Lead IT Security Vendor Risk Management

About the Role
The IT Security Vendor Risk Management Specialist will work within the Global Information Security (GIS) team to support administrative and technical activities related to third-party vendor security management. This role requires a solid understanding of security architecture and controls, along with strong communication skills to engage effectively with vendors and internal stakeholders.

What You’ll Do

• Manage and track outstanding vendor security questionnaires and ensure timely completion

• Conduct comprehensive security risk assessments of third-party vendors

• Evaluate vendor compliance with cybersecurity and data protection standards (NIST, ISO 27001, SOC 2)

• Collaborate with vendors to understand their security posture and identify risk gaps

• Document assessment findings, risks, and remediation recommendations

• Monitor and track remediation activities to closure

• Stay current with emerging cybersecurity threats and best practices

• Work closely with Legal, Procurement, IT, and InfoSec teams to ensure policy alignment

What You Bring

• Good understanding of security architecture, security controls, and risk frameworks

• Experience with vendor risk assessment tools, especially ServiceNow VRM

• Basic knowledge of cloud security concepts, particularly AWS

• Strong analytical, documentation, and problem-solving skills

• Excellent written and verbal communication skills

• Preferred certifications: CISSP, CISM, or CRISC

Nice to Have (Optional)

• Experience in finance or highly regulated industries

• Exposure to additional third-party risk tools (e.g., Archer, OneTrust)

• Experience assessing cloud-based vendors and SaaS platforms

About Simeio and What We Do
Simeio has over 650 talented employees across the globe. We have offices in USA (Atlanta HQ and Texas), India, Canada, Costa Rica and UK.
Founded in 2007, and now backed by private equity company ZMC, Simeio is recognized as a top IAM provider by industry analysts.
Alongside Simeio’ s identity orchestration tool ‘Simeio IO’ - Simeio also partners with industry leading IAM software vendors to provide access management, identity governance and administration, privileged access management and risk intelligence services across on-premises, cloud, and hybrid technology environments.
Simeio provides services to numerous Fortune 1000 companies across all industries including financial services, technology, healthcare, media, retail, public sector, utilities and education.

Diversity & Inclusion
Simeio is an equal opportunity employer. If you require assistance with completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to our recruitment team - [email protected].
Thank you


About Your Application
We carefully review every application we receive. If your skills and experience match our needs, we’ll be in touch. If you don’t hear from us within 10 days, please don’t be discouraged—we may retain your application for future opportunities. We also encourage you to check our careers page for other openings

Simeio is an equal opportunity employer. If you require assistance with completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to any of the recruitment team at [email protected] or +1 404-882-3700.