
Vendor Risk Consultant
3 weeks ago
Join to apply for the Vendor Risk Consultant role at SecurityScorecard
SecurityScorecard is the global leader in cybersecurity ratings, with over 12 million companies continuously rated, operating in 64 countries. Founded in 2013 by security and risk experts Dr. Alex Yampolskiy and Sam Kassoumeh and funded by world-class investors, SecurityScorecard's patented rating technology is used by over 25,000 organizations for self-monitoring, third-party risk management, board reporting, and cyber insurance underwriting; making all organizations more resilient by allowing them to easily find and fix cybersecurity risks across their digital footprint.
Headquartered in New York City, our culture has been recognized by Inc Magazine as a "Best Workplace," by Crain's NY as a "Best Places to Work in NYC," and as one of the 10 hottest SaaS startups in New York for two years in a row. Most recently, SecurityScorecard was named to Fast Company's annual list of the World's Most Innovative Companies for 2023 and to the Achievers 50 Most Engaged Workplaces in 2023 award recognizing "forward-thinking employers for their unwavering commitment to employee engagement." SecurityScorecard is proud to be funded by world-class investors including Silver Lake Waterman, Moody's, Sequoia Capital, GV and Riverwood Capital.
About the RoleSecurityScorecard's MAX team delivers vendor risk management services on behalf of customers. Our MAX team is growing and we are seeking a Vendor Risk Consultant to join our team and help us manage and mitigate cyber risks associated with our customers' vendors. This is an exciting opportunity to work alongside some of the largest companies in the world and make a significant impact on their business by ensuring that their information is held securely by their vendors.
Responsibilities- Assess and Reduce Risk: Conduct cybersecurity risk assessments on potential and existing vendors within MAX customer portfolios to identify and reduce business risks.
- Advise Stakeholders: Serve as a trusted advisor to both customers and their vendors, translating technical risk findings into clear business impacts and risk management actions.
- Apply Threat Intelligence: Leverage SecurityScorecard's proprietary findings and all-source threat intelligence to assess emerging risks, advise vendors on impacts, and guide remediation.
- Build and Maintain Relationships: Foster trust with both customers and vendors as you help each understand risks, ensure ongoing compliance with requirements, and prevent incidents.
- Enhance Customer Risk Programs: Evaluate the maturity of vendor risk management programs and recommend improvements to strengthen governance and operational processes.
- Monitor & Elevate Vendor Security: Track and report on vendor risk profiles, proactively identifying trends, emerging threats, and opportunities for program improvement.
- Manage Multiple Engagements: Orchestrate concurrent client programs, ensuring consistent delivery excellence, measurable results, and alignment with regulatory and industry standards.
- Experience: 5+ years of demonstrated professional cybersecurity consulting experience or similar.
- Communications Skills: Outstanding ability to explain complex cybersecurity and vendor risk concepts to a range of technical and non-technical audiences, in both written and verbal form.
- Cybersecurity Expertise: Strong comprehension and ability to apply cybersecurity concepts, frameworks, technologies, controls, threat knowledge, and best practices to vendor risk.
- Analytical Skills: Proficiency in common scripting languages (Python preferred) and/or Microsoft Excel (or equivalent) to analyze complex data, build trends, and spot patterns.
- Client & Program Management: Demonstrated success managing multiple external clients and projects simultaneously, prioritizing competing demands, and meeting deadlines.
- Solo and Team Excellence: Ability to thrive in fast-paced independent and collaborative settings.
- Desired Certifications (One or More Completed): CRISC, CISSP, CISM, CISA, GSTRT, GCCC, GSLC, or GSNA. CRVPM, CTPRP, ISO 27001 Lead Auditor or technical certs are also a plus.
- Languages: English (fluent). Other regional languages are a plus.
- Other Desired Experience: Experience conducting cybersecurity audits, vendor risk assessments or broader vendor risk management.
Specific to each country, we offer a competitive salary, stock options, Health benefits, and unlimited PTO, parental leave, tuition reimbursements, and much more
The estimated total compensation range for this position is $120,000 - $150,000 (base plus bonus). Actual compensation for the position is based on a variety of factors, including, but not limited to affordability, skills, qualifications and experience, and may vary from the range. In addition to base salary, employees may also be eligible for annual performance-based incentive compensation awards and equity, among other company benefits.
SecurityScorecard is committed to Equal Employment Opportunity and embraces diversity. We believe that our team is strengthened through hiring and retaining employees with diverse backgrounds, skill sets, ideas, and perspectives. We make hiring decisions based on merit and do not discriminate based on race, color, religion, national origin, sex or gender (including pregnancy) gender identity or expression (including transgender status), sexual orientation, age, marital, veteran, disability status or any other protected category in accordance with applicable law.
