Sr Cybersecurity Specialist, third-party/vendor risk management

*completed 4 year degree (no exceptions)
*background/drug check required

This role is ideal for a cybersecurity professional with a keen eye for detail, a process-oriented mindset, and a passion for helping organizations manage third-party cyber risks effectively.
Key Responsibilities:

• Conduct comprehensive cybersecurity risk assessments of third-party vendors.
• Review and validate assessments completed by others for quality and completeness.
• Identify and document risks, control gaps, and mitigation strategies.
• Support continuous improvement of the third-party risk assessment process.
• Collaborate with internal stakeholders to drive risk-based decisions.
• Facilitate remediation actions.
• Act as a stakeholder on the GRC implementation project of Logic Gate and One Trust.  Provide feedback on process design for future state.
• Utilize tools such as OneTrust and LogicGate to test new processes as a part of the system implementations.

• 5+ years of experience in cybersecurity, with a focus on third-party/vendor risk management.  We will consider less experience with applicable certifications. (E.g. CISSP, CISA, CRISC, CISM, ISO Cert, Auditor)
• Strong knowledge of cybersecurity frameworks (e.g., NIST, ISO 27001).
• Demonstrated experience in designing and improving risk assessment processes.
• Preferred experience with OneTrust and LogicGate platforms.
• Excellent analytical, communication, and stakeholder management skills.

Education Required: Bachelors
Years’ Experience Required: 5+ years of experience in cybersecurity, with a focus on third-party/vendor risk management.  We will consider less experience with applicable certifications. (E.g. CISSP, CISA, CRISC, CISM, ISO Cert, Auditor)