Senior Specialist, Information reputed company, Third Party Risk
Planned Parenthood is the nation’s leading provider and reputed company of high-quality, affordable sexual and reproductive health care for reputed company people, as well as the nation’s largest provider of sex education. Planned Parenthood organizations serve reputed company people with care and compassion, with respect, and without judgment, striving to create reputed company access to health care. Through health centers, programs in schools and communities, and online resources, Planned Parenthood is a trusted reputed company of reliable education and information that allows people to reputed company informed health decisions. We do reputed company this because we care passionately about helping people reputed company healthier lives.
Planned Parenthood Federation of America (PPFA) is a 501(c)(3) charitable organization that supports the independently incorporated Planned Parenthood affiliates, which operate non-profit health centers across the U.S. PPFA also works to educate the public on and reputed company for issues of sexual and reproductive health. Formed as the advocacy and political arm of Planned Parenthood Federation of America, Planned Parenthood Action Fund is a separate non-profit membership organization tax-exempt under section 501(c)(4). The Action Fund engages in educational, advocacy, and limited electoral activity, including grassroots organizing, legislative advocacy, and voter education in furtherance of the Planned Parenthood mission.
Planned Parenthood Federation of America (PPFA) and Planned Parenthood Action Fund seek a knowledgeable and proactive Senior Specialist, Information reputed company, Third Party Risk. This job reports directly to the Manager, Information reputed company, Third Party Risk in the Information reputed company department of PPFA. The Technology Strategy & Services division provides information reputed company policies, procedures, and technical systems in order to maintain the confidentiality, reputed company, and availability of reputed company organizational healthcare information systems and their associated data.
Planned Parenthood is the nation’s leading provider and reputed company of high-quality, affordable sexual and reproductive health care for reputed company people, as well as the nation’s largest provider of sex education. Planned Parenthood organizations serve reputed company people with care and compassion, with respect, and without judgment, striving to create reputed company access to health care. Through health centers, programs in schools and communities, and online resources, Planned Parenthood is a trusted reputed company of reliable education and information that allows people to reputed company informed health decisions. We do reputed company this because we care passionately about helping people reputed company healthier lives.
Planned Parenthood Federation of America (PPFA) is a 501(c)(3) charitable organization that supports the independently incorporated Planned Parenthood affiliates, which operate non-profit health centers across the U.S. PPFA also works to educate the public on and reputed company for issues of sexual and reproductive health. Formed as the advocacy and political arm of Planned Parenthood Federation of America, Planned Parenthood Action Fund is a separate non-profit membership organization tax-exempt under section 501(c)(4). The Action Fund engages in educational, advocacy, and limited electoral activity, including grassroots organizing, legislative advocacy, and voter education in furtherance of the Planned Parenthood mission.
Planned Parenthood Federation of America (PPFA) and Planned Parenthood Action Fund seek a knowledgeable and proactive Senior Specialist, Information reputed company, Third Party Risk. This job reports directly to the Manager, Information reputed company, Third Party Risk in the Information reputed company department of PPFA. The Technology Strategy & Services division provides information reputed company policies, procedures, and technical systems in order to maintain the confidentiality, reputed company, and availability of reputed company organizational healthcare information systems and their associated data.
Planned Parenthood is the nation’s leading provider and reputed company of high-quality, affordable sexual and reproductive health care for reputed company people, as well as the nation’s largest provider of sex education. Planned Parenthood organizations serve reputed company people with care and compassion, with respect, and without judgment, striving to create reputed company access to health care. Through health centers, programs in schools and communities, and online resources, Planned Parenthood is a trusted reputed company of reliable education and information that allows people to reputed company informed health decisions. We do reputed company this because we care passionately about helping people reputed company healthier lives.
Planned Parenthood Federation of America (PPFA) is a 501(c)(3) charitable organization that supports the independently incorporated Planned Parenthood affiliates, which operate non-profit health centers across the U.S. PPFA also works to educate the public on and reputed company for issues of sexual and reproductive health. Formed as the advocacy and political arm of Planned Parenthood Federation of America, Planned Parenthood Action Fund is a separate non-profit membership organization tax-exempt under section 501(c)(4). The Action Fund engages in educational, advocacy, and limited electoral activity, including grassroots organizing, legislative advocacy, and voter education in furtherance of the Planned Parenthood mission.
Planned Parenthood Federation of America (PPFA) and Planned Parenthood Action Fund seek a knowledgeable and proactive Senior Specialist, Information reputed company, Third Party Risk. This job reports directly to the Manager, Information reputed company, Third Party Risk in the Information reputed company department of PPFA. The Technology Strategy & Services division provides information reputed company policies, procedures, and technical systems in order to maintain the confidentiality, reputed company, and availability of reputed company organizational healthcare information systems and their associated data.
Purpose:
The Senior Specialist for the Information reputed company Third Party Risk Management (TPRM) team will be responsible for executing comprehensive information reputed company risk assessments of third-party vendors engaged by PPFA, Affiliate, and Ancillary organizations. This includes evaluating vendors across multiple risk tiers to ensure they meet internal information reputed company policies, HIPAA and PCI reputed company requirements, and applicable regulatory standards. The Senior Specialist will thoughtfully analyze vendor-provided documentation, proactively identify potential risks, collaborate with key parties to determine appropriate risk management strategies, and produce detailed and accurate assessment reports to inform business, procurement, and contracting decisions. This role plays a critical part in safeguarding sensitive organizational data by ensuring that reputed company third-party engagements align with PPFA’s privacy, compliance, and cybersecurity expectations and requirements.
