
Junior Cybersecurity Risk Management Consultant
Posted 1 hour ago

Posted 1 hour ago
This is a fully remote position, open to applicants in California.
• Assist in the onboarding process of new third-party vendors into the organization’s Third-Party Risk Management (TPRM) program.
• Evaluate vendor intake requests to confirm that all necessary information is complete and accurate.
• Facilitate the distribution, collection, and monitoring of vendor security questionnaires and assessment documents.
• Track the progress of vendor assessments and proactively follow up on any outstanding questionnaires, evidence requests, and documentation.
• Keep precise assessment records and update workflows within the ServiceNow platform.
• Gather, organize, and preserve vendor security documentation, including policies, certifications, and supporting evidence.
• Oversee remediation efforts by tracking identified security deficiencies and following up on corrective measures.
• Verify that vendor security controls and supporting documentation align with established security requirements.
• Aid in vendor risk tracking, reporting, and status updates for internal stakeholders.
• Provide support for daily operational tasks within the Third-Party Risk Management program as assigned by the TPRM Manager.
• Ensure all assigned tasks are completed according to established priorities and deadlines.
• A minimum of 3 years of experience in supporting Third-Party Risk Management (TPRM), Vendor Risk Management (VRM), Cybersecurity Risk Management, and/or Governance, Risk & Compliance (GRC) programs.
• Proven experience in coordinating vendor security assessments and managing associated documentation.
• Familiarity with industry-standard security questionnaires (SIG, CAIQ, custom questionnaires, etc.).
• Experience utilizing ServiceNow.
• Understanding of cybersecurity controls and vendor risk assessment procedures.
• Excellent organizational skills with the capability to manage multiple vendor assessments concurrently.
• Exceptional written and verbal communication skills with experience in direct interactions with vendors and internal stakeholders.
• Strong attention to detail and the ability to maintain accurate records and documentation.
• Medical
• Dental
• Vision
• 401(k) (with a match)
CrowdStrike
ESA - Electronic Security Association
DKB Code Factory GmbH
Aledade, Inc.
Get handpicked remote jobs straight to your inbox weekly.