![Meta Platforms, Inc.](https://media.trabajo.org/img/noimg.jpg)
ISSO GRC Third Party Security
1 month ago
We are creating an operationally effective and highly efficient "service of common concern" for all Integrity, Security, Support, and Operations (ISSO) Governance, Risk, and Compliance (GRC) needs, ensuring Integrity, Security, Support, and Operations continue to meet global regulatory requirements and manage risk. Meta's ISSO GRC is the central engine driving risk management and compliance at the company, supporting Meta and the family of apps. Security engineering is a critical component of supporting integrity and security risk domain governance, risk, and compliance (GRC). GRC initiatives are designed to enable the business to proactively manage risk, to protect sensitive information, and to meet or exceed legal and regulatory obligations and expectations. We're seeking deeply experienced, integrity and security talent to help enable and safeguard Meta's products and services which have a truly global scale. Our goal is to make Meta the premier place to work for governance, risk, compliance, security, and integrity professionals.
ISSO GRC Third Party Security Responsibilities
* Collaborate with team members and stakeholders to understand or identify defined work problems and program goals, prioritize deliverables, and discuss program impact.
Identify and implement opportunities for increased automation across the program factoring in emerging regulations and proactive detection of risks.
Increase Integration of systems to provision simplified engagements for the business, consolidated and efficient workflows, and consumable view of risk for leadership
Designing, implementing, and/or assessing security controls
Validating vulnerability assessments, controls testing outcomes
Identification of risks and detailing of a mitigation plan to ensure that the project stays on track, or is brought back on track in the event of delays or blockers.
Providing technical challenge to risk domain strategies, products, designs, features, components.
Support business travel on an as needed basis (up to 10%)
Minimum Qualifications
* 4 + years of experience in information security, cybersecurity, transparency reporting, integrity, and/or technology risk including one or more domains (e.g., access management, vulnerability management, change management, business continuity, application security, asset management).
2 + years of experience in undertaking and managing programs of work to deliver cyber security assessments that validate the existence and effectiveness of controls to assure the confidentiality, integrity and availability of data held within third party systems.
2 + years of experience in assessing security deficiencies in information systems and recommending mitigating controls in a corporate environment. Negotiates technical capabilities and remediation plans with senior cyber security leaders in third party suppliers.
Preferred Qualifications
* BSc/MSc or equivalent experience in Computer Science, Information Systems, Engineering, Cybersecurity or related field
Experience in technical challenge and validation of controls and features effectively analyzing risk, compliance, and maturity within the context of business, and technology problems
Experience in effectively analyzing risk, compliance, and maturity within the context of business, and technology problems.
Industry qualification (CISSP / CISA or similar)
Locations
About Meta
Meta builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps like Messenger, Instagram and WhatsApp further empowered billions around the world. Now, Meta is moving beyond 2D screens toward immersive experiences like augmented and virtual reality to help build the next evolution in social technology. People who choose to build their careers by building with us at Meta help shape a future that will take us beyond what digital connection makes possible today-beyond the constraints of screens, the limits of distance, and even the rules of physics.
Meta is committed to providing reasonable support (called accommodations) in our recruiting processes for candidates with disabilities, long term conditions, mental health conditions or sincerely held religious beliefs, or who are neurodivergent or require pregnancy-related support. If you need support, please reach out to accommodations-ext@fb.com.
$129,000/year to $189,000/year + bonus + equity + benefits
Individual pay is determined by skills, qualifications, experience, and location. Compensation details listed in this posting reflect the base salary only, and do not include bonus, equity or sales incentives, if applicable. In addition to base salary, Meta offers benefits. Learn more about benefits at Meta.
-
ISSO GRC Third Party Security
1 month ago
New York, United States META Full timeSummary: We are creating an operationally effective and highly efficient service of common concern for all Integrity, Security, Support, and Operations (ISSO) Governance, Risk, and Compliance (GRC) needs, ensuring Integrity, Security, Support, and Operations continue to meet global regulatory requirements and manage risk. Meta's ISSO GRC is the central...
-
GRC Security Program Manager
1 month ago
New York, United States Meta Platforms, Inc. Full timeMeta's Integrity, Security, Support & Operations Global Risk and Compliance (ISSO GRC) serves as the primary hub for risk management and compliance across the company, providing support to Meta and its family of apps. We are creating an operationally effective and highly efficient "service of common concern" for all Integrity, Security, Support, and...
-
GRC Security Program Manager
1 month ago
New York, United States Meta Platforms, Inc. Full timeWe are creating an operationally effective and highly efficient "service of common concern" for all Integrity, Security, Support, and Operations (ISSO) Governance, Risk, and Compliance (GRC) needs, ensuring Integrity, Security, Support, and Operations continue to meet global regulatory requirements and manage risk. Meta's ISSO GRC is the central engine...
-
GRC Integrity Program Manager
1 month ago
New York, United States Meta Platforms, Inc. Full timeWe are creating an operationally effective and highly efficient "service of common concern" for all Integrity, Security, Support, and Operations (ISSO) Governance, Risk, and Compliance (GRC) needs, ensuring Integrity, Security, Support, and Operations continue to meet global regulatory requirements and manage risk. Meta's ISSO GRC is the central engine...
-
GRC Integrity Program Manager
1 month ago
New York, United States Meta Platforms, Inc. Full timeWe are creating an operationally effective and highly efficient "service of common concern" for all Integrity, Security, Support, and Operations (ISSO) Governance, Risk, and Compliance (GRC) needs, ensuring Integrity, Security, Support, and Operations continue to meet global regulatory requirements and manage risk. Meta's ISSO GRC is the central engine...
