Related skills
iso 27001 grc third party risk pci dss soc 2๐ Description
- Execute vendor security reviews using control docs and audit reports.
- Identify third-party security risks, document findings, and recommend risk options.
- Determine security contract requirements and share with Contracts & Legal.
- Maintain Cloudflare Vendor Master including critical vendors.
- Support incident response by ensuring vendors are not affected by vulnerabilities.
- Lead projects to improve the Vendor Security Review process, workflow, and tooling.
๐ฏ Requirements
- 5-8 years in Security GRC
- Experience reviewing vendor security documentation including ISO 27001, SOC 2, PCI DSS
- Experience identifying security controls gaps, risk ratings, and mitigating controls
- Familiarity with security contract requirements
- Strong organizational, analytical, and interpersonal skills
- Self-starter with the ability to work independently
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Operations Jobs. Just set your
preferences and Job Copilot will do the rest โ finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!