Job #: 1534
Title: Vendor Risk Assessment
This role will be focused on conducting security vendor security assessments and evaluations and implementing vendor assessment methodologies
Participate in the vendor security review process which includes vendor classification, working with vendors to acquire assessment material, performing assessment and risk tracking/communication.
Participate in communicating vendor related risks with stakeholders to drive remediation efforts.
Manage and track IT vendor risk related documentation in GRC (Governance Risk and Compliance) applications like Archer and/or SharePoint.
Work directly with vendor representatives and client representatives to maintain vendor contact information and assessment status
Continuously improve the security aspects of operating processes.
A minimum of 4 years performing IT vendor security risk assessments
Prior experience using tools and technologies such as Archer
Understanding of security principles, IT security controls and related technologies and products
Preferences: 5 plus years’ experience in Information Security & CISSP Certification