Title and Summary

Manager, Third Party Risk Management

Job Description Summary

Overview
The Third Party Risk Manager is a key part of the Third Party Risk Management (TPRM) Center of Excellence team within the Global Supply Chain organization. The manager is responsible for leading all aspects of the Center of Excellence for the Warsaw team including staff hiring, performance management, onboarding and training, quality reviews, and engagement with related business partners. The manager will also perform Risk Assessments of Suppliers and other Third Parties to ensure compliance to Mastercard's requirements which includes assessing controls, calculating the impact of potential adverse events, and identification of risk issues. Additionally, this role will have significant involvement in TPRM's response to regulatory inquiries as well as management and tracking of supplier's relevant to local regulation.

• Have you ever performed vendor/supplier risk assessments?
• Have you ever lead and developed a team?
• Do you have a passion for risk management?

Role
Primary responsibilities include overall team leadership and execution of risk assessments.
• Lead a team of Senior Risk Analysts by hiring qualified staff members, managing performance expectations, training less experienced individuals, and ensuring work quality meets program standards.
• Collaborate with program partners across the Europe region regarding TPRM's mission, expectations, and ability to consult on third party risk.
• Communicate all aspects of the TPRM program to regulators during inquiry sessions.
• Engage with multiple business owners of third parties to ensure compliance with required assessments, procedures and cadence per the Mastercard TPRM Process Framework; assessment administration for both new and existing engagements.
• Prepare and facilitate assessments within identified system and in alignment to the TPRM Process framework; including system administration and system/process training & ongoing communication.
• Evaluate completed assessment and supporting materials to ensure completeness and Mastercard's expectations are being met; including the identification of control gaps, weaknesses and vulnerabilities.
• Identify, document and communicate opportunities for improving program areas
• Other duties as requested by COE management.

All About You
Experience:
• Prior experience managing or leading a team of professionals.
• Thorough knowledge and experience in the TPRM discipline; including identification, segmentation, analysis, evaluation, treatment and reporting.
• Knowledge of laws and regulations related to supplier risk management and experience interacting with and responding to regulatory inquiries.
• Proven experience in evaluating a Supplier or other Third Party's security, privacy, compliance, financials and operating/business controls to minimize likelihood of a risk event occurring and or impact of an event to protect Mastercard's assets, data, brand and reputation.

Education and Skills:
• Bachelor's degree or equivalent work experience required
• Preference given to candidates with CISSP, CISA, QSA, CRISC and ISA certifications.
• Professional comportment and excellent communication and presentation skills applicable to all levels of the organization
• Excellent organizational skills and a demonstrated ability in multi-tasking in a fast-paced environment.

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

• Abide by Mastercard's security policies and practices;
• Ensure the confidentiality and integrity of the information being accessed;
• Report any suspected information security violation or breach, and
• Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.