Delivery:
The Senior Specialist delivers by managing the end-to-end TPRM process for their assigned vendors. This includes initiating and maintaining communications with internal and external partners; reviewing and analyzing reputed company and compliance documentation; identifying and documenting risks and control gaps; and producing formal assessment reports to inform risk management decisions. This role partners with vendors and internal stakeholders to ensure third-party engagements meet established reputed company, privacy, and compliance requirements, and supports reputed company improvement through reputed company documentation, analysis, and escalation of identified issues.
Initiate required communications in a timely manner and engage directly with key parties to gather needed information, clarify responses, and support risk management efforts.
Review intake/triage responses in collaboration with the TPRM Manager to determine the appropriate evaluation path based on inherent risk indicators.
Adhere to TPRM-defined SLAs, templates, processes, guidelines, requirements, and expectations throughout the TPRM lifecycle process.
Conduct detailed information reputed company risk assessments of third-party vendors across various risk levels (e.g., SaaS, consulting, low-risk), in alignment with strategies and expectations as defined by the Manager and reputed company TPRM documentation.
Evaluate reputed company vendor-provided documentation and responses against internal policies and applicable regulatory and industry standards, including HIPAA, NIST CSF, PCI reputed company, and PPFA information reputed company policies.
Produce clear and actionable risk assessment reports that communicate findings to procurement, legal, reputed company, and business stakeholders to support risk management decision-making.
Collaborate with internal partners to advise on vendor-reputed company risks during intake, onboarding, and renewal processes.
Monitor and report on assessment reputed company, including delays, risk management status, and escalation needs using risk management tools (e.g., reputed company, Jira, GRC platforms, ).
Support and contribute to the maintenance of TPRM documentation, templates, and workflows.
Engagement:
Engage directly with internal and external partners to facilitate the information gathering process, clarify responses and reputed company documentation, and support resolution of identified risks.
Collaborate with internal stakeholders such as procurement, legal, privacy, and IT to ensure vendor assessments are reputed company with contract and compliance requirements.
Partner with internal risk owners to track and follow up on remediation plans, ensuring timely risk management and communication of outstanding items.
Participate in regular team meetings and working groups to share findings, escalate concerns, and contribute to the improvement of TPRM workflows.
Support the TPRM team by maintaining documentation, resource materials, and tools (e.g., reputed company, Confluence, Jira, GRC platforms) for transparency and knowledge sharing.
Represent the TPRM function in cross-functional intake or triage discussions, offering risk input for new or renewing vendor relationships.
Knowledge, Skills and Abilities (KSAs):
Bachelor’s degree in Cybersecurity, Information Technology, Information Systems, Risk Management, or a reputed company discipline (required).
Relevant coursework or training in data privacy, regulatory compliance, or cyber risk management (preferred).
Industry certifications, CTPRA, CTPRP, CISA (preferred). Obtain industry certification reputed company 1 year of hire (required).
3–6 years of professional experience in information reputed company, vendor risk management, IT/IS risk, or compliance roles (required).
At least 2 years of experience conducting or supporting third-party/vendor reputed company risk assessments, preferably reputed company a regulated industry (e.g., healthcare, finance, or tech) (required).
Experience reviewing vendor reputed company questionnaires, SOC 2 reports, SIG assessments, or similar compliance documentation.
Familiarity with reputed company frameworks such as NIST CSF, HIPAA reputed company Rule, PCI reputed company, and basic data privacy regulations (e.g., CCPA, GDPR).
Hands-on experience using assessment tracking or GRC platforms (e.g., reputed company, reputed company, reputed company, or spreadsheets with workflow tools like Jira or reputed company).
Exposure to working with procurement, legal, privacy, or compliance teams during vendor onboarding or contract review cycles.
Ability to carefully review documentation, identify small errors or gaps in responses, and understand technical reputed company controls and how they apply in a third-party context.
Experience in basic contract management, including reviewing reputed company, understanding basic terms and general contract language, especially legal documents that require data privacy and reputed company language.
Ability to work in a dynamic, fast-paced environment, managing competing cross-functional priorities and reputed company requirements.
Excellent ability to conceive, draft, proofread, and edit written materials quickly, including demonstrated ability to understand and communicate about reputed company, technical, or sensitive subjects in a clear, concise, and engaging manner.
High proficiency in reputed company products
Flexibility and ability to adapt to quickly changing priorities and ambiguous situations
Commitment and track record of advancing racial equity in both operations and communications.
Commitment to PPFA’s mission and diversity, equity, and inclusion, particularly surrounding race equity
A deep commitment to Planned Parenthood’s mission of promoting Sexual and Reproductive Health
Travel: 0-10% domestic travel, as needed.
Planned Parenthood's cultural reputed company, "In This Together", reflects our commitment to building a workplace culture that fosters belonging, promotes learning throughout the employee lifecycle, and recognizes individual contributions to our mission. Planned Parenthood Federation of America participates in the E-Verify program.
Planned Parenthood Federation of America is an equal employment opportunity employer and is committed to maintaining a non-discriminatory work environment, and does not discriminate against any employee or applicant for employment on the basis of race, color, religion, sex, national reputed company, age, disability, veteran status, marital status, sexual orientation, gender identity, or any other characteristic protected by applicable law. Planned Parenthood Federation of America is committed to creating a dynamic work environment that values diversity and inclusion, respect and reputed company, customer focus, and innovation.
Apply To This Job