Our Purpose
We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team - one that makes better decisions, drives innovation and delivers better business results.
Want more jobs like this?
Get jobs in Warsaw, Poland delivered to your inbox every week.
Title and Summary
Manager, Third Party Risk Management
Job Description Summary
Overview
The Third Party Risk Manager is a key part of the Third Party Risk Management (TPRM) Center of Excellence team within the Global Supply Chain organization. The manager is responsible for leading all aspects of the Center of Excellence for the Warsaw team including staff hiring, performance management, onboarding and training, quality reviews, and engagement with related business partners. The manager will also perform Risk Assessments of Suppliers and other Third Parties to ensure compliance to Mastercard's requirements which includes assessing controls, calculating the impact of potential adverse events, and identification of risk issues. Additionally, this role will have significant involvement in TPRM's response to regulatory inquiries as well as management and tracking of supplier's relevant to local regulation.
• Have you ever performed vendor/supplier risk assessments?
• Have you ever lead and developed a team?
• Do you have a passion for risk management?
Role
Primary responsibilities include overall team leadership and execution of risk assessments.
• Lead a team of Senior Risk Analysts by hiring qualified staff members, managing performance expectations, training less experienced individuals, and ensuring work quality meets program standards.
• Collaborate with program partners across the Europe region regarding TPRM's mission, expectations, and ability to consult on third party risk.
• Communicate all aspects of the TPRM program to regulators during inquiry sessions.
• Engage with multiple business owners of third parties to ensure compliance with required assessments, procedures and cadence per the Mastercard TPRM Process Framework; assessment administration for both new and existing engagements.
• Prepare and facilitate assessments within identified system and in alignment to the TPRM Process framework; including system administration and system/process training & ongoing communication.
• Evaluate completed assessment and supporting materials to ensure completeness and Mastercard's expectations are being met; including the identification of control gaps, weaknesses and vulnerabilities.
• Identify, document and communicate opportunities for improving program areas
• Other duties as requested by COE management.
All About You
Experience:
• Prior experience managing or leading a team of professionals.
• Thorough knowledge and experience in the TPRM discipline; including identification, segmentation, analysis, evaluation, treatment and reporting.
• Knowledge of laws and regulations related to supplier risk management and experience interacting with and responding to regulatory inquiries.
• Proven experience in evaluating a Supplier or other Third Party's security, privacy, compliance, financials and operating/business controls to minimize likelihood of a risk event occurring and or impact of an event to protect Mastercard's assets, data, brand and reputation.
Education and Skills:
• Bachelor's degree or equivalent work experience required
• Preference given to candidates with CISSP, CISA, QSA, CRISC and ISA certifications.
• Professional comportment and excellent communication and presentation skills applicable to all levels of the organization
• Excellent organizational skills and a demonstrated ability in multi-tasking in a fast-paced environment.
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
- Abide by Mastercard's security policies and practices;
- Ensure the confidentiality and integrity of the information being accessed;
- Report any suspected information security violation or breach, and
- Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.