Overview
Skills
Job Details
Planning, Scheduling, and execution of ISO 27001:2013 Compliance assessments for physical and cloud (SaaS,IaaS,PaaS) solutions at contracted third party vendor locations
Ensure that Truist Financials' relationships with material high risk third-party vendors are well managed within agreed risk appetite and do not expose Truist Financial to undue risk
Perform audits to ensure that Third-Party Risk Management activities and actions are in accordance with all relevant policies and procedures as contained in the Group Instruction Manual (GSM & FIMs) and Regional Third-Party Risk Management Procedures
Annotate, track, and remediate open control findings in the Archer GRC platform. Utilize this application to track SLA's and develop metrics for the assessments
Train and mentor new Trust but Verify Assessors; administer and develop classes covering multiple ISO 27001 domains for assessment team members.
Currently studying for the ISACA CISA and CRISC Certification anticipated completion dates 12/2020 (CRISC) and 2/2021 (CISA)