Enable job alerts via email!
Contract Remote Role | Security Analyst
LanceSoft Inc
Oakland (CA)
Remote
USD 60,000 - 80,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
A leading company seeks a Security Analyst for a 12-month contract role focused on vendor security assessments. Responsibilities include reviewing vendor requests, conducting thorough risk assessments, and engaging with stakeholders to ensure comprehensive security evaluations. The ideal candidate will possess a strong foundation in security frameworks and risk mitigation, with experience in vendor evaluations and a keen interest in learning new technologies.
Qualifications
- Understanding of security risks posed by third-party vendors.
- Knowledge of SOC2, ISO27001, NIST, and PCI standards.
- Experience with Generative AI risk assessments.
Responsibilities
- Conduct vendor security assessments and create risk profiles.
- Research vendor usage and perform due diligence.
- Prepare comprehensive work products for risk decisions.
Skills
Tools
Job description
Duration: 12 months contract with possible extension up to 18 months
Pay Range: $40 - 45.15/hour on W2 (All Inclusive)
Description:
We are seeking a Security Analyst to support our continuous monitoring program, focusing on security reviews of third-party vendors. The ideal candidate will be capable of conducting security assessments aligned with various audit standards, with a solid security knowledge base, quick understanding of infrastructure and products, and the ability to produce thorough final assessment reports.
The Sourcing Security Assurance team manages all incoming security reviews for vendors, including software and professional services, as well as ongoing monitoring and software governance across the company.
You Will:
- Review vendor use and onboarding requests
- Establish vendor risk profiles based on intake information
- Research and investigate vendor use across the enterprise
- Perform due diligence activities, including reviewing audit reports, penetration tests, risk assessments, and other security assets
- Prepare comprehensive and defendable work products for final risk decisions
- Engage with stakeholders and vendors with critical questions to ensure accurate risk assessment
- Collaborate within a dynamic, fast-paced, and geographically dispersed team
You Should have:
- Understanding of security risks posed by third-party vendors, especially software
- Knowledge of authentication and authorization frameworks
- Familiarity with SSO/SAML, OAuth, and OpenID Connect protocols
- Experience with third-party product deployments and data exchange methods
- Ability to evaluate various deployment models and integration methods
- Experience assessing risks associated with Generative AI in third-party products
- Knowledge of standards like SOC2, ISO27001, NIST, PCI
- Strong understanding of risk mitigation and controls
- Skill in synthesizing diverse information sources and driving resolution
- Project management skills for handling multiple security reviews
- Quick technical assessment abilities for new platforms
- Familiarity with ticketing systems like Jira and adaptability to new technologies
Ideal candidate would have:
- Experience working remotely
- Prior vendor security assessment experience
- Curiosity and eagerness to learn new technologies
- Experience in customer-facing roles and stakeholder cooperation
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
