ROLE VALUE PROPOSITION: 

The IT TPRM Senior Analyst role will be responsible for the coordination of activities associated with the Global IT Third Party Risk Management Program within MetLife’s IT Risk and Security Organization.

KEY RESPONSIBILITIES: __

• Conduct vendor risk assessments over third party vendors, including but not limited to: determining the scope of the service provided by interacting with MetLife Senior Management; administering risk assessments directly to vendors using our online tool; examining responses to determine the extent of risk the relationship represents to MetLife; offering recommendations to MetLife Management on how to respond to any risks; and generating formal findings.
• Assess and respond to risk findings, including pursuing action plans to completion and negotiating due dates with vendors.
• Perform security assessments of systems, applications, data centers, and service providers using an established framework and tools to evaluate vulnerabilities. Research new and developing technologies and standards to help contribute to the continuous improvement of the risk assessment process.
• Act as a subject matter expert in understanding why certain risks are a threat to the company are and how compensating or mitigating processes affect that risk.
• Provide guidance on IT Security Requirements during Contract negotiation discussions.

ESSENTIAL BUSINESS EXPERIENCE AND TECHNICAL SKILLS: __

• 5+ years of IT general experience and 2+ years of IT Security Assessment and/or IT Audit experience to include reading and interpreting the results of audit reports (SSAE16, PCI ROC, etc.), security assessments (penetration tests, vulnerability scans, etc.), and continuity tests (Disaster Recovery, Business Continuity, Security Incident, etc.) Understanding and knowledge of information security standards and laws (e.g., ISO 27001/27002, NIST, FFIEC, etc.), and commonly used concepts, practices and procedures within the information security and privacy field.
• Bachelor’s degree in Computer Science, MIS, Information Systems, or related discipline.
• Excellent communication skills and be able to write, speak and present to all levels of management.
• Strong organizational ethic to manage a large volume of competing tasks effectively.
• Direct experience developing, implementing, and improving technology controls in a corporate environment.
• Experience using ServiceNow, Archer, or other Governance, Risk, and Compliance (GRC) tools
• Professional certification: such as CISA, CRISC, or CISSP Certifications preferred.

BUSINESS CATEGORY

IT Risk and Security - Information Security

NUMBER OF OPENINGS

1

AT METLIFE, WE’RE LEADING THE GLOBAL TRANSFORMATION OF AN INDUSTRY WE’VE LONG DEFINED. UNITED IN PURPOSE, DIVERSE IN PERSPECTIVE, WE’RE DEDICATED TO MAKING A DIFFERENCE IN THE LIVES OF OUR CUSTOMERS.

METLIFE:

MetLife, through its subsidiaries and affiliates, is one of the world’s leading financial services companies, providing insurance, annuities, employee benefits and asset management to help its individual and institutional customers navigate their changing world. Founded in 1868, MetLife has operations in more than 40 countries and holds leading market positions in the United States, Japan, Latin America, Asia, Europe and the Middle East.

We are one of the largest institutional investors in the U.S. with $642.4 billion of total assets under management as of March 31, 2021. We are ranked #46 on the Fortune 500 list for 2021. In 2020, we were named to the Dow Jones Sustainability Index (DJSI) for the fifth year in a row. DJSI is a global index to track the leading sustainability-driven companies. We are proud to have been named to Fortune magazine's 2021 list of the "World's Most Admired Companies." 

MetLife is committed to building a purpose-driven and inclusive culture that energizes our people. Our employees work every day to help build a more confident future for people around the world.

We want to make it simple for all interested and qualified candidates to apply for employment opportunities with MetLife.  For further information about how to request a reasonable accommodation, please click on the Disability Accommodations link below.

MetLife is a proud Equal Employment Opportunity and Affirmative Action employer dedicated to attracting, retaining, and developing a diverse and inclusive workforce. All qualified applicants will receive consideration for employment at MetLife without regards to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity or expression, age, disability, national origin, marital or domestic/civil partnership status, genetic information, citizenship status, uniformed service member or veteran status, or any other characteristic protected by law.

MetLife maintains a drug-free workplace.

Requisition #: 120741