Certifications desired : Security related, CISSP
The ideal candidate should have over 10 years of security experience, preferably in the third-party security field. This role will be working directly with business and technology partners, vendors, and legal to assess vendor security issues and risks, prioritize risk mitigation activities and guide the business to make risk-based decisions. We are looking for someone with outstanding security, communication, negotiation and interpersonal skills. The candidate should have good experience with Information security and Risk management practices and principles as well as some automation and technical experience.
At least 10 years in a security specially in vendor security review and assessments. A great understanding of emerging technologies. Scripting or development experience to enable team automations. Security related certifications, CISSP desired.
Job responsibilities:
Demonstrable understanding of cybersecurity risk assessment and risk management methodologies. Key qualification includes deep understanding of security and technical domains to best inform the program and assessment execution
Work directly with business and technology partners, vendors, and legal to assess vendor security issues and risks, prioritize risk mitigation activities and guide the business to make risk-based decisions.
Evaluate information security program maturity, security controls, and security documentation for Adobe's strategic vendors
Review threat models for third-party integrations and provide guidance
Review and assess Adobe vendors security posture before onboarding them to Adobe
Communicate security risks to the business and build risk mitigation plans
Support legal team with negotiation around Information security contract requirements
Collaborate with cross-functional departments within Security, Procurement, Legal on process improvements and workflow integrations to provide improved customer experience
Communicate and present key vendor security initiatives, practices and issues to business units
Collaborate to develop executive reporting Provide metrics to report on vendor security program maturity
Benchmark the program against the third-party risk assessment programs from similar companies and propose improvement
Develop continuous vendor monitoring capability by implementing BitSight or similar technology
Create dashboards for executive reporting on BI tools (powerBI preferred), JIRA
Develop automation for enhancing the program, as needed.
...We are seeking a highly skilled and forward-thinking Chief Compliance Officer (CCO) to lead and scale the compliance operations. This is a leadership role focused on driving efficiency and scalability through process optimization, technology adoption, and strong project...
...Your career as Head of Digital Marketing at Booksy will give you the opportunity to drive the performance marketing strategy and execution... ...the US benefits we offer are: ~ This is a US- based, fully remote position (EST Timezone) we take pride in being a globally distributed...
...Curriculum programs. The school campus is large, well-equipped with classrooms, a Music and Dance area, a Library and Information Centre, an Art room, laboratories, a soccer pitch and other recreational areas. Job responsibilitiesProvide psychological counseling and support to...
...Unlock Opportunities as an Orientation and Mobility Specialist with AIM! AIM, Assessment Intervention Management QUALIFICATIONS as O&M Specialist: Showcase your expertise with a valid Type 10 Certificate in Blind and Partially Seeing with O & M Endorsement OR AER...
Direct Response Marketing Specialist Are you a strategic and data-driven marketer with... ...office) or, for the right candidate, a fully remote arrangement. What You'll Do Lead... ...with cross-functional teams, including digital marketing and sales, to align marketing...