Security Officer responsible for maintaining safety and security at Hilton in Harrisburg, PA. Conducting patrols, responding to emergencies, and supervising housekeeping staff.
About the role
- Security Third Party Risk Management Specialist managing vendor security reviews and risks at Cloudflare. Collaborating across teams to support third party risk management in a hybrid work environment.
Responsibilities
- Execute vendor security reviews by collecting and analyzing vendor security control documentation and audit reports.
- Assist in identifying third-party security risks, documenting findings, and recommending risk treatment options.
- Collaborate with the Contracts & Legal teams to ensure security contract requirements are incorporated into vendor agreements.
- Support the maintenance of Cloudflare’s vendor master list, ensuring data accuracy and proper classification of critical vendors.
- Help the team monitor current security events (e.g., zero-day vulnerabilities) and support outreach to vendors to confirm their status and remediation efforts.
- Gather and prepare evidence of vendor security reviews to support Cloudflare’s security certification audits.
- Liaise and coordinate with stakeholders across Cloudflare’s Procurement, IT, Contracts, Legal, and Privacy teams to ensure vendor due diligence workflows are completed efficiently.
- Assist in the ongoing improvement of the vendor security review process, documentation, and tooling.
- Some travel may be required to engage teammates and stakeholders in San Francisco, Austin, or other global Cloudflare locations.
Requirements
- 2-5 years working in Security GRC
- Experience reviewing vendor security documentation including ISO 27001, SOC 2, PCI DSS, and other audit reports
- Experience identifying security controls gaps, determining risk ratings, and recommending mitigating controls
- Familiarity with security contract requirements
- Strong organizational, analytical, and interpersonal skills
- Self-starter with the ability to work independently with a sense of curiosity
Benefits
- Health insurance
- Professional development opportunities
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Information Security Engineer managing incident detection and response for Safe - Guard Products. Involves vulnerability management, data protection, and security engineering activities.
Work Student, Product Security at TeamViewer supporting security initiatives for product safety. Opportunity to gain hands - on experience in an international environment with a focus on cybersecurity.
Cyber Security Detection Engineer focusing on threat detection capabilities and security telemetry within complex environments. Collaborating across Security Operations, Cloud Engineering, and Compliance disciplines.
Security Specialist managing mainframe security operations at PNC. Collaborating with teams on compliance and security risks while mentoring junior analysts.
Security Assurance Specialist coordinating security assessments within cybersecurity risk management at Vanguard. Ensuring effective risk and vulnerability management across applications and infrastructures.
Summer Intern supporting CIO PMO and Security teams at Sprinklr. Gaining hands - on experience in technology and security areas while assisting key initiatives.
Sicherheitsingenieur managing safety and integrated management systems for CRONIMET. Supporting the development of safety practices and conducting audits on various health and safety topics.
Senior Cloud Security Engineer securing public cloud platforms and services in the financial industry. Collaborating with teams to enhance security posture and ensure compliance in cloud environments.
Cybersecurity Metrics and Reporting Lead overseeing development of security metrics and dashboards. Collaborating with teams to improve cybersecurity program effectiveness and compliance tracking.