-
Cyber Security Risk Consultant
4 weeks ago
New York, United States Purple Drive Solution Full timeRole: Cyber Security Risk Consultant (GRC Analyst) - Experience in executing security assessments in the Cloud and against third party SaaS solutions. - Expert knowledge of performing risk management based on NIST 800-53. - Experience in determining vulnerability risk impact. - Ability to contextualize security findings and lead the development squads in...
-
GRC Manager
1 month ago
New York, United States Cyera Full timeDescription GRC Manager (Governance, Risk, and Compliance Manager) Who We Are Come join the company reinventing data security, empowering businesses to realize the full potential of their data. As the leading data security platform purpose-built for the cloud era, Cyera's mission is to reinvent how businesses secure data, enable agile collaboration, and...
-
GRC Manager
3 weeks ago
New York, United States Deed Full timeWe are a purpose-driven team making it easier for people to help one another. We measure success in terms of volunteer hours and donation dollars contributed by our customers - and by the tangible outcome of those efforts. If this intersection of technology and impact interests you, please reach out - we’d love to chat about working together! Deed is a...
-
GRC Manager
3 weeks ago
New York, New York, United States Deed Full timeWe are a purpose-driven team making it easier for people to help one another. We measure success in terms of volunteer hours and donation dollars contributed by our customers - and by the tangible outcome of those efforts. If this intersection of technology and impact interests you, please reach out - we'd love to chat about working togetherDeed is a place...
-
Lead Security Risk Analyst
4 weeks ago
New York, United States Whistle Full timeWho We Are At Justworks, you’ll enjoy a welcoming and casual environment, great benefits, wellness program offerings, company retreats, and the ability to interact with and learn from leaders in the startup community. We work hard and care about our most prized asset - our people. We’re helping businesses get off the ground by enabling them to...
-
Security Grc Analyst
4 weeks ago
New York, United States Lambda Full timeLambda's GPU cloud is used by deep learning engineers at Stanford, Berkeley, and Carnegie Mellon. Lambda's on-prem systems power research and engineering at Intel, Microsoft, Kaiser Permanente, major universities, and the Department of Defense. If you'd like to build the world's best deep learning cloud, join us. - Note: This position requires presence New...
-
Third Party Risk
1 week ago
New York, United States TEKsystems Full timeJob DescriptionJob DescriptionTop Skills' Details* Knowledgeable in multiple areas of technology, with hands-on experience and technical expertise across all Information Security domains* Experienced with local, national, and international financial services and privacy regulations, such as GLBA, NYDFS, GDPR, CCPA, etc. and credit card industry...
-
Lead GRC Analyst
1 month ago
New York, New York, United States Justworks Full timeWho We AreAt Justworks, you'll enjoy a welcoming and casual environment, great benefits, wellness program offerings, company retreats, and the ability to interact with and learn from leaders in the startup community. We work hard and care about our most prized asset - our people.We're helping businesses get off the ground by enabling them to focus on running...
-
Information Security GRC ?
4 weeks ago
New York, United States Adobe Full timePlan, implement, upgrade, or monitor security measures for the protection of computer networks and information. Draft compliance reports to summarize the compliance objectives, key findings, and work with teams to remediate key findings. Identify internal controls issues, ensure they are well-defined and root causes are identified. Build and maintain...
-
Information Security GRC
1 month ago
New York, United States Adobe Full timePlan, implement, upgrade, or monitor security measures for the protection of computer networks and information. Draft compliance reports to summarize the compliance objectives, key findings, and work with teams to remediate key findings. Identify internal controls issues, ensure they are well-defined and root causes are identified. Build and maintain...
-
Third Party Cyber Resilience-Director
1 month ago
New York, United States SMBC Group Full timeThe anticipated salary range for this role is between $194,000.00 and $224,000.00. The specific salary offered to an applicant will be based on their individual qualifications, experiences, and an analysis of the current compensation paid in their geography and the market for similar roles at the time of hire. The role may also be eligible for an annual...
-
Third Party Cyber Resilience-director
2 weeks ago
New York, United States Sumitomo Mitsui Banking Corporation Full timeSMBC Group is a top-tier global financial group. Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance. The Group has more than 130 offices and 80,000 employees worldwide in nearly 40 countries. Sumitomo Mitsui Financial Group,...
-
Third Party Cyber Risk Assessor
4 weeks ago
New York, United States UBS Full timeUnited States - New York - Business management, administration and support - Group Functions **Job Reference #** - 295454BR **City** - New York **Job Type** - Full Time **Your role** - Are you keen on working in world class Cyber Security Operations Center for one of the best Swiss private banks? Do you have related experience and are willing to take it...
-
Third Party Cyber Risk Assessor
2 weeks ago
New York, United States UBS Full timeYour role Are you keen on working in world class Cyber Security Operations Center for one of the best Swiss private banks? Do you have related experience and are willing to take it further by learning how to defend an enterprise against cyber-attacks? Do you have the right attitude and are eager to join a multinational team of Cyber Security professionals?...
-
Third Party Risk Manager
3 weeks ago
New York, United States Pinnacle Group, Inc. Full timeJob Title: Third Party Risk ManagerLocation: Tampa FL/New York NYJob description:As a Third-Party Risk Management Senior Analyst, you will be responsible for supporting the implementation of the Third-Party Management Policy and Alternative Control Framework Third Party Management Standard across Markets. You will focus on implementing supplier level risk...