This role is on a hybrid schedule in our Charlotte office, with a few days in office with some remote work.
The Third Party Risk Management (TPRM) Event Analyst II is part of the TPRM Resilience and Response team and supports the analysis and coordination of third-party risk activities related to cybersecurity and operational events. This role works closely with Ally’s Information Protection Risk Management, Relationship Owners, Business Line Risk, Fraud, Cyber Compliance, and Privacy teams to understand events, support timely assessment and escalation, and contribute Third Party Risk Management perspectives across the enterprise.
A primary focus of the role is reviewing event details, identifying themes, and helping improve coordination across teams. The Event Analyst II supports second-line oversight activities and may assist with issue identification, documentation, and follow-up. Candidates with experience in third-party risk, cybersecurity, operational risk, incident response, or related control functions are encouraged to apply. Familiarity with financial services regulatory expectations, cybersecurity frameworks, and risk analysis practices will help the candidate succeed in this role.
This role participates in daily event triage to support impact analysis, escalation, and accurate documentation of key details. It is well suited for someone who is organized, collaborative, and comfortable working across multiple stakeholders in a fast-moving environment. Strong note-taking, writing, analytical, and communication skills are important to success in the role.
Additional responsibilities include supporting procedures, reporting, tooling, engagement tracking, and program documentation that help the broader resilience and response function operate effectively and continue to mature over time.