Security Technologist 2

Candidate Requirements
* Years of Experience Required: 3-4 years of experience required for the role
* Degrees or certifications required: Bachelor's degree in a related field (e.g., Risk, Information Security, Computer Science) or equivalent work experience.
* Best vs. Average: The ideal resume would be someone with developer experience, ability to reason about ambiguous items (analyze data to be able to figure out a solution), security administrator, and any work in a specialized security domain.

Top 3 Hard Skills Required + Years of Experience
1. Minimum 1 year experience with Risk assessment
2. Minimum 1 year experience security knowledge
3. Minimum 1 year of experience with creating data flow diagrams (map out the flow of information).
Summary:
We are seeking a Third Party Security Risk Analyst on a contract basis to support our vendor risk management program. The contractor will assist with conducting vendor risk assessments. This role works closely with colleagues and cross-functional partners, helping to ensure that vendors meet organizational and regulatory requirements. The role will also involve creating data flow diagrams to illustrate vendor connectivity with our environment.

Job Responsibilities:
* Conduct Vendor Assessments: Assist in gathering and reviewing vendor due diligence documentation (e.g., SOC reports, security questionnaires) under the guidance of senior analysts.
* Data Collection & Analysis: Collect and organize data on vendor risks, and help update internal risk tracking systems.
* Reporting: Support the preparation of vendor review risk summaries for management review.
* Data Flow Diagrams: Create and maintain clear data flow diagrams to illustrate how vendors connect to and interact with our environment, supporting risk analysis and communication with stakeholders.
* Escalation: Identify potential issues during reviews and promptly escalate concerns to senior analysts or management.
* Collaboration: Work with internal business owners stakeholders to obtain necessary documentation and clarify vendor responses.

Qualifications:
* Bachelor's degree in a related field (e.g., Risk, Information Security, Computer Science) or equivalent work experience.
* 2-4 years' experience in risk management, compliance, vendor security, or a related field (internships or co-ops count) and basic understanding of information security and regulatory compliance.
* Strong attention to detail and organizational skills.
* Good written and verbal communication skills.
* Ability to work collaboratively and seek guidance when needed.

Preferred:
* Familiarity with the GitHub platform, ZenGRC and Zendesk is a plus.
* Interest in learning about risk management and vendor oversight practices.
* Experience creating visual data flow diagrams

Interested candidates please send resume in Word format Please reference job code 240698 when responding to this ad.