Security Engineer/Analyst - San Jose, CA or Remote also workable
Experience in GraphiteConnect and BigSight Tools (Must Have)
Evaluate information security program maturity, security controls, and security documentation for client's strategic vendors
Review threat models for third-party integrations and provide guidance
Review and assess client's vendors security posture before onboarding them to client
Communicate security risks to the business and build risk mitigation plans
Support legal team with negotiation around Information security contract requirements
Collaborate with cross-functional departments within Security, Procurement, Legal on process improvements and workflow integrations to provide improved customer experience
Communicate and present key vendor security initiatives, practices and issues to business units
Collaborate to develop executive reporting Provide metrics to report on vendor security program maturity
Benchmark the program against the third-party risk assessment programs from similar companies and propose improvement
Develop continuous vendor monitoring capability by implementing BitSight or similar technology
Create dashboards for executive reporting on BI tools (powerBI preferred), JIRA
Develop automation for enhancing the program, as needed.
Diverse Lynx LLC is an Equal Employment Opportunity employer. All qualified applicants will receive due consideration for employment without any discrimination. All applicants will be evaluated solely on the basis of their ability, competence and their proven capability to perform the functions outlined in the corresponding role. We promote and support a diverse workforce across all levels in the company.