Vacancy caducado!
The Louisville, Kentucky office of an international law firm is seeking an
Vendor Security Analyst to join their team on a contract basis. This candidate will be responsible for supporting the firm's various vendor engagements to provide timely and efficient services to ensure compliance with set firm guidelines. Candidates will be responsible for performing threat detection and risk assessments for the firm's suppliers and partners.Strong preference for candidates to work in the Louisville office, but we are open to remote candidates as well.Responsibilities for this position are as follows:- Performing system risk assessments and audits of documentations involving vendor relationships.
- Applying firm specific guidelines and procedures to ensure compliance.
- Evaluating vendor responses to security questionnaires.
- Maintaining vendor risk repository of artefacts including third-party vendor certifications while assigning risk scores.
- Conducting on-site audits of high-risk vendors reviewing security and controls.
- A minimum of 2 years of experience supporting systems in a law firm or professional services environment.
- A Bachelor's degree in a related field preferred.
- Knowledge utilizing OneTrust software for Information Security assessments.
- Working experience in SIG (Standardized Information Gathering) questionnaire, penetration testing, vulnerability test, SOC (Service Organization Control) 1 and 2, Type 2.
- Strong understanding of technical concepts from systems, networks, and security architecture.
- Strong security risk identification (including cloud servers), assessment, and risk ranking experience.
- Ability to prioritize competing priorities.
- Must have the desire to work in a fast-paced, and high-volume environment.
- Strong verbal, written, and organizational skills.
Vacancy caducado!