15951BR

　　Senior Manager Risk & Compliance - U.S. Based Remote

　　Madison

　　New Jersey

　　Job Description

　　Senior Manager, Risk and Compliance (Vendor Risk)

　　Position Summary

　　We have an influential and impactful opportunity for an Information Security Vendor working with the Sr. Director, Information Risk Management. Own the management, advancement, execution, and support of the Vendor Information Security Risk Assessment program.

　　The Information Security Manager will be a member of the Global Information Security team and serve as an authority, advisor, and assessor within the vendor/third-party assessment space. This person will actively participate in the ongoing responsibility of identifying, monitoring, reviewing, and rating third-party vendor Information Security risks and communicating those risks to internal partners, Security, and IT management. This position requires a broad IT background, expertise in Information Security, controls and compliance, familiarity with contracts as well as strong communications and leadership skills. Join us!

　　Responsibilities

　　Manage vendor Information Security Risk Assessment program across the enterprise.

　　Lead team of employees and consultants by providing day-to-day direction and acting as direct supervisor for productivity, issues resolution, growth and training.

　　Evolve program to implement appropriate measures to increase automation, effectiveness, and productivity while reducing overall cost.

　　Direct multi-functional team including both direct and indirect reports for the advancement of Global Enterprise Vendor Information Security Risk Assessment program.

　　Independently completes risk reviews of vendors and supporting legal agreements. This includes initiating, managing, driving and resolving issues to complete a risk assessment that involves interaction with both internal and external parties.

　　Provide direction and documentation to the team on how to formalize, develop, implement and track best practices

　　Understand the risks identified in an enterprise-wide context and assimilate them into a report that assigns a vendor risk rating.

　　Thoroughly research, define, and detail the risk(s) in a vendor relationship.

　　Own the development and creation of supplier risk metrics and scorecards.

　　Partner with legal and procurement to review and track changes to contractual obligations, assess the risk of implementing changes, and recommend companies' responses.

　　Generate and distribute reports on assessment findings and summarize them to facilitate remediation tasks for other operation teams.

　　Prepare and present reports and metrics on the status of completed assessments and the progress of remediation actions.

　　Maintain an awareness of existing and proposed Anywhere security standards, industry trends, legislation and regulations pertaining to Information Security and recommend appropriate changes.

　　Collaborate with members of the team and colleagues from other IT disciplines to identify and propose practical solutions to resolve issues.

　　Recommend security controls and/or corrective actions for mitigating technical or business risk and track to remediation.

　　Qualifications/Selection Criteria

　　Expertise in Information Security; experience implementing and driving a vendor Information Security risk management program.

　　Experience motivating teams and ability to recruit and build strong teams.

　　Demonstrable ability to empower team members and continuously improve efficiency and output.

　　Bachelor’s degree in related subject area or equivalent experience.

　　Experience using GRC tools with a focus on vendor risk and reporting.

　　Information Security and control certifications are required in one or more of the following disciplines: CISSP, CIPP/US, CRISC.

　　Technical knowledge base on how to secure operating systems, web applications, databases, networks (LAN, WAN, wireless), VPN, and other software.

　　Ability to identify Information Security issues, solution oriented, and collaborate with IT colleagues to remediate.

　　Solid grasp of Information Security standards, frameworks, and best practices.

　　Ability to evaluate system designs for compliance with PCI, SOX, ISO, etc. guidelines.

　　Requires excellent analytical ability, consultive skills, strong judgment, and the ability to work reliably in a diverse, multi-disciplinary, team dynamic.

　　Must be well organized with excellent follow-up skills to meet deadlines and handle requests in a proactive manner.

　　Foster collaboration and partnership and is able to balance multiple concurrent tasks.

　　Expertise in data privacy regulations is a plus.

　　Anywhere Real Estate is committed to providing equal employment opportunity (“EEO”) and will make employment decisions without regard to race, color, religion, national or ethnic origin, ancestry, citizenship status, age, sex (including pregnancy, lactation, childbirth or related medical conditions), gender, sexual orientation, gender identity, gender expression, veteran status, marital status, family status, physical or mental disability, genetic information (including testing and characteristics), veteran status, uniformed servicemember status, and any other status protected under applicable laws and regulations. Under the Americans with Disabilities Act and other applicable laws, Anywhere will provide reasonable accommodation to disabled applicants upon request during the application process to ensure equal opportunities to be considered for employment.

　　#LI-LG1

　　#LI-Remote

　　#Dice

　　#AnywhereEngineers

　　Employment Type

　　Full-time

　　Company

　　Anywhere Real Estate Inc

　　About Us

　　Anywhere Real Estate Inc. (http://www.anywhere.re/) (NYSE: HOUS) is on a mission to empower everyone’s next move. Home to some of the most recognized brands in real estate Better Homes and Gardens® Real Estate (https://www.bhgre.com/) , Century 21® (https://www.century21.com/) , Coldwell Banker® (https://www.coldwellbanker.com/) , Coldwell Banker Commercial® (https://www.cbcworldwide.com/) , Corcoran® (https://www.corcoran.com/) , ERA® (https://www.era.com/) , and Sotheby's International Realty® (https://www.sothebysrealty.com/eng)

　　The Anywhere portfolio includes franchise and brokerage operations as well as national title, settlement, and relocation companies and nationally scaled mortgage origination and underwriting joint ventures. Supporting approximately 1.5 million home transactions in 2021, Anywhere is focused on simplifying, digitizing and integrating the real estate transaction for all consumers, no matter where they may be in their home buying and selling journey. With innovative products and technology, Anywhere fuels the productivity of its approximately 196,200 independent sales agents in the US and approximately 136,400 independent sales agents in 118 other countries and territories. Recognized for twelve consecutive years as one of the World’s Most Ethical Companies, Anywhere has also been designated a Great Place to Work four years in a row, named one of LinkedIn’s 2022 Top Companies in the U.S., and honored by Forbes as one of the World’s Best Employers 2022.

　　At Anywhere, diversity fuels success – for our company and for our employees. We strive to be the preferred company for diverse talent, committed to creating an inclusive environment that encourages everyone to succeed. We pursue talent – strategic thinkers who are eager to innovate, focused on execution and accountable for results. We value diversity – respecting backgrounds, cultures, perspectives.

　　You’ll find our commitment to diversity reflected in our achievements:

　　Forbes 2022 Best Employers for Diversity.

　　Forbes 2022 World’s Top Female Friendly Companies.

　　Recognized on the 2020 Human Rights Campaign Corporate Equality Index.

　　Recognized for gender diversity on our board of directors by Executive Women of New Jersey and Women’s Forum of New York.

　　With diversity, we succeed together. We hope you’ll join us.

　　EEO Statement

　　EOE AA M/F/Vet/Disability