Sr Third Party Risk Analyst

Position Title: Sr Third Party Risk Analyst (P4)

 

Company Summary 

Crown Castle is the nation’s largest provider of shared communications infrastructure: towers, small cells and fiber. Whenever you make a call, track a workout or stream music and videos, we’re the ones providing the communications infrastructure that makes it possible to transform the way we live and work. From 5G and the internet of things to drones, autonomous vehicles and AR/VR, we enable the technologies that help people stay safe, connected and ready for the future. Crown Castle is publicly traded on the S&P 500, and one of the largest Real Estate Investment Trusts in the US.

 

Role 

The Sr Third Party Risk Analyst role serves as a third-Party Risk management professional for the Enterprise Security Team. This position, reporting to the Security Standards and Compliance Manager, will assist in the development and management of a third-Party Risk management program, manage contract reviews and customer due diligence requests, and monitor the risk associated with vendors Crown Castle engages with to perform business activities.

Responsibilities 

• Lead the creation of Crown Castle’s Third Party Risk program and will be responsible for the creation of all policies, standards, and procedures
• Assess third parties and services/products provided through the expenditure approval process and provide guidance around contracts, security, and process improvement opportunities, while leveraging all Third Party Risk processes
• Lead projects related to Third Party activities.
• Monitor third-party performance and develop metrics, reporting, and an overall security scorecard
• Oversee and track timely resolution of third-Party Risk management issues at enterprise level
• Develop and maintain a close partnership with Legal and Supply Chain teammates, ensuring they understand the third-Party Risk management program needs and processes
• Actively review Contracts, Service Agreements, SOWs, along with Legal and Supply Chain for vendors partnering with Crown Castle. Will review and determine if terms are appropriate for Crown Castle
• Assist Crown Castle Customer Facing teammates with both current and pre-sales customer questionnaires and security assessments.
• Attend training seminars, conferences, and trade shows to broaden knowledge of current and future cybersecurity and risk management issues and technologies

Education/Certifications

• Bachelor’s degree in IT, Management, or Leadership related fields

Experience/Minimum Requirements

• Eight (8) plus years of Third Party or Vendor Risk Management experience
• Five (5) plus years of Cyber Security, Risk management, Compliance, or IT audit experience
• Relevant Certifications: CRISC, CISA, or CTPRP (not required but a huge plus)
• Familiarity with industry frameworks, such as CIS, ISO and NIST
• Preferred experience with GRC tools – OneTrust, Archer, Audit Board

Expectations  

• Proven track record of developing and providing Corporate Security Service Level Agreements
• Solid relationship management and performance management skills
• Ability to motivate and direct staff members
• Strong understanding of the organization’s goals and objectives
• Exceptional written and oral communication skills
• Exceptional interpersonal skills, with a focus on listening and questioning skills
• Strong documentation skills
• Ability to conduct research into a wide range of computing issues as required
• Ability to present ideas in user-friendly language to non-technical staff and end users
• Keen attention to detail
• Ability to effectively prioritize and execute tasks in a high-pressure environment
• Exceptional customer service orientation
• Experience working in a team-oriented, collaborative environment

Organizational Relationship Reports to: Security Standards and Compliance Manager Title(s) of direct reports (if applicable):  N/A Working Conditions: This is a remote role with the expectation of on-site/in-person collaboration with teammates and stakeholders for moments that matter and may require up to 10% travel.

For New York, Colorado, California and Washington residents the hiring range offered for this position is $118,000- $139,000 annually. In addition to salary, employees are eligible for an annual bonus of up to 20% of annual salary and restricted stock. Employees (and their families) are eligible for medical, dental, vision, and basic life insurance. Employees are able to enroll in our company’s 401k plan. Employees will also receive 18 days of paid time off each year and 12 paid holidays throughout the calendar year.

We offer a total benefits package and professional growth development for teammates in any stage of their career. Along with caring for our teammates, we’re an active member in the communities where we live, work and do business. We have a responsibility to give back, which we do through our Connected by Good program. Giving back allows us to improve public spaces where people connect, promote public safety and advance access to education and technology.