Senior CyberSecurity

Saige PartnersSan Jose, CA
Onsite

About The Position

This position focuses on Governance & Compliance Leadership, Risk Management & Assessment, Identity & Access Governance, Third-Party Risk Management (TPRM), and Policy & Process Engineering within the cybersecurity domain. The role involves developing and managing compliance programs, leading cybersecurity risk assessments, overseeing access reviews, vetting vendors, and maintaining security policies and procedures.

Requirements

  • Minimum 10 years of experience managing Cybersecurity compliance programs from inception to completion.
  • Hands-on experience with SOC 2 and a deep understanding of IT technical security controls.
  • Expert knowledge of industry-standard programs (e.g., ISO 27001, CIS v8.1, NIST 800-53, NIST 800-171, CMMC, FedRAMP).
  • Strong analytical thinking with the ability to prioritize complex tasks within a fast-paced, evolving environment.
  • A strong foundation in IT security concepts with a heavy emphasis on Security Risk Assessment.
  • Relevant professional certifications such as CISSP, CISM, or CISA.

Responsibilities

  • Develop and manage the overarching Compliance Program to ensure alignment with industry standards (e.g., SOC2, NIST 800-171, ISO 27001, NIST 800-53).
  • Partner with IT Security Operations to ensure security controls are properly designed, implemented, and operating effectively.
  • Lead the end-to-end cybersecurity audit process (internal and external), including the preparation of response documentation and the execution of remediation plans.
  • Develop and distribute high-level information security reports and compliance dashboards to key stakeholders.
  • Lead comprehensive cybersecurity risk assessments across the enterprise, identifying vulnerabilities and recommending prioritized mitigation strategies.
  • Develop and maintain the Corporate Risk Register, tracking risk acceptance, treatment plans, and residual risk.
  • Perform quantitative and qualitative risk analysis to inform executive decision-making and resource allocation.
  • Oversee and collaborate with stakeholders to execute quarterly user access reviews (UAR) and monthly user activity monitoring.
  • Ensure timely completion, technical accuracy, and rigorous documentation of all access reviews to meet audit requirements.
  • Analyze access trends and "over-privileged" accounts to recommend Least Privilege improvements and role-based access control (RBAC) refinements.
  • Own and maintain Third-Party Risk Management evaluation practices, ensuring vendors are vetted against corporate security standards to mitigate supply-chain risk.
  • Author, maintain, and update information security policies and Standard Operating Procedures (SOPs) to ensure alignment with evolving industry standards.
  • Manage and govern Change Management processes to ensure security stability and compliance during technical transitions.

Benefits

  • Benefit package
  • Convenient weekly payment solutions
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service