Experienced Full Stack Cybersecurity GRC Professional – Third Party Risk Management and Compliance Specialist for Remote Data Entry Opportunities at blithequark

Introduction to blithequark Imagine being part of a team that combines magic and innovation to create an enchanting world of cybersecurity and data protection. At blithequark, we are passionate about aligning our business dreams with the latest technologies and industry guidelines to ensure a safe and secure environment for our customers. As a leader in the field of cybersecurity, we are committed to staying ahead of the curve and embracing new innovations to ease the magic of our operations. About the Role We are seeking an experienced GRC professional to join our team as a Cybersecurity GRC Specialist, focusing on Third Party Risk Management and Compliance. As a key member of our Cybersecurity crew, you will be responsible for guiding GRC-related activities, ensuring clean everyday execution of various tasks, and assisting in the management of internal security compliance requirements and implementation of regulations, tactics, and frameworks. Key Responsibilities Third Party/Inner Risk Management (TPRM) software management and support Assist in the development and implementation of blithequark's global Third-Party/Internal Risk Method for conducting cyber risk-related due diligence exams Validate incoming Third-Party/Internal Risk Assessment requests, working with business stakeholders to confirm the details of the request and the scope of the engagement Conduct kick-off sessions with business stakeholders and related Third-Parties for conducting the TPA Coordinate the distribution of due diligence questionnaires to internal stakeholders/Third-Parties, review submitted questionnaires for completeness, and identify risks arising from the current design and operational effectiveness of the internal/Third-Party's security controls File responses, associated findings, and remediation plans in blithequark systems Draft/review reports for the checks performed and ensure respective business stakeholders finalize reviews Act as a strong liaison to ensure any queries are responded to concerning the Risk Control Technique and evaluation to the business or Third-Parties as required Carry out continuous monitoring of Third-Parties via blithequark systems for current/new findings and track any findings to closure Identify opportunities for improvement within blithequark systems and strategies Work closely with Risk Lead/Supervisor to schedule and execute a range of different supporting activities related to the Risk Management Program Governance, Risk, and Compliance In this role, you will also be responsible for leading and supporting the development of cybersecurity risk and compliance-related strategies to ensure treatment of cybersecurity risk consistent with blithequark's risk appetite. You will maintain and document compliance towards information security associated guidelines and processes through planning, testing, remediating, monitoring, and reporting on control reviews and risk assessments. Essential Qualifications To be successful in this role, you will need: Outstanding stakeholder management skills Working understanding of information security related high-quality practices and requirements, including ISO 2700x, SOC 2 requirements, SSAE 16/18 requirements, and others Experience in the management of risk, controls, and compliance Expertise in risk evaluation methodologies – qualitative/quantitative Super analytical and problem-solving abilities Super presentation making and delivery abilities Strong interpersonal skills Ability to navigate rapid-paced environments and be flexible with working hours Fantastic communication abilities, both verbal and written Adapt quickly to changing conditions and power high-quality change Preferred Qualifications While not essential, the following qualifications are preferred: Relevant Bachelor's/Master's degree from an accredited university or equivalent experience 4 years of experience in Third-Party Risk Management, Information Security, and Audit & Compliance tracking (minimum of 2-3 years in TPRM/Internal Audit) Preferred experience with a large company and/or Large Four accounting company One or more credentials - CISA, CRISC, ISO27001 L. /LI, CISSP Experience in AI/ML is a plus Career Growth Opportunities and Learning Benefits At blithequark, we are committed to the growth and development of our employees. As a Cybersecurity GRC Specialist, you will have access to a range of training and development opportunities, including: Professional certifications and training programs Mentorship and coaching from experienced professionals Opportunities to work on high-profile projects and collaborate with cross-functional teams Access to the latest technologies and industry trends Work Environment and Company Culture At blithequark, we pride ourselves on our dynamic and inclusive work environment. As a remote employee, you will be part of a global team that values flexibility, creativity, and innovation. Our company culture is built on the following principles: Collaboration and teamwork Open communication and transparency Embracing diversity and inclusion Continuous learning and development Recognizing and rewarding outstanding performance Compensation, Perks, and Benefits We offer a competitive salary range of $80,000 per year, depending on experience. In addition to your salary, you will also be eligible for a range of perks and benefits, including: Comprehensive health insurance Retirement savings plan Professional development opportunities Access to the latest technologies and industry trends Conclusion If you are a motivated and experienced GRC professional looking for a new challenge, we encourage you to apply for this exciting opportunity to join our team at blithequark. As a Cybersecurity GRC Specialist, you will be part of a dynamic and innovative team that is passionate about creating a safe and secure environment for our customers. Don't miss out on this opportunity to take your career to the next level and apply now! Apply for this job