3 days ago
🏢 In-office - San Francisco
• Conduct third party security and privacy reviews • Identify third party business risks • Determine security contract requirements • Communicate with vendors and stakeholders for security reviews • Perform annual reviews on critical vendors • Collaborate with various departments for due diligence process • Provide support to the GRCP team as needed
• General understanding of security, compliance, and privacy frameworks such as SOC2, ISO27001, ISO27701, GDPR, CCPA • Experienced with SaaS/Cloud suppliers • Familiarity with cloud data compliance and working with public cloud solutions (AWS) • Knowledge of and interest in third party information security challenges and trends • Independent self-starter, ability to manage multiple projects simultaneously • Detail-oriented and organized • Ability to take action quickly for efficiency improvement • Flexible and able to change focus based on priorities • Certifications such as CISA or CISSP is a plus
• Comprehensive benefits offerings • Restricted stock units • Incentive compensation
Apply Now