GRC SOC Expert

We're seeking a skilled Governance Risk & Compliance (GRC) professional to drive our clients Third Party Risk Management (TPRM) initiatives. As a key member of our clients team, you'll leverage your expertise to assess and mitigate risks associated with third-party vendors.

About the Role: We're looking for an experienced GRC professional to perform Third Party Risk Assessments, Vendor Tiering, Issue & Exception Management, and comprehensive documentation/reporting. If you have a passion for cybersecurity and risk management, we'd love to hear from you!

Key Responsibilities:

• Conduct third-party risk and vendor tiering assessments to identify potential threats
• Monitor compliance and manage exceptions to ensure risk mitigation
• Deliver actionable reports using analytics and AI-driven tools to stakeholders
• Collaborate with cross-functional teams to ensure effective risk management

Requirements:

• Over 3 years' experience in cybersecurity (risk assessment, security ops, penetration testing, network deployment, data privacy)
• Strong documentation and communication skills
• GRC certifications such as CISA & ISO27001LA (desirable)
• Willingness to travel and proactive risk mitigation mindset

Deliverables:

• Detailed TPRM finding reports
• Master data for each vendor site
• Regular remediation updates