Betmgm

posted about 2 months ago

Full-time - Mid Level
Remote

About the position

The Senior Cybersecurity Analyst in Vendor Assessment at BetMGM is responsible for identifying, quantifying, and mitigating risks associated with third-party vendor relationships. This role involves collaborating with the Cybersecurity Manager and the InfoSec team to ensure that vendor assessments are thorough and align with the organization's security standards. The analyst will leverage their expertise in cybersecurity to influence technology acquisition processes and maintain compliance with relevant regulations.

Responsibilities

  • Conduct vendor evaluations through thorough assessments of potential vendors to determine their suitability for partnership.
  • Conduct comprehensive security risk assessments of third-party vendors, evaluating their security controls, policies, standards, and infrastructure.
  • Analyze vendor capabilities, financial stability, reputation, and compliance with relevant regulations and standards.
  • Aid in the development and maintenance of comprehensive third-party risk management procedures, trackers, and documentation, aligned with industry best practices.
  • Collaborate with procurement teams to develop selection criteria and assist in vendor selection processes.
  • Help to establish and maintain key performance indicators (KPIs) and service level agreements (SLAs) for vendors.
  • Monitor vendor performance against established metrics and SLAs.
  • Identify areas for improvement and work with vendors to implement corrective actions.
  • Develop risk mitigation strategies and protocols in collaboration with internal stakeholders.
  • Conduct regular risk assessments and implement measures to minimize risk exposure.
  • Ensure that vendors comply with contractual agreements, regulatory requirements, and company policies.
  • Stay informed on relevant regulations and industry standards impacting vendor relationships.
  • Conduct audits and re-assessments to verify vendor compliance with established standards, prioritizing those with highly sensitive data.
  • Carry out application security vulnerability scanning and supply remediation options, where applicable.
  • Prepare comprehensive reports and presentations summarizing vendor assessments, performance evaluations, and risk analyses.
  • Provide insights and recommendations based on data-driven analysis to support decision-making processes.
  • Communicate findings and recommendations to relevant stakeholders, including senior management and cross-functional teams.
  • Contribute to Kanban boards and/or other tracking tools to increase visibility into assigned work and promote workload efficiencies.

Requirements

  • 5+ years of experience with third-party vendor security assessment methodologies and security monitoring tools.
  • Proven experience in vendor management, procurement, supply chain management, or related roles.
  • Proven experience in conducting risk assessments.
  • Strong analytical skills with the ability to interpret complex data and draw actionable insights.
  • Ability to articulate identified risks to management and key stakeholders in a clear, actionable manner.
  • Excellent communication and interpersonal skills, with the ability to collaborate effectively with internal and external stakeholders.
  • Detail-oriented mindset with a focus on accuracy and precision.
  • Ability to work independently, manage multiple priorities, and meet deadlines in a fast-paced environment.
  • Knowledge of compliance, conduct, and operational risk management frameworks and processes.
  • Expertise in common technology controls for industry best practices (e.g., from NIST, ISO, ISACA, GLI etc.) frameworks.
  • Ability to collaborate with high-performing teams and individuals throughout BetMGM and externally to accomplish common goals.
  • Bachelor's or advanced degree in technology or a related field or equivalent work experience.

Nice-to-haves

  • Relevant certifications (e.g., CSCP, CPIM, CISA) are a plus.

Benefits

  • Medical, Dental, Vision, Life Insurance
  • Commuter Benefits
  • Paid Time Off
  • Holidays
  • Employee Resource Groups
  • Performance-based bonus plan
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service