Truist Jobs

The position is described below. If you want to apply, click the Apply Now button at the top or bottom of this page. After you click Apply Now and complete your application, you'll be invited to create a profile, which will let you see your application status and any communications. If you already have a profile with us, you can log in to check status.

Need Help? (https://www.brainshark.com/bbandt/careers-site-faq)

If you have a disability and need assistance with the application, you can request a reasonable accommodation. Send an email to Accessibility (careers@truist.com?subject=Accommodation%20request)

(accommodation requests only; other inquiries won't receive a response).

Regular or Temporary:

Regular

Language Fluency: English (Required)

Work Shift:

1st shift (United States of America)

Please review the following job description:

* Hybrid Position *

Lead and direct all assessment, onsite or remote, activities in support of the Supplier Technology Risk Assessment program. This program is performing risk and control assessments on third-party suppliers as it relates to the Technology Risk and Cybersecurity.

ESSENTIAL DUTIES AND RESPONSIBILITIES

Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time.

1. Provide leadership for the onsite and remote technology assessment teams in the identification, assessment, control, and reporting of technology risk associated with the use of third parties for delivery of products/services to Truist

2. Provides direction to the assessment team in regards to managing the risk assessment work queue, including assessor assignments, assessment prioritization, cycle time and final approval of all completed assessments.

3. Represents Enterprise Technology’s Technology Supplier Management Office (TSMO) by cultivating partnerships with strategic business partners including Third Party Risk Management (TPRM), Tech Risk, Business Unit Service Managers, Risk Domain SMEs and Sourcing for all aspects regarding the STAT Risk Assessment program.

4. Serves as the primary consultant regarding supplier escalations as it pertains to the Technology Risk.

5. Provides direction, coaching, and mentoring for assigned professional risk management assessment staff regarding performance evaluation, training and career development.

6. Monitor domain and developing technologies/use cases to highlight emerging risks

7. Leads program enhancement initiatives to ensure the assessment methodology is effectively and accurately identifying Supplier Technology Risks as well as ensuring alignment with TPRM direction.

8. Ability to travel as required, occasionally overnight

QUALIFICATIONS

Required Qualifications:

The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

1. Bachelor’s degree and six to eight years of experience in systems engineering or administration or an equivalent combination of education and work experience

2. Deep specialized and/or broad functional knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security

3. Previous experience in leading complex IT projects

Preferred Qualifications:

1. Bachelor’s degree in Business, Computer Science, Cybersecurity or related disciplines

2. 10+ years of IT Risk Management, Cybersecurity, Technical Operations or IT Auditing experience

3. 10+ years of experience or an equivalent combination of education and work experience.

4. 5+ years of experience leading a team of professional risk management practitioners

5. Master’s degree or other advanced degree in disciplines mentioned above.

6. Proven experience leading a team of professionals

7. Advanced knowledge of regulatory requirements (GLBA, HIPAA, SOX), industry standards (PCI) and IT control frameworks (COBIT, ITIL, ISO, NIST)

8. One or more professional certifications such as CISSP, CRISC, CISM, CISA or CRP

9. Experience with GRC program tools such as Archer and Know Your Third Party (KY3P).

10. Strong skill sets in the following: team leadership and interpersonal relationships, analytical and problem-solving, verbal and written communication, process improvement, and project management.

11. Ability to communicate Technology risk concepts to a broad range of technical and non-technical teammates including Senior Management.

12. Demonstrated proficiency in basic computer applications such as Microsoft Office software products.

13. Previous experience as a Supplier Manager, or equivalent experience/knowledge of the third-party Management program and best practices

14. Certification in Lean Six Sigma or similar process improvement, facilitation, and project management methodologies.

15. Banking or financial services experience.

General Description of Available Benefits for Eligible Employees of Truist Financial Corporation: All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits, though eligibility for specific benefits may be determined by the division of Truist offering the position. Truist offers medical, dental, vision, life insurance, disability, accidental death and dismemberment, tax-preferred savings accounts, and a 401k plan to teammates. Teammates also receive no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status) during their first year of employment, along with 10 sick days (also prorated), and paid holidays. For more details on Truist’s generous benefit plans, please visit our Benefits site (https://benefits.truist.com/)

. Depending on the position and division, this job may also be eligible for Truist’s defined benefit pension plan, restricted stock units, and/or a deferred compensation plan. As you advance through the hiring process, you will also learn more about the specific benefits available for any non-temporary position for which you apply, based on full-time or part-time status, position, and division of work.

Truist supports a diverse workforce and is an Equal Opportunity Employer that does not discriminate against individuals on the basis of race, gender, color, religion, citizenship or national origin, age, sexual orientation, gender identity, disability, veteran status or other classification protected by law. Truist is a Drug Free Workplace.

EEO is the Law (https://www.eeoc.gov/sites/default/files/2022-10/EEOC_KnowYourRights_screen_reader_10_20.pdf)

Pay Transparency Nondiscrimination Provision (https://www.dol.gov/sites/dolgov/files/OFCCP/pdf/pay-transp_%20English_formattedESQA508c.pdf)

E-Verify (https://e-verify.uscis.gov/web/media/resourcesContents/E-Verify_Participation_Poster_ES.pdf)