Sr. InfoSec Quality and Compliance Analyst - India (Third-Party Security Management program)
Illumina
- Bangalore, Karnataka
- Permanent
- Full-time
- Execute Illumina’s Third-Party Risk Management Program and Policy ensuring proper risk assessment methodology is applied to vendor onboarding.
- Aid vendor onboarding stakeholders in negotiating vendor contracts specific to security obligations.
- Work within the Third-Party Risk Management tool to maintain vendor information, engagement details, data risk details and other relative information.
- Enhance elements of the existing Third-Party Risk program including the creation dashboards, relevant metrics, and reporting, among other areas.
- Provide internal and external audit support related to third-party risk management control requirements and other audit activities.
- Monitor and respond to incoming requests in the ticketing system for new application requests.
- Experience with third-party risk frameworks and methodologies.
- Strong familiarity with industry standard security audits and other frameworks – e.g., ISO:27001, SOC2, NIST CSF, CIS Critical Security Controls
- Strong project and organizational skills to maintain and manage activities around vendor onboarding activities.
- Experience working within a distributed team in multiple geographical locations.
- Strong oral and written skills to persuade, direct and advise stakeholders on security compliance processes.
- Understanding of cloud infrastructure and general IT controls
- Ability to articulate security & compliance requirements & strategy and provide tailored approach to meet the business needs.
- Experience and leadership in fast-paced project implementations.
- Excellent customer service and communication skills.
- Strong knowledge of OneTrust assessment platform. GRC tool is a plus.
- Experience and leadership in fast-paced project implementations.
- Typically requires a bachelor’s degree and a minimum of 5 years of related experience.