This site uses cookies. To find out more, see our Cookies Policy

AVP, Business Compliance in Philadelphia, PA at Radian Group Inc

Date Posted: 11/29/2018

Job Snapshot

Job Description

As an experienced Information Security and Vendor Risk Management professional, the AVP of Business Compliance is responsible for ensuring the effectiveness and adequacy of data security programs by Radian’s wide range of third party service providers and vendors, addressing new and existing Customer Security/Data Privacy Due Diligence requests and assessments, updating and maintaining Radian's Shared Assessments Program status and documentation for external Information Security program resporting and providing subject matter expertise and guidance for other security, privacy compliance and vendor risk management initiatives.

What you will do:

  • Operate/maintain the Vendor Security Assessment Program as applied to new and existing vendors/service providers for Radian.  Provide reporting and metrics as appropriate.        
  • Partner with Radian business owners of service providers/vendors for overall assessment timing, guidance, and reporting.  Perform assessments as dictated by business need and the Vendor Security Assessment Program policy including onsite reviews at service provider/vendor locations
  • Develop and implement ongoing Vendor Security Assessment Program improvements based on changes in technology risk and the data security and privacy regulatory environment        
  • Develop and maintain the Radian Vendor Security Program database of assessment documentation. Maintain inventory of vendors/service providers for the overall Vendor Management Program.  Represent Business Compliance in Vendor Management contract meetings to review and report on pipeline of vendor activity.                    
  • Lead and support Customer Security/Data Privacy Due Diligence activity including completion of response materials, planning and support of onsite reviews at various Radian locations, maintenance of Radian's due diligence documentation including the Due Diligence Virtual Data Room repository and management of the Customer Due Diligence intake process.                    
  • Lead and maintain Radian's use of Shared Assessments methodologies and tools to provide formal Information Security Program reporting and third party attestation for Customer Due Diligence.    
  • Partner with Enterprise Procurement, Strategic Provider Relations and Legal regarding assessment activity and contract/Statement of Work security and privacy compliance matters.    
  • Guidance and thought leadership for other security, privacy compliance and vendor risk management initiatives as required.                    


Who we are looking for:

Knowledge:

  • Significant experience in Information Security and Privacy industry focused on effective assessment of security technology and business processes relative to data security risk mitigation (a minimum of 8-10 years).
  • Demonstrated experience with the Shared Assessments Program and associated tools including implementation of a completed documents for use in Customer security reviews and assessments (a minimum of 2-4 years).
  • Demonstrated experience in collaborative assessment activity of third party service providers and vendors in a regulated data industry such as financial services or insurance (a minimum of 6-8 years).
  • Experience and knowledge of ISO 27000 series and related security / risk management standards and guidelines.. 


Skills and Abilities:

  • Excellent interpersonal skills including the ability to build relationships both internally and externally
  • Ability to influence and guide customer representatives through comprehensive due diligence activity and onsite reviews to meet regulatory compliance requirements.
  • Ability to influence third party service provider / vendor team members regarding security program improvement expectations
  • Excellent communication skills – both verbal and written
  • Highly motivated / self-starter with excellent organizational and follow up skills
  • Effective computer skills (Microsoft Office). 

Travel Requirements:

  • Up to 50% of the time.

Prior Work Experience:

  • 8 - 10 years of related work experience


Education:

  • Required:    Bachelor's Degree in Business, Technology or other related discipline.
  • Preferred:   Master's Degree in Business, Technology or other related discipline.

Certifications:

  • Required:    CTPRP as well as CISSP, CISM, or CRISC.
  • Preferred:   CIPP/US or CIPP/IT

Location:

  • 1500 Market Street, Philadelphia, PA 19102

EEO Statement

Radian complies with all applicable federal, state, and local laws prohibiting discrimination in employment.  All qualified applicants will receive consideration for employment without regard to gender, age, race, color, religious creed, marital status, sexual orientation, national origin, ethnicity, ancestry, citizenship, genetic information, disability, protected veteran status or any other characteristic protected by applicable federal, state, or local law.

If you are a person with a disability and need assistance in the application process please send an e-mail message to recruitment@radian.biz.