Join an investment boutique managing over $160 billion AUM in global and emerging market equities. With offices around the world, the firm prides itself on a culture of excellence, and delivering superior client outcomes. Join a collaborative and high-performing environment to play a key role in strengthening the security strategy and operations.
Role Overview: In this role, you will work closely with the Deputy CISO to help manage third-party risks, ensure compliance with security standards, and support various security operations initiatives. Your expertise will help protect and strengthen the firm's security infrastructure while collaborating with internal teams and external partners to mitigate risks.
Key Responsibilities:
- Lead third-party risk assessments and collaborate with procurement and legal teams to ensure vendor contracts meet security and privacy requirements.
- Monitor third-party risks and provide recommendations to address potential vulnerabilities.
- Develop and maintain reports, dashboards, and metrics to communicate risk status to stakeholders.
- Assist in incident response operations and collaborate with IT teams to enhance detection and response capabilities.
- Support the creation and delivery of security awareness training for employees.
- Work closely with various business units to align security risk management with organizational goals.
- Contribute to the continuous improvement of the firm's security posture and culture.
Qualifications:
- 3+ years of experience in information security, risk management, or a related field.
- Strong understanding of third-party risk management practices and frameworks.
- Experience in technical writing, particularly composing responses to due diligence inquiries.
- Knowledge of security and privacy regulations such as ISO 27001, NIST CSF, SOC 2, GDPR, etc.
- Familiarity with tools like Zscaler and experience with identity management is a plus.
- Excellent communication skills, with the ability to translate technical concepts to non-technical stakeholders.
- Bachelor's degree preferred, but relevant certifications may be considered.
