Technology Risk & Vendor Management Analyst

Job Description

Creative Artists Agency (CAA) is the leading entertainment and sports agency, with global expertise in filmed and live entertainment, digital media, publishing, sponsorship sales and endorsements, licensing, media finance, consumer investing, fashion, trademark licensing, and philanthropy. Distinguished by its culture of collaboration and exceptional client service, CAA's diverse workforce identifies, innovates, and amplifies opportunities for the people and organizations that shape culture and inspire the world. The trailblazer of the agency business, CAA was the first to build a sports business, create an investment bank, launch a venture fund, found technology start-up companies, establish a philanthropic arm, build a business in China, and form a brand marketing services division, among other innovations.

Position Summary:

The candidate will work closely with the Technology Risk Leader to plan, design, implement, and monitor a holistic integrated risk management framework covering all technology activities at CAA globally. In addition, the candidate will execute technology risk management strategies, objectives, and policies that establish the framework, tools, and procedures required to achieve successful risk identification and management within best practice standards. The candidate will also be responsible for developing and operating a holistic Technology Vendor Management program. The ability to engage and develop effective working relationships to support collaboration and cooperative responses to risk management matters, including maintaining effective communication, and providing guidance and training to promote risk control awareness, ownership, and accountability are critical.

Responsibilities:
• Provide assistance in the development, implementation, and communication of risk-related policies and standards (GDPR, CDPA, etc.)
• Participate in risk reviews of the IT control framework (NIST CSF, CIS, ITIL, ISO 270001, etc.)
• Coordinate across technology domain leads to execute CAA's controls testing program
• Execute audit and compliance activities within Tech for Sarbanes-Oxley (SOX) and other applicable standards. Monitor and analyze risks in the context of Key Risk Indicators (KRIs) and effectively report these KRIs to the technology leadership team
• Participate in disaster recovery planning and activities across technology departments, and partner with CAA Global Safety & Security to align with companywide business continuity planning efforts
• Create and execute a Technology Vendor Management program, inclusive of RFP and contract management, ensuring technology risk reviews across multiple disciplines, and monitoring for renewals and savings opportunities
• Document all aspects of the Tech risk program, including policies, procedures, training materials, and monitoring and reporting processes

Requirements:
• 5+ years of relevant experience, specifically in performance/risk measurement; direct experience in Technology Risk Management preferred
• Excellent problem-solving and self-management skills in order to tactically and analytically solve technical problems and successfully handle management information and metrics design, collection, analysis, reports, etc.
• Ability to manage multiple projects
• Self-sufficient, responsible, and dependable
• Project management skills / methodical and organized
• Excellent analytical skills
• Excellent communication skills and ability to manage through ambiguity

Preferred Skills and Qualifications:
• Bachelor's degree in Information Technology or Computer Science, or any related field
• Experience in Risk and Governance Platforms (OneTrust, BigID, etc)
• Experience working in orchestration platforms (ServiceNow, Jira)
• Familiarity with third-party vendor risk assessment and/or contracts

Location:

This role can be hybrid, based in our NYC office, or remote.

Compensation:

The annual base salary for this position is in the range of $93,000 - $124,000. This position also is eligible for benefits and discretionary bonus. Ultimately, the salary may vary based upon, but not limited to, relevant experience, time in the role, business sector, and geographic location, among other criteria. Please talk with a CAA Recruiter to learn more.

Creative Artists Agency, LLC (the ''Company'') is committed to a policy of Equal Employment Opportunity and will not discriminate on the basis of race (inclusive of traits historically associated with race, including hair texture and protective hairstyles), color, religion, creed, gender or sex (including pregnancy, childbirth, breastfeeding or related medical conditions), national origin, ancestry, age, physical disability, mental disability, medical condition, genetic information, family and medical care leave status, military or veteran status, marital status, family status, sexual orientation, gender identity, gender expression, political affiliation, an employee's or their dependent's reproductive health decision making (e.g., the decision to use or access a particular drug, device or medical service), or any other characteristic protected by applicable law.

The Company also complies with the Americans with Disabilities Act and applicable state and local laws with regard to providing reasonable accommodation for qualified individuals with disabilities.

Jobcode: Reference SBJ-r7oq6q-18-191-28-187-42 in your application.