Governance & Compliance Analyst - TPRM (EST Preferred)

About The Position

Requirements

• 3+ years of experience within the Governance, Risk, and Compliance space.
• Passion for security and keeping Wiz safe.
• Ability to collaborate with technical and non-technical teams alike to further oversight responsibilities of Security.
• Baseline knowledge of security and compliance frameworks such as NIST, ISO 27001, SOC2, GDPR, etc.

Nice To Haves

• Experience working in a SaaS/tech environment
• Experience working within a global team environment

Responsibilities

• Assist in the management of Wiz’s Third Party Risk Management (TPRM) program
• Execute third-party risk assessments to assess vendor security maturity and risk, utilizing procurement, third-party risk, and enterprise risk management tools
• Work closely with business stakeholder to confirm the details and scope of the third party engagements
• Document third party risk findings and track findings to closure, perform ongoing monitoring of third parties
• Stay abreast of security and regulatory trends, new guidelines, technology, and internal policy modifications to identify new key risk areas
• Collaborate and work cross-functionally across the company to deliver successful security compliance programs, partnering with Procurement, Security, Legal, and more.
• Promote a culture of security and compliance throughout the organization to maintain simplicity and scale.
• Continuously improve processes, tools, and procedures for audit and compliance management
• Collaborate and work cross-functionally across the company to address governance and compliance needs and to support the Wiz Control Framework, partnering with Engineering, Product, Sales, Legal, HR, and other teams.
• Proactively improvement control design and performance to address a changing risk landscape
• Deliver timely audits (SOC 2, ISO, PCI, etc.) through working with internal and external auditors