Party questionnaire responses, performing control review/validation, and assessment documentation per established procedures and standards.
• In the course of executing assessments, actively project manages all assessment deadlines by coordinating execution with both the external Third Party and internal business partners, to include active status monitoring and follow-up with stakeholders
• Supports completion of Inherent Risk Questionnaires by internal business partners by providing insight and guidance to assist in completion.
• Performs QA of all submitted Inherent Risk Questionnaires and works with the business partner to ensure accuracy.
• Provides support to Third Parties completing Due Diligence Questionnaires by clarifying the intent behind questions and expected supporting evidence.
• Performs Quality Assurance review of assessments completed by other third-party risk assessors.
• Supports Third Party onboarding, ongoing monitoring, and Third Party off-boarding, answering any internal stakeholder questions related to ongoing assessments
• Supports TPRM performance reporting and issue escalation
• Identifies program, process, and technology configuration process improvements for implementation into the Third Party Risk Management program roadmap.
• May perform additional duties as assigned.

Skills and Qualifications:

• Bachelor’s degree or equivalent
• 3-5 years of experience in Information Security or Vendor/Third-Party Risk
• CISSP, CRISC, or CISA highly preferred
• Knowledge of industry security standards to include, but not limited to, NIST, ISO, and COBIT.
• Domain expertise in information security and business resiliency to include infrastructure security, access management, cloud security, and physical and environmental security controls.
• Detail-oriented with strong organizational skills and ability to project manage multiple assessments at once while maintaining Service Level Agreement timelines.
• Ability to work with both technical and non-technical internal business stakeholders.
• Effective verbal and written communication skills.
• Strong interpersonal skills with the ability to work with staff at all levels.
• Strong knowledge of Microsoft Office Suite and other business-related software systems, including processing systems and applications.

We offer a competitive salary range for this position. Most candidates who join our team are hired at the median of this range, ensuring fair and equitable compensation based on experience and qualifications.

Contractor benefits are available through our 3rd Party Employer of Record (Available upon completion of waiting period for eligible engagements)

Benefits include: Medical, Dental, Vision, 401k.

An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.