Experienced Full Stack Cybersecurity GRC Professional – Remote Third Party Risk Management and Compliance Specialist at blithequark

Introduction to blithequark Imagine being part of a team that combines magic and innovation to create an enchanting world of wonder. At blithequark, we are passionate about delivering exceptional experiences that bring joy to people's lives. As a leader in the industry, we recognize the importance of cybersecurity in protecting our assets and maintaining the trust of our customers. Our cybersecurity team is dedicated to staying at the forefront of the latest technologies and trends, ensuring that our systems and data are secure and compliant with industry standards. Job Overview We are seeking an experienced Full Stack Cybersecurity GRC Professional to join our team as a Third Party Risk Management and Compliance Specialist. As a key member of our cybersecurity team, you will play a critical role in guiding GRC-related activities, ensuring the clean execution of various tasks, and assisting in the management of internal security compliance requirements. This is a remote, part-time or full-time opportunity that offers a competitive salary of $80,000 per year. Key Responsibilities Assist in the management of blithequark's Third Party Risk Management (TPRM) software and internal risk control processes Support the development and implementation of cybersecurity risk and compliance-related strategies, ensuring the treatment of cybersecurity risk consistent with the organization's risk appetite Validate incoming third-party risk assessment requests, operating with business stakeholders to confirm the details of the request and the scope of the engagement Conduct kick-off sessions with business stakeholders and related third parties, coordinating the distribution of due diligence questionnaires and reviewing submitted questionnaires for completeness Identify and assess risks arising from the current design and operational effectiveness of internal and third-party security controls, filing responses, associated findings, and remediation plans in blithequark's systems Draft and review reports for the checks performed, ensuring that respective business stakeholders finalize reviews Act as a strong liaison to ensure that any queries are responded to concerning the risk control technique and evaluation to the business or third parties as required Perform continuous monitoring of third parties via blithequark's systems for current/new findings and track any findings to closure Identify opportunities for improvement within blithequark's systems and strategies, working closely with the risk lead/supervisor to schedule and execute a range of different supporting activities related to the risk management program Essential Qualifications To be successful in this role, you will need to possess a strong understanding of information security-related best practices and requirements, including ISO 2700x, SOC 2 requirements, SSAE 16/18 requirements, and others. You should have experience in the management of risk, controls, and compliance, as well as expertise in risk evaluation methodologies – qualitative/quantitative. Preferred Qualifications A relevant Bachelor's or Master's degree from an accredited university or equivalent experience is preferred. You should have at least 4 years of experience in third-party risk management, information security, and audit & compliance tracking, with a minimum of 2-3 years in TPRM/internal audit. Preferred experience includes working with a large company and/or large four accounting firm, as well as one or more credentials – CISA, CRISC, ISO27001 L./LI, CISSP. Experience in AI/ML is a plus. Skills and Competencies To excel in this role, you will need to possess outstanding stakeholder management skills, a working understanding of information security-related best practices and requirements, and expertise in risk evaluation methodologies. You should have strong analytical and problem-solving abilities, as well as excellent presentation making and delivery skills. Personal attributes include robust interpersonal skills, the ability to navigate rapid-paced environments and be flexible with working hours, fantastic communication abilities, and the ability to adapt quickly to changing conditions and power high-quality change. Career Growth Opportunities and Learning Benefits At blithequark, we are committed to the growth and development of our employees. As a member of our cybersecurity team, you will have access to ongoing training and development opportunities, including workshops, conferences, and online courses. You will also have the chance to work with a talented team of professionals who are passionate about cybersecurity and dedicated to staying at the forefront of the latest technologies and trends. Work Environment and Company Culture Our company culture is built on a foundation of innovation, creativity, and collaboration. We believe in fostering a work environment that is inclusive, supportive, and empowering, where employees feel valued and encouraged to contribute their ideas and perspectives. As a remote employee, you will be part of a virtual team that is connected through regular video meetings, instant messaging, and collaboration tools. Compensation, Perks, and Benefits We offer a competitive salary of $80,000 per year, as well as a range of perks and benefits that include health insurance, retirement savings, and paid time off. You will also have access to a range of discounts and promotions on blithequark products and services. Conclusion If you are a motivated and experienced cybersecurity professional looking for a new challenge, we encourage you to apply for this exciting opportunity. As a Third Party Risk Management and Compliance Specialist at blithequark, you will play a critical role in protecting our assets and maintaining the trust of our customers. Don't miss out on this chance to join our team and contribute to the magic of blithequark. Apply now and take the first step towards an exciting and rewarding career in cybersecurity! Apply for this job