Security Analyst supporting delivery of managed security services for higher education clients at Asiera. Responsibilities include incident management, threat hunting, and collaboration with multiple teams.
About the role
- Information Security Analyst evaluating cybersecurity and third-party risk for clients in regulated industries. Utilizing VRM and Cybersecurity Compliance platforms to ensure rigorous security standards.
Responsibilities
- Identify and mitigate risks within third-party environments by meticulously reviewing security documentation and assessments.
- Review vendor risk by evaluating security assessments and documentation; deliver actionable recommendations to strengthen client risk postures.
- Conduct comprehensive vulnerability scans and penetration tests for Smarsh customers using industry-leading, off-the-shelf security tools.
- Produce detailed technical reports that categorize vulnerabilities and provide actionable remediation strategies to help clients resolve security gaps.
- Serve as a subject matter expert and primary point of contact, guiding clients through platform features and cybersecurity best practices via phone and email.
- Manage regular client engagements, deliver high-quality due diligence reports, and contribute to the continuous improvement of Smarsh VRM team operations.
Requirements
- 3–5 years of professional experience specifically within Vendor Risk Management or Information Security.
- Relevant industry certifications are highly desirable (e.g., CTPRP, CISA, CISM, CRISC).
- Familiarity with tools such as Nessus, Metasploit, or Cobalt Strike.
- Strong understanding of TCP/IP networking, server administration, and cybersecurity controls (processes, procedures, and policies).
- Proficient in Salesforce CRM, Microsoft Office Suite, and MS Teams.
- Ability to use AI tools to automate repetitive tasks, such as data mapping, report drafting, or initial vendor documentation reviews.
- Utilize and recommend enhancements to Smarsh’s AI review tools to automate the extraction of critical data from vendor security documentation.
- Proven ability to review complex security assessments for completeness and overall risk impact.
- Exceptional written and verbal communication skills with a "customer-first" mindset.
- Ability to manage multiple parallel workstreams and document processes accurately under tight deadlines.
- A proactive, self-motivated professional capable of working independently for extended periods while maintaining high standards.
Benefits
- Competitive salary
- Flexible working hours
- Professional development budget
- Home office setup allowance
- Global team events
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Cybersecurity Analyst designing and improving information security processes at Localiza&Co. Collaborating with various teams to ensure governance and data safety.
Associate Cybersecurity Analyst executing the Cybersecurity Program at GM Financial, managing risks and ensuring security for company assets.
Level 1 Cyber Security Analyst analyzing and escalating cyber - security alerts in log aggregation tools. Engaging in incident follow - up and basic automation in a supportive team environment.
Analista de Segurança, Saúde e Meio Ambiente na ANDRITZ gerenciando indicadores e programas de HSE. Engajando - se em auditorias e treinamentos para garantir a conformidade e segurança.
Cybersecurity Analyst with Incident Responder experience for SOC Team at NTT DATA Romania. Monitor and respond to security alerts while collaborating with clients.
Cyber Security Analyst Intern gaining hands - on experience in information security through guided participation and real - world tools. The role is part - time with remote and hybrid options from U.S. locations.
Application Security Analyst supporting vulnerability management program at Accurate Background. Focusing on developer communication and tooling operations for application security insights.
Security Compliance Analyst supporting IT Security compliance and risk management initiatives at Acosta Group. Engaging with cross - functional teams to ensure adherence to regulatory and security frameworks.
Senior Cyber Security Analyst at Peach Payments responsible for facilitating security operations in Cape Town hub. Ensuring compliance and supporting security infrastructure for digital payments across Africa.