Lead - Risk and Compliance Analyst

As a candidate for the position at SystemsPlus in Pune with 8+ years of experience, your role will involve assisting with the implementation of leading security and governance practices to protect information assets and ensure compliance with regulatory requirements.

Key Responsibilities:

• Independently mature Carters IT 3rd Party Risk Management program
• Lead the implementation of the IT 3rd Party Risk Management program for CRI
• Partner with the Director of IT Risk and Compliance in selecting the 3rd Party Risk Management Framework
• Provide strong recommendations on vendor management to every LT member and their team
• Prepare and report IT 3rd Party Risk Management status and key metrics to Executive Management
• Analyze vendors to determine Carters Tier 1 through Tier 3 vendors and implement periodic reviews
• Assist the VP of Procurement in building the vendor management global program for Carters
• Review guidelines related to IT 3rd party risk management and ensure compliance with requirements
• Manage and upkeep of data maps process within One Trust for IT 3rd party vendor management
• Assist with other IT 3rd party vendor management compliance needs for Carters
• Execute IT security risk assessments against industry leading security controls frameworks
• Update metrics and analysis to track remediation progress and control maturity
• Evaluate safeguards protecting sensitive Company information
• Assist with the Cyber Security semiannual review process

Qualification Required:

• Experience implementing 3rd party risk management plans
• Critical thinking ability, technology risk assessment skills, documentation proficiency, and effective collaboration with cross-functional stakeholders
• Bachelors degree required, technical degree preferred
• Professional certification such as CISA, CISM, CGEIT, CRISC or similar
• 8+ years of experience in building and implementing IT 3rd party risk management programs

Please note that the company SystemsPlus is hiring for this role and interested candidates can drop their CV at hidden_email a candidate for the position at SystemsPlus in Pune with 8+ years of experience, your role will involve assisting with the implementation of leading security and governance practices to protect information assets and ensure compliance with regulatory requirements.

Key Responsibilities:

• Independently mature Carters IT 3rd Party Risk Management program
• Lead the implementation of the IT 3rd Party Risk Management program for CRI
• Partner with the Director of IT Risk and Compliance in selecting the 3rd Party Risk Management Framework
• Provide strong recommendations on vendor management to every LT member and their team
• Prepare and report IT 3rd Party Risk Management status and key metrics to Executive Management
• Analyze vendors to determine Carters Tier 1 through Tier 3 vendors and implement periodic reviews
• Assist the VP of Procurement in building the vendor management global program for Carters
• Review guidelines related to IT 3rd party risk management and ensure compliance with requirements
• Manage and upkeep of data maps process within One Trust for IT 3rd party vendor management
• Assist with other IT 3rd party vendor management compliance needs for Carters
• Execute IT security risk assessments against industry leading security controls frameworks
• Update metrics and analysis to track remediation progress and control maturity
• Evaluate safeguards protecting sensitive Company information
• Assist with the Cyber Security semiannual review process

Qualification Required:

• Experience implementing 3rd party risk management plans
• Critical thinking ability, technology risk assessment skills, documentation proficiency, and effective collaboration with cross-functional stakeholders
• Bachelors degree required, technical degree preferred
• Professional certification such as CISA, CISM, CGEIT, CRISC or similar
• 8+ years of experience in building and implementing IT 3rd party risk management programs

Please note that the company SystemsPlus is hiring for this role and interested candidates can drop their CV at hidden_email.