Sr. Security Analyst
Employment Type: Full-Time
Industry: Information Technology
Title Sr. Security Analyst Duration 12 Months ContractLocation San Jose, CA. Job DescriptionThe Vendor Security Assessor position is responsible for supporting the Client's Global Vendor Security program. This individual will be working directly with business and technology leaders to understand vendor security issues and risks overseeing vendor security assessment efforts prioritizing vendor security assessment activities, and negotiations involving contract terms related to Information Security Requirements. We are looking for someone with security, communication, negotiation, and writing skills, experience with Information Security and Risk Management practices and principles. The successful candidate will also have an understanding of information protection requirements and solutions as well as the threats and challenges impacting the protection of information across an extended global enterprise. The successful candidate will have a good blend of experience working within legal, vendor management, and information security riskgovernance The ideal candidate bull Work with the client's business and technology partners to evaluate information security risks related to strategic vendors and partners. bull Communicate vendor security risks to business leaders to ensure a clear understanding of these risks. bull Negotiate Information Security contract requirements with Legal, Procurement, and VendorsPartners. bull Conduct information security program reviews of vendors to evaluate any critical risks. bull Establish and prioritize vendor security assessment activities. bull Negotiate remediation of security issues with vendors and third parties. bull Communicate and present key vendor security initiatives, practices, and issues to business units. bull Must be able to interface and coordinate work efficiently and effectively with business colleagues and vendors in global locations and time zones. Qualifications Mandatory bull Strong communication and negotiation skills. bull Strong writing skills with experience writing legal contract information security requirements preferred. bull Self-starter with the ability to manage multiple tasks concurrently. bull Ability to communicate effectively with technical staff, business owners, and leadership. bull 3+ years of experience in Information Security Risk functions within the vendor risk management area. bull 1+ years experience reviewing contracts and negotiating information securityprivacy contract terms. bull Experience using vendor cybersecurity scorecard platforms (BitSight, RiskRecon, SecurityScorecard, etc.) is strongly preferred. bull Strong analytical, organizational, and decision-making skills.