Sr. InfoSec Quality and Compliance Analyst - India (Third-Party Security Management program)
India - Bengaluru
Illumina
Illumina sequencing and array technologies fuel advancements in life science research, translational and consumer genomics, and molecular diagnostics.Position Summary:
The Sr.IT Security Risk & Compliance Analyst will work within the Information Security Governance Risk and Compliance team to support the Third-Party Security Management program during the vendor onboarding process.
With an immediate goal to provide support in executing the program’s operations during vendor onboarding activities including but not limited to identifying, assessing, and monitoring of third-party data security risks in collaboration with internal stakeholders, subject matter experts and business owners alike. The position requires ability to operate with remote supervision, with high customer satisfaction, efficiency, and accountability towards the success of the program. This position interacts with all tiers of staff and management and must possess strong organizational skills.
Responsibilities:
- Execute Illumina’s Third-Party Risk Management Program and Policy ensuring proper risk assessment methodology is applied to vendor onboarding.
- Aid vendor onboarding stakeholders in negotiating vendor contracts specific to security obligations.
- Work within the Third-Party Risk Management tool to maintain vendor information, engagement details, data risk details and other relative information.
- Enhance elements of the existing Third-Party Risk program including the creation dashboards, relevant metrics, and reporting, among other areas.
- Provide internal and external audit support related to third-party risk management control requirements and other audit activities.
- Monitor and respond to incoming requests in the ticketing system for new application requests.
Listed responsibilities are an essential, but not exhaustive list, of the usual duties associated with the position. Changes to individual responsibilities may occur due to business needs.
Requirements:
- Experience with third-party risk frameworks and methodologies.
- Strong familiarity with industry standard security audits and other frameworks – e.g., ISO:27001, SOC2, NIST CSF, CIS Critical Security Controls
- Strong project and organizational skills to maintain and manage activities around vendor onboarding activities.
- Experience working within a distributed team in multiple geographical locations.
- Strong oral and written skills to persuade, direct and advise stakeholders on security compliance processes.
- Understanding of cloud infrastructure and general IT controls
- Ability to articulate security & compliance requirements & strategy and provide tailored approach to meet the business needs.
- Experience and leadership in fast-paced project implementations.
- Excellent customer service and communication skills.
- Strong knowledge of OneTrust assessment platform. GRC tool is a plus.
- Experience and leadership in fast-paced project implementations.
All listed requirements are deemed as essential functions to this position; however, business conditions may require reasonable accommodations for additional task and responsibilities.
Experience/Education:
- Typically requires a bachelor’s degree and a minimum of 5 years of related experience.
#LI-HYBRID
#illuminacareers
Illumina believes that everyone has the ability to make an impact, and we are proud to be an equal opportunity employer committed to providing employment opportunity regardless of sex, race, creed, color, gender, religion, marital status, domestic partner status, age, national origin or ancestry, physical or mental disability, medical condition, sexual orientation, pregnancy, military or veteran status, citizenship status, and genetic information.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Cloud Compliance Governance Monitoring NIST Risk assessment Risk management SOC 2 Strategy
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs