Full-Time GRC consultant Job based in Lexington MA
• Knowledge with ServiceNow GRC preferred.
• Expertise with reviewing information security contract language
• Perform vendor security assessments of compliance and risk scope and leverage GRC tools to track, monitor and report findings and remediation.
• Drive vendor assessment process end to end (determine risk levels of relationships , follow-up with internal and vendor teams etc.)
• Help with fine tuning vendor security assessment questionnaire (NIST 800:53, SIG, CAIQ)
• Identify, review, track and report vendor risks using manual tools and/or Shire GRC Platform
• Help Shire to continually mature vendor security assessment process
• Establish and fine tune gates with other departments (Interested parties and consumers of vendor security assessment reports)
• Manage stakeholder relationships
29 total views, 1 today