Senior Information Security Specialist

Job Summary

A company is looking for a Senior Information Security Specialist to enhