As a Third-Party Security Analyst, you will manage the security risks associated with our vendor and third-party relationships. The ideal candidate will have a strong background in risk assessment, security auditing, and vendor management processes. You will work in a cross-functional environment and operationalize security operations, risk management, and regulatory compliance.

• Develop and implement a robust third-party risk management program to assess, monitor, and mitigate security risks posed by vendors, suppliers, and other third-party entities
• Conduct comprehensive security assessments and due diligence reviews of potential and existing third-party vendors, evaluating their security posture, policies, and controls
• Collaborate with cross-functional teams, such as procurement, legal, and business units, to ensure third-party security requirements are integrated into vendor selection and contractual processes
• Establish and maintain vendor security risk profiles, continuously monitoring for changes in risk levels and ensuring appropriate risk treatment plans are in place
• Perform periodic security audits and assessments of third-party vendors, including reviews of security documentation, and testing of security controls
• Develop and maintain a centralized repository of third-party security information, including risk assessments, audit reports, and security certifications
• Ensure compliance with relevant industry regulations, standards, and security frameworks (e.g., SOC II, GDPR, ISO 27001) for third-party relationships
• Provide guidance and support to internal stakeholders on third-party security best practices, vendor risk management, and secure vendor integration
• Stay current with emerging third-party security threats, trends, and best practices, and continuously enhance the organization's third-party risk management capabilities
• Present third-party security risk assessments, metrics, and recommendations to senior leadership and stakeholders

• Bachelor's degree in business administration, computer science, information technology, or a related field of study, or equivalent experience
• Strong analytical and problem-solving skills with the ability to identify security risks and recommend appropriate mitigating controls.
• Excellent communication and interpersonal skills with the ability to effectively collaborate with cross-functional teams and communicate with vendors.
• Familiarity with project management methodologies and processes.
• Experience with risk assessment methodologies, security auditing techniques, and vendor management tools is preferred.
• Ability to work independently and effectively in a remote environment
• Passion and willingness to communicate cross-organizationally between operations, product security, contracts, GRC, etc

Preferred Technology Experience

• Experience in security, or security-adjacent fields
• Security certification is a plus
• Knowledge and experience with information security standards, rules and regulations related to information security and data protection: NIST CSF, GDPR etc
• Experience working in or with a technology organization is preferred

The salary range for this role is $103,000 - $117,000. Actual compensation packages within this range are based on a wide array of factors unique to each candidate and role requirements, including but not limited to skill set, years and depth of experience, certifications, and specific location.

Benefits

• Medical, Dental, Vision Plans and HSA and FSA accounts
• Basic Life and AD&D insurance; disability coverage where applicable
• Retirement 401(k) Plan Option with Altium match
• Calm App and Employee Assistance Program
• Paid holidays plus a "Choice Day" off per quarter
• Paid time-off on arising schedule upon key milestones
• Sick time for Dr. appointments or family health needs
• Family medical, maternity, paternity, and military leave
• Flexible working arrangements available based on role and location
• Employee referral and employee-of-the-month programs
• Home internet allowance
• Professional development support
• Free lunch, snacks, and drinks in the office
• Free parking