Lead Assessor - Third Party Risk
About The Position
ADP is Hiring a Lead Assessor - Third Party Risk Position summary The Lead Assessor will be responsible to assess the risk that will be introduced to ADP by adopting a new vendor service or product. This role requires strong analytical skills, technical expertise, and the ability to collaborate across global teams including Business Units, Procurement, Legal and other GSO teams. The ideal candidate will have a deep understanding of infrastructure and application security architecture, encryption mechanisms, access controls, business and system resiliency and other technical and organizational security concepts to identify and mitigate risks effectively. Like what you see? Apply now! Learn more about ADP at tech.adp.com/careers
Requirements
- You'll have a bachelor's degree or equivalent.
- Senior cyber security professional with at least 5 to 8+ years' experience, minimum 4 years focused on security risk assessments, audits of security or IT controls, or similar
- Strong knowledge of technical security domains, including cloud security, network architecture, vulnerability management, encryption, identity and access management
- Experience in reviewing and evaluating security controls, including reviews of architecture diagrams, vulnerability assessment results, API connections and other system integrations
- Proven ability to work independently and drive a topic
- Ability to communicate effectively in complex scenarios or explain security risks to technical and non-technical audiences
- Open minded and ability to work in a multinational environment
Nice To Haves
- Experience with cloud services, especially secure configuration aspects
- Curiosity and ambition to understand recent technology and emerging threats
- Familiarity with security related contract clauses
- Knowledge of different standards and frameworks like ISO 27001, SOC 2, NIST 800-53, or CSA CCM
- Certificates or certifications like CCSK, CISSP, CRISC, CISA are a plus
Responsibilities
- Perform security risk assessments of third parties to evaluate their security posture and ensure compliance with ADP standards and industry best practices
- Analyze penetration test results, architecture diagrams, redundancy and contingency plans and system integrations
- Identify, document and report security gaps, collaborating with business leaders and vendors to develop remediation strategies
- Monitor the remediation progress of identified security gaps, ensuring third parties address vulnerabilities in a timely manner
- Partner with stakeholders to increase third party risk awareness across the organization
- Maintain a broad knowledge of current and new technology to understand third-party offerings and internal business cases as well as the risk resulting from these
- Contribute to the continuous development of the third-party risk program
Benefits
- Medical
- Dental
- Vision
- Life Insurance
- Matched Retirement Savings
- Wellness Program
- Short-and Long-Term Disability
- Charitable Contribution Match
- Holidays
- Personal Days & Vacation
- Paid Volunteer Time Off
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Industry
Computing Infrastructure Providers, Data Processing, Web Hosting, and Related Services
Number of Employees
5,001-10,000 employees
