Third Party Security Risk Management Manager

Carnival Cruise Lines - Miami, FL

posted 5 days ago

Full-time
Remote - Miami, FL
Scenic and Sightseeing Transportation

About the position

The Third-Party Security Risk Manager is responsible for managing and overseeing the Third Party Security Risk Management (TPSRM) program at Carnival. This role focuses on identifying, evaluating, monitoring, and managing information security risks associated with third-party business partners that access Carnival's data. The position requires strong process management and communication skills, as well as a sound knowledge of the industry and TPRM experience to assist leadership with strategic efforts and program enhancements.

Responsibilities

  • Manage the TPSRM program to identify, evaluate, and manage risks associated with third parties processing or accessing personal and/or confidential data.
  • Facilitate TPSRM due-diligence processes across business units and drive stakeholder participation in assessments.
  • Manage vendor relationships and oversee the vendor assessment process using the RiskRecon platform.
  • Assess procedures and controls to ensure compliance with company and industry standards.
  • Develop dashboard and reporting capabilities for the TPSRM program and provide leadership reporting as required.
  • Conduct training to enhance TPRM awareness and compliance across business units.
  • Support the program lead with ongoing strategic projects to enhance program maturity.

Requirements

  • Bachelor's degree in a Cybersecurity related field.
  • 5 years of professional experience in a related field.
  • Excellent oral and written communication, presentation, and collaboration skills.
  • Strong organizational skills with the ability to manage multiple tasks and projects simultaneously.
  • Experience working with legal teams to conduct contract language reviews.
  • Experience with GRC tools for TPRM due diligence assessments, preferably OneTrust.
  • Proficiency in Microsoft Office Suite, including Teams, SharePoint, and Office.

Nice-to-haves

  • CTPRP, CISSP, CISM, CRISC certifications.
  • Master's degree in Cybersecurity.
  • Strong understanding of key security frameworks such as NIST CSF, PCI-DSS, SOX, ISO.

Benefits

  • Flexible work schedule with remote work options on Mondays and Fridays.
  • In-office work environment from Tuesday to Thursday in South Florida.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service