- Guide and advise other teams on the responsibilities of implementing Tricentis' security controls, policies, and processes across our products and corporate environments
- Build positive relationships with partner teams in Marketing, Legal, Sales, Customer Success, HR, and other teams to continuously improve our internal security culture and external awareness of Tricentis' security program
- Help create metrics to demonstrate the efficiency and effectiveness of our Security risk program and to inform continuous program improvements
- Evolve our risk management practices to be more transparent, highly efficient, easy for stakeholders to engage with, and centered around objective evidence and data
- Build data pipelines and metrics (KPIs, KRIs, KCIs) that provide real-time insight into our risk posture
- Develop, streamline, automate, and integrate security review processes (threat modeling, secure design reviews, etc.) and risk management processes (identification assessment analysis reporting)
- Empower technical teams to efficiently self-serve security review processes, such as threat modeling
- Identify and assess risk scenarios using qualitative and quantitative methods
- Co-create risk mitigation and remediation plans with InfoSec and partner team subject matter experts
- Senior level experience typically gained in 6-8 years working in Security Risk and Third Party Risk
- Experience with risk assessments and advisory functions
- Experience with risk rating methodologies
- Experience recommending mitigating controls and driving risk remediation
- Experience reporting on risks and program operations to management
- Expert knowledge of security risk management practices (inc. 3rd party).
- Ability to operate various security risk management processes & tooling
- Solid understanding of security risk and control frameworks such as ISO 27001, ISO 27701,NIST SP 800-53, and NIST SP 800-30
- Solid understanding of cloud security architectures, technologies, and security controls
- Required Education / Experience: 6+ years' experience of related work with management experience, specifically building and running risk and third party risk programs for technology companies
- Bachelors' degree in Business, Computer Science, or related field
- Occasional travel required
- Required Certifications / Experience:
- ISO27001 (supporting certification efforts)
- SOC2 (supporting certification efforts)
- Secure Controls Framework (mapping and execution)
- Information security certification or risk management certifications preferred (CISA, CISM, CRISC, CISSP)
- Experience building metrics using business intelligence, data analytics, or dashboarding tools (PowerBI)
- Preferred Certifications / Experience:
- Experience using and administering various audit and GRC-focused technology platforms
- Experience leading enterprise risk management functions
- Demonstrate Self-Awareness: Own your strengths and limitations.
- Finish What We Start: Do what we say we are going to do.
- Move Fast: Create momentum and efficiency.
- Run Towards Change: Challenge the status quo.
- Serve Our Customers & Communities: Create a positive experience with each interaction.
- Solve Problems Together: We win or lose as one team.
- Think Big & Believe: Set extraordinary goals and believe you can achieve them.
- Market conform salary + success-oriented bonus
- Supportive and engaged leadership team
- 401(k) plan, full benefits package available
- Company paid Disability and Life Insurance
- Hybrid work environment
- We're a global company Potential to visit one of our many offices around the world including in Austria, Australia, Czech Republic, France, Germany, India, Israel, Netherlands, Philippines, Singapore, Switzerland, Poland, United States, and the UK
-
Manulife Insurance Malaysia Boston, United StatesManager, Operational Risk Management, Private Markets page is loaded · Manager, Operational Risk Management, Private Markets · Postuler · locations · Boston, Massachusetts · Toronto, Ontario · New York, New York · time type · Temps plein · posted on · Publié il y a 6 jo ...
-
Risk Manager
2 weeks ago
Shawmut Boston, United StatesOverview: · Since our founding in 1982, w · ere proud that the culture weve built as a · 100% employee-owned · company · as we have been · recognized with over 70 Best Place to Work awards including Best Workplace by Fortune Magazine three years in a row, Fortune Best Workpl ...
-
Risk Manager
6 days ago
Shawmut Design and Construction Boston, United StatesOverview · Since our founding in 1982, we're proud that the culture we've built as a 100% employee-owned company as we have been recognized with over 70 Best Place to Work awards-including Best Workplace by Fortune Magazine three years in a row, Fortune Best Workplace for Women, ...
-
Risk Manager
2 weeks ago
Brigham and Women's Faulkner Hospital Boston, United StatesThe Risk Manager supports the overall management of potential risks and liabilities within Brigham & Women's Faulkner Hospital (BWFH) and promotes patient safety. This role works closely with hospital staff to assess potential risks from several sources - including concerns regar ...
-
Manulife Insurance Malaysia Boston, United StatesSenior Risk Manager, Information Risk Management page is loaded · Senior Risk Manager, Information Risk Management · Apply · locations · Toronto, Ontario · Boston, Massachusetts · time type · Full time · posted on · Posted 7 Days Ago · job requisition id · JR · We are ...
-
Operation Risk Manager
3 weeks ago
QuantumBricks Boston, United StatesJob Title: Operations Risk Manager · Loc: NYC,NY / Boston,MA / Wes Conshohocken,PA (Hybrid) · Exp:4+ Yrs · Job Description · This a Hybrid Job. Hired contractor to work from office for three day's a week. · Candidate can work from NYC / Boston / West Conshohocken · Genpact ...
-
Senior Risk Manager
22 hours ago
Boston Consulting Group Boston, United StatesWHAT YOU'LL DO · Scroll down to find an indepth overview of this job, and what is expected of candidates Make an application by clicking on the Apply button. · The Enterprise Risk Management (ERM) function is dedicated to developing and implementing strategy for identifying and ...
-
Credit Risk Manager
2 weeks ago
State Street Corporation Boston, United StatesWhat you will be responsible for · As · Credit Risk Manager (Enterprise Programs) · you will: · Act as the centralized primary representative for Credit Risk in the ongoing model ownership responsibilities of all Credit Risk Models associated with Basel, CECL, CCAR and the int ...
-
Director of Risk Management
3 weeks ago
Virtus Healthcare Staffing, LLC Boston, United StatesTrusted Staffe Seeks Director of Risk Management for Level I Trauma Center · Trusted Staffe is partnering with a Level I trauma center to find a qualified and experienced Director of Risk Management. This is an exceptional opportunity for a leader in patient safety to oversee all ...
-
Senior Risk Manager
1 week ago
The Boston Consulting Group Inc Boston, United StatesThe Enterprise Risk Management (ERM) function is dedicated to developing and implementing strategy for identifying and managing significant risk exposures at BCG. The function aligns itself with the internal staff at BCG where each office, internal function, Managing Director and ...
-
Senior Risk Manager
1 hour ago
Tufts Medical Center Boston, United StatesJob Description · We're saving lives, building careers, and reimagining healthcare. We can't wait to grow alongside you. · Job Profile Summary · This role focuses on ensuring the organization's business activities are conducted ethically and in compliance with relevant regu ...
-
Senior Analyst, Risk Management
3 weeks ago
Verdantix Boston, United StatesWho we are: · Verdantix are an award-winning independent research, advisory and events firm; that acts as an essential thought-leader for world-enhancing innovation through our expertise in digital strategies for Sustainability, Real Estate and Built Environment, ESG, Operational ...
-
Risk Manager
3 weeks ago
Medasource Boston, United StatesPosition: Risk Manager · Location: Boston, MA - hybrid (onsite ~once per month) · Duration: 6-Month contract · The information below covers the role requirements, expected candidate experience, and accompanying qualifications. · Job Description: · The Risk Manager is respons ...
-
MANAGER, CUSTOMER EXPERIENCE RISK MANAGEMENT
6 days ago
BankInfoSecurity Boston, United StatesFull-time MANAGER, CUSTOMER EXPERIENCE RISK MANAGEMENT - DraftKings - Boston, MA Boston, MA July 8, 2021 · Serves as a senior compliance risk officer for Independent Compliance Risk Management (ICRM)s Testing team responsible for assessing compliance risks and controls implement ...
-
Quantitative Investment Risk Management
6 days ago
Selby Jennings Boston, United StatesA large international asset management firm in Boston is looking to expand their Investment Risk team. The firm has ~$1 trillion in AUM and are one of the biggest asset managers worldwide by market share. They cover all asset classes with a focus on ESG products and provide speci ...
-
Regulatory Risk Managment Specialist
3 days ago
Northern Trust Boston, United StatesAbout Northern Trust: · Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889. · Northern Trust is proud to provide innovative financial services and guidance to the world's most succe ...
-
Credit Risk Controls Manager
1 week ago
Northeast Bancorp Boston, United StatesNortheast Bank is a full-service community bank and a national commercial real estate lender with offices in Maine, Massachusetts, New York, and California. We are looking for motivated and talented individuals who want to make an impact in a growing company that cares about its ...
-
Program Manager, Safety/Risk
1 week ago
Partners Healthcare System Boston, United StatesReporting to the Senior Manager, Patient Safety and Risk Management, the Program Manager for Patient Safety will work with quality and safety leaders throughout Brigham & Women's Faulkner Hospital (BWFH) to provide program management, and analytical/decision-making support for BW ...
-
Manulife and John Hancock Boston, United StatesWe are a leading financial services provider committed to making decisions easier and lives better for our customers and colleagues around the world. From our environmental initiatives to our community investments, we lead with values throughout our business. To help us stand out ...
-
Sr. Associate, Operational Risk Management
12 hours ago
Santander Holdings USA Inc Boston, United StatesSr. Associate, Operational Risk Management – Payment System Risk · Boston, United States of America · The Sr. Associate, Operational Risk Management will be a key member of our Payment System Risk team, responsible for identifying, assessing, and mitigating risks associated wit ...
Senior Security Risk Manager - Boston, United States - Tricentis
3 weeks ago
Description
The OpportunityOur GRC team within Information Security plays a crucial role in supporting our mission.
We ensure we meet our duty of care to our customers, employees, and partners by creating effective governance for upholding internal security policies, distributing foundational security expertise across every department to create a strong security culture, and bolstering customer and community trust by providing accessible and transparent information about our internal security program.
This role engages regularly with other cross functional teams such as Legal, IT, HR, Sales, Finance and other executive teams.
We're looking for a Senior Security Risk Manager to help advance our security risk and third party risk programs, helping us operationalize our risk management program alongside our third party risk program by implementing and managing companywide risk assessments, managing the risk register, and operationalizing a risk methodology that works across the enterprise.
Security and third party risk are cross-cutting focus areas that impact all parts of the business, and this manager will be responsible for not only maintaining and fleshing out the existing program, but also seeking out areas in which the program should advance and mature.
As Tricentis continues to grow, there are great opportunities for career growth.Your profile
Are you looking for a new opportunity to grow your career in information security, while being hands-on, applying your compliance & governance skills to our rapidly maturing company-wide security governance programs? Do you want to have a direct impact on Tricentis' risk management program?
If you've been answering "yes" to these questions, then you might be the person we're looking for Keep reading below to learn more about this unique opportunity to drive impact on a security team at a security company.
What You'll Do:
Additional Qualifications:
Why You'll Love Working at Tricentis:
Tricentis Core Values:
Knowing what we need to achieve and how to achieve it is important.
Tricentis core values define our ways of working and the behaviors we model that create an enjoyable and successful Tricentis life.
Additional pluses:
Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran.