Full-Time

Vendor Risk Consultant

West Coast

Confirmed live in the last 24 hours

SecurityScorecard

SecurityScorecard

501-1,000 employees

Cybersecurity ratings and risk management platform

Data & Analytics
Cybersecurity

Compensation Overview

$115k - $135kAnnually

+ Performance-based Incentive Compensation + Equity

Senior

No H1B Sponsorship

Remote in USA

Category
Cybersecurity
IT & Security
Required Skills
Python
Data Analysis
Excel/Numbers/Sheets
Requirements
  • 5+ years of professional cybersecurity consulting experience, or similar.
  • Outstanding communication skills, and the ability to explain complex cybersecurity and vendor risk management concepts to non-technical audiences.
  • Strong understanding of cybersecurity concepts, technologies, and best practices.
  • Data analysis skills, using Microsoft Excel or similar, and common scripting languages, such as Python, to analyze complex data and provide trends and patterns.
  • Demonstrated ability to manage multiple client accounts simultaneously, prioritize tasks, and meet deadlines.
  • Work independently and collaboratively in a fast-paced, dynamic environment.
  • At least one certification in the following list is desired: CEH, GSLC, GCPM, GSTRT, GCCC, GSNA, CISSP, CISM, CISA or CRISC.
  • Experience conducting cybersecurity assessments and audits is desired.
  • Previous experience in vendor risk management is desired, but not required.
Responsibilities
  • Conduct risk assessments of customers’ potential and existing vendors to identify and mitigate potential risks.
  • Monitor and track vendor risk profiles and regularly report on potential and existing risks to customers and vendors.
  • Stay informed about current security threats and industry standards to continuously improve vendor risk management strategies.
  • Develop and maintain strong relationships with vendors to ensure ongoing compliance with security requirements.
  • Develop and maintain strong relationships with customers to help them understand the risks posed by their vendors.
  • Continuously assess the effectiveness of our customers’ vendor risk management programs, and provide advice and guidance on how to enhance the effectiveness.
  • Assess new and emerging cybersecurity findings identified by SecurityScorecard, and provide analysis and insight to vendors on how these impact their cybersecurity posture and how to mitigate and remediate these findings.

SecurityScorecard provides a security ratings platform designed to help businesses assess and improve their cybersecurity posture. The platform uses AI-driven analytics to identify and prioritize potential security threats, enabling clients to manage third-party cyber risks and comply with relevant regulations. Unlike many competitors, SecurityScorecard offers a unified view of threat and risk intelligence, allowing organizations to understand their vulnerabilities from an attacker's perspective. The company aims to create a safer world by making security ratings accessible to all organizations, emphasizing transparency in its methodologies and services.

Company Stage

Series E

Total Funding

$286.4M

Headquarters

New York City, New York

Founded

2013

Growth & Insights
Headcount

6 month growth

0%

1 year growth

0%

2 year growth

-1%
Simplify Jobs

Simplify's Take

What believers are saying

  • Being recognized as a leader in The Forrester WaveTM: Cybersecurity Risk Ratings Platforms, Q2 2024, enhances the company's credibility and market position.
  • The introduction of HEID AI, which significantly improves breach prediction accuracy, positions SecurityScorecard as an innovator in the cybersecurity space.
  • Winning multiple Global InfoSec Awards during the RSA Conference 2024 highlights the company's innovative and forward-thinking cybersecurity solutions.

What critics are saying

  • The legal dispute with Safe Security over alleged misappropriation of trade secrets could lead to financial and reputational damage.
  • The high concentration of cyber risk in a few vendors, as highlighted in their own research, poses a systemic risk that could impact SecurityScorecard's clients and, by extension, its own business.

What makes SecurityScorecard unique

  • SecurityScorecard's AI-driven analytics and breach prediction capabilities, such as HEID AI, offer an 80% increase in breach prediction accuracy, setting a new industry standard.
  • The company's commitment to transparency and making security ratings accessible to all organizations, regardless of customer status, distinguishes it from competitors.
  • SecurityScorecard's comprehensive approach, including cyber insurance and due diligence services, provides a unified view of threat and risk intelligence, unlike competitors who may focus on narrower aspects of cybersecurity.

Help us improve and share your feedback! Did you find this helpful?

Benefits

Health benefits

Education stipend

Unlimited PTO

Parental leave

401K

Stock options

Referral bonuses

Remote work available