Security and Compliance Manager (Third Party Risk)

We are looking for a Risk Manager to review the security and compliance posture of third-party vendors and work with cross-functional stakeholders to mitigate against risk. 4+ years of work experience in Information Security; Governance, Risk and Compliance (GRC); or Audit. Experience in Third Party Risk Management is preferred but not required. Bachelor's or Master's degree in Information Security, Computer Science, Business Administration, or related field Knowledge of and interest in third party information security challenges and trends, including emerging threats; and general understanding of security and compliance certifications and frameworks such as SOC 2, ISO27001, NIST and PCI. Experience solving complex, systemic issues that require creative thinking and solutions Able to "wear multiple hats" at the same time and pivot quickly based on changes in the business. Must speak English proficiently Effective at written and oral communication. Highly organized with a strong attention to detail. You can easily translate business requirements into technical solutions and vice versa. Passionate for collaboration, metrics, process improvement, figuring stuff out, and making things better. Have integrity. Like to have fun. Make Mom Proud. Interact with suppliers and internal stakeholders to understand the business objectives and gather info needed for security and compliance reviews, validations, and audits. Manage and administer tools for performing supplier security and compliance reviews and risk mitigation. This includes data analytics and reporting on Third Party Risk Drive initiatives for strategic transformation and operational improvement Work hard, learn a lot, and have fun!