Overview
On Site
Full Time
Skills
Vendor Development
Negotiations
Vendor Management
Security Operations
Threat Analysis
Reporting
KPI
Continuous Improvement
Vendor Relationships
Regulatory Compliance
Risk Management
Network Security
Software Security
Cloud Security
Data Security
Information Security
HIPAA
PCI DSS
Risk Assessment
Management
CISA
CISSP
CISM
Certified Public Accountant
SAP BASIS
Law
IT Service Management
Innovation
Collaboration
Recruiting
Insurance
Finance
Professional Development
Training
Leadership
CompTIA
Customer Service
Career Counseling
Oracle Application Express
Apex
Job Details
Job#: 2086498
Job Description:
Apex Systems is looking for a tenured Third Party Risk Management Lead to join one of their reputable Insurance Clients. If Interested, please apply!
Manage the organization's Cyber Third-Party Risk Management (TPRM) program, including the development and oversight of policies, standards, procedures, and governance.
Utilize the AuditBoard TPRM tool to lead comprehensive security assessments of potential and existing third-party vendors, evaluating their security posture, controls, and compliance with regulatory requirements.
Collaborate with the Supplier Risk Manager, business stakeholders, and contract attorneys to integrate security requirements into vendor selection, contract negotiation, and ongoing vendor management processes.
Work closely with the Security Operations team to incorporate threat intelligence, enhancing the security and integrity of third-party relationships.
Monitor and report on third-party security risks to the Supplier Risk Manager, executive leadership, and business managers, providing actionable insights and recommendations for risk mitigation.
Establish and track key performance indicators (KPIs) for third-party security performance, identifying trends and implementing continuous improvement initiatives.
Support the security training team in delivering training to stakeholders involved in third-party relationships.
Lead periodic reviews of critical vendor relationships, conducting risk reassessments and compliance validations.
Manage the Business Request for Information Program to respond to carrier and external questionnaires regarding the company's security and IT posture.
Desired Qualifications
Bachelor's degree preferred.
10+ years of progressive experience in information security roles, with at least 5 years focused specifically on third-party risk management.
Demonstrated experience in developing and implementing third-party assessment methodologies and frameworks.
Strong background in technical security domains, including network security, application security, cloud security, and data protection.
Extensive knowledge of information security frameworks (e.g., NIST CSF) and regulatory requirements (e.g., CFIUS, GDPR, HIPAA, PCI DSS, HITRUST, NYDFS).
Proven experience in risk assessment, analysis, and management methodologies.
Industry certifications such as CISA, CISSP, CISM, or CPA are preferred.
Experience with AuditBoard.
EEO Employer
Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at or .
Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico.
Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.
Job Description:
Apex Systems is looking for a tenured Third Party Risk Management Lead to join one of their reputable Insurance Clients. If Interested, please apply!
Manage the organization's Cyber Third-Party Risk Management (TPRM) program, including the development and oversight of policies, standards, procedures, and governance.
Utilize the AuditBoard TPRM tool to lead comprehensive security assessments of potential and existing third-party vendors, evaluating their security posture, controls, and compliance with regulatory requirements.
Collaborate with the Supplier Risk Manager, business stakeholders, and contract attorneys to integrate security requirements into vendor selection, contract negotiation, and ongoing vendor management processes.
Work closely with the Security Operations team to incorporate threat intelligence, enhancing the security and integrity of third-party relationships.
Monitor and report on third-party security risks to the Supplier Risk Manager, executive leadership, and business managers, providing actionable insights and recommendations for risk mitigation.
Establish and track key performance indicators (KPIs) for third-party security performance, identifying trends and implementing continuous improvement initiatives.
Support the security training team in delivering training to stakeholders involved in third-party relationships.
Lead periodic reviews of critical vendor relationships, conducting risk reassessments and compliance validations.
Manage the Business Request for Information Program to respond to carrier and external questionnaires regarding the company's security and IT posture.
Desired Qualifications
Bachelor's degree preferred.
10+ years of progressive experience in information security roles, with at least 5 years focused specifically on third-party risk management.
Demonstrated experience in developing and implementing third-party assessment methodologies and frameworks.
Strong background in technical security domains, including network security, application security, cloud security, and data protection.
Extensive knowledge of information security frameworks (e.g., NIST CSF) and regulatory requirements (e.g., CFIUS, GDPR, HIPAA, PCI DSS, HITRUST, NYDFS).
Proven experience in risk assessment, analysis, and management methodologies.
Industry certifications such as CISA, CISSP, CISM, or CPA are preferred.
Experience with AuditBoard.
EEO Employer
Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at or .
Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico.
Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.