We also consider qualified applicants regardless of criminal histories, in accordance with applicable law. We are committed to providing reasonable accommodations for qualified individuals with disabilities in our job application procedures. If you need assistance or accommodation due to a disability, please contact
Any information you submit to SecurityScorecard as part of your application will be processed in accordance with the Company's privacy policy and applicable law.
SecurityScorecard does not accept unsolicited resumes from employment agencies. Please note that we do not provide immigration sponsorship for this position.
Seniority level- Not Applicable
- Full-time
- Consulting and Information Technology
- Data Security Software Products, Computer and Network Security, and Technology, Information and Media
#J-18808-Ljbffr
-
Vendor Risk Consultant
3 weeks ago
Brisbane, Queensland, Australia SecurityScorecard Full timeJoin to apply for the Vendor Risk Consultant role at SecurityScorecardSecurityScorecard is the global leader in cybersecurity ratings, with over 12 million companies continuously rated, operating in 64 countries. Founded in 2013 by security and risk experts Dr. Alex Yampolskiy and Sam Kassoumeh and funded by world-class investors, SecurityScorecard's...
-
Vendor Risk Management Expert
2 weeks ago
Brisbane, Queensland, Australia beBeeCybersecurity Full time $120,000 - $150,000Job Title: Cybersecurity Risk SpecialistJob Description:Our organization is seeking a skilled Cybersecurity Risk Specialist to join our team. As a key member of our cybersecurity group, you will be responsible for assessing and reducing risks associated with vendors.Key Responsibilities:Conduct thorough risk assessments on potential and existing vendors...
-
Lead Vendor Risk Manager
2 weeks ago
Brisbane, Queensland, Australia beBeeRisk Full time US$120,000 - US$150,000Vendor Risk Management ExpertThis role involves conducting thorough assessments of vendors to identify and mitigate potential business risks. Effective collaboration with customers and vendors is essential to ensure ongoing compliance and prevent incidents.About the PositionConduct in-depth risk assessments to evaluate vendor maturity levels and provide...
-
Risk Consultant Specialist
2 weeks ago
Brisbane, Queensland, Australia beBeeVendor Full time $120,000 - $150,000Business Risk Manager OpportunityWe are seeking a Business Risk Manager to join our team, delivering business risk management services to customers. This is an exciting opportunity to work with some of the largest companies in the world and make a significant impact on their business by ensuring that their information is held securely.Key...
-
Cybersecurity Risk Management Specialist
2 weeks ago
Brisbane, Queensland, Australia beBeeRisk Full time US$120,000 - US$150,000Join a fast-paced cybersecurity team and become a key player in managing and mitigating cyber risks associated with customers' vendors. Our Vendor Risk Consultant will conduct thorough risk assessments on potential and existing vendors to identify and reduce business risks.The ideal candidate will have 5+ years of professional cybersecurity consulting...
-
Technology Vendor Manager
1 week ago
Brisbane, Queensland, Australia Icon Group Full time**Information Technology****Brisbane****Full Time****Icon Group**Icon Group is Australia's largest dedicated cancer care provider and has expanded globally into Singapore, Mainland China, Hong Kong and New Zealand. We are built on a strong but simple vision - to deliver the best care possible, to as many people as possible, as close to home as possible.With...
-
Vendor Management Officer
2 weeks ago
Brisbane, Queensland, Australia Queensland Government Full time**Your typical day as a Vendor Management Officer may include:- Reviewing and interpreting a Vendor Performance and Incident Report, identifying key contract risks, and potential corrective actions.- Attending a contract management meeting and documenting meeting minutes with clear action owners.- Contributing to a procurement planning meeting, where you...
-
Consultant - Risk Consulting
2 weeks ago
Brisbane, Queensland, Australia Marsh Full time**We're Marsh**Marsh is the world's leading insurance broker and risk advisor. We protect and promote possibility - helping our clients dream bigger, reach further, and plan for the opportunities ahead.**What can you expect?**A unique WHS consulting opportunity exists within our Health and Safety Consulting practice. The WHS Consultant role reports to the...
-
It Vendor Manager
2 weeks ago
Brisbane, Queensland, Australia Australian Retirement Trust Full time**Take hold of a monster opportunity** as an IT Vendor Manager in our Technology Enabling Services team on a full-time, permanent basis**. If you're a good fit for this role and live in Brisbane, Sydney or Melbourne, we'd love you to apply.****Why join us?**- You'll get 14% super as standard, to help your future come alive.- Unleash your potential and build...
-
Senior Vendor Partnerships Specialist
2 weeks ago
Brisbane, Queensland, Australia beBeeVendor Full time $110,787 - $118,529Job Summary:The key objective of this role is to identify and capitalize on opportunities for driving value out of vendor partnerships.Main Responsibilities:Deliver expert knowledge of vendor contract details to support divisional goals.Analyse current and future demand for data and technology goods and services, and provide strategic advice on contract...