Corporate Vice President - Third Party Risk Management Monitoring Lead


Date: Jun 24, 2022

Location: Remote, MA, US

Company: New York Life Insurance Co



When you join New York Life, you’re joining a company that values career development, collaboration, innovation, and inclusiveness. We want employees to feel proud about being part of a company that is committed to doing the right thing. You’ll have the opportunity to grow your career while developing personally and professionally through various resources and programs. New York Life is a relationship-based company and appreciates how both virtual and in-person interactions support our culture.



The Third-Party Risk Management (TPRM) Monitoring Lead is primarily responsible for implementing the Continuous Monitoring and Incident Response (CMIR) program.


This includes establishing and maintaining the following capabilities within TPRM:
• Development and management of a third-party continuous monitoring capability to identify vulnerabilities and emerging risks impacting NYL’s Third-Party Inventory
• Development and management of a third-party incident response framework to identify and capture incidents impacting and within NYL’s Third-Party Inventory
• Working with the TPRM Assessment Lead, and development of a Third-Party Assessments Quality Assurance process to detect and measure assessment-related defects and identify opportunities for improvement, including root cause analysis, reporting, and development of procedural enhancements.


This individual will partner closely with TPRM team members, other NYL Risk functions, and business lines. This role will also provide support for additional TPRM Assessment activities and initiatives as directed by TPRM leadership.


• Responsible for the development, day-to-day management, and continuous enhancement of a third-party continuous monitoring and incident response framework
• Develop and implement processes for continuous monitoring of NYL’s Third-Party Inventory, including identification of opportunities to leverage technology/3rd party platforms in support of the program
• Develop and implement processes for identification, tracking and reporting of Third-Party Incidents, including acting as TPRM point of contact for incidents and coordinating TPRM response
• Develop and implement TPRM Assessment Quality Assurance processes
• Promote a risk-aware culture, ensuring efficient and effective risk and compliance management practices by adhering to required internal standards and regulations
• Maintain broad knowledge of best practices and trends in the field of Information Security and Business Resiliency
• Work as a member of the team, supporting necessary activities to ensure the success of the TPRM program as delegated by manager



  • Bachelor's degree (Masters preferred) in Information Technology, Cyber security, data Analytics or related fields
  • 7+ years minimum experience
  • Additional preferred qualifications: CISSP or similar certification
  • Proficient in GRC and Vendor Risk platforms (experience with ServiceNow a plus)
  • Proficient in Microsoft Office Applications (Word, Excel, PowerPoint, etc.)
  • Superior attention to detail
  • Ability to demonstrate familiarity with common frameworks (COSO, NIST, etc.)
  • Familiarity with the insurance industry
  • Knowldge around identification of risks and mitigation processes 
  • Ability to successfully run cross-functional workshops to review policies and requirements 


Recognized as one of Fortune’s World’s Most Admired Companies, New York Life is committed to improving local communities through a culture of employee giving and volunteerism, supported by the Foundation. We're proud that due to our mutuality, we operate in the best interests of our policy owners. We invite you to bring your talents to New York Life, so we can continue to help families and businesses “Be Good At Life.” To learn more, please visit LinkedIn, our Newsroom and the Careers page of

Job Requisition ID: 86450




Job Segment: Executive, VP, Cyber Security, Quality Assurance, QA, Management, Security, Technology, Quality