Cyber Security Analyst
Sydney
UpGuard, Inc.
Third-party risk and attack surface management software. UpGuard is the best platform for securing your organization’s sensitive data. Our security ratings engine monitors millions of companies and billions of data points every day.
Who are we?
UpGuard’s mission is to protect the world’s data. We obsessively seek out elegant, robust ways to enable our customers to find, acknowledge, and remediate cyber risk. With UpGuard, organizations leverage our security expertise and software to automate what were once laborious, spreadsheet-driven processes–whether it's monitoring the attack surface of hundreds of vendors or assessing the security of their own infrastructure. UpGuard is used by some of the world’s largest, fastest growing, and most innovative companies.
Why are we hiring this role?
We have successfully implemented third party security risk managed services for our customers and the demand is high! We are looking for an Analyst to jump on board with our TPRM Director to enhance and scale these efforts. If you are you looking for a huge growth opportunity where you can have high impact and exposure then this is for you!
UpGuard’s mission is to protect the world’s data. We obsessively seek out elegant, robust ways to enable our customers to find, acknowledge, and remediate cyber risk. With UpGuard, organizations leverage our security expertise and software to automate what were once laborious, spreadsheet-driven processes–whether it's monitoring the attack surface of hundreds of vendors or assessing the security of their own infrastructure. UpGuard is used by some of the world’s largest, fastest growing, and most innovative companies.
Why are we hiring this role?
We have successfully implemented third party security risk managed services for our customers and the demand is high! We are looking for an Analyst to jump on board with our TPRM Director to enhance and scale these efforts. If you are you looking for a huge growth opportunity where you can have high impact and exposure then this is for you!
What will you accomplish?
- Translate complex and technical aspects into a report so that the business can understand it
- Partner with customers to identify, measure and manage Third Party Security risks and controls
- Assist with standardised reports, templates and scorecards used to inform customers on third party security risks
- Perform data leaks searches on each managed service vendor
- Work closely with various teams including, sales and customer success to understand the changing needs of our customers
- Develop and maintain working knowledge of emerging financial, operational, third party and regulatory/compliance related information to contribute to the continuous improvement of the Third Party Security risk management offering
What do we need from you?
- Knowledge of relevant security frameworks, standards, requirements, laws e.g. ISO 27001, PCI DSS, APRA CPS 234, NIST CSF etc.
- Thorough understanding of cybersecurity risk management.
- 3+ years of experience in Risk Management, Third Party Risk, Auditing or the equivalent.
- Understanding of Third Party risk management practices, including the lifecycle of risk identification, treatment, mitigation, acceptance, remediation as well as inherent and residual risks.
- Have a track record of mastering highly technical problem spaces.
- Possess strong written and verbal communication skills, with a talent for precise articulations of customer problems.
What would give you an edge?
- Bachelor Degree in the fields of Information Systems or related major.
- Any relevant professional certification, such as Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certified Regulatory Vendor Program Manager (CRVPM) or Certified Third Party Risk Professional (CTPRP).
- Performed data leaks assessments.
- Experience in Third Party Risk or Security Risk Management.
- Experience in managing customer expectations.
- Experience or a keen interest in cybersecurity.
What's in it for you?
- Rapidly growing user base: Work directly with some of the world’s largest, fastest growing, and most innovative companies
- Interesting problems, at scale: Deeply explore the ever-evolving world of cybersecurity, with a platform processing billions of data points daily
- Learn from industry-leading experts: Our security research has been featured in The New York Times, The New Yorker, The Washington Post, TechCrunch, Bloomberg, Gizmodo, Engadget, Forbes, ZDNet, and The Guardian
- Impact: See the impact of your work on a daily basis, with data and impact available on dashboards you have access to
- Generous compensation: Extremely competitive base salary and equity
- Great perks: Free lunch, flexible work arrangements, and gym reimbursement
Tags: Audits CISA CISM CISSP Compliance CRISC ISO 27001 Monitoring NIST PCI DSS Risk management
Perks/benefits: Competitive pay Equity Flex hours Lunch / meals
Region:
Asia/Pacific
Country:
Australia
Job stats:
19
2
0
Category:
Analyst Jobs
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open Application security-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs
- Open CI/CD-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open DevSecOps-related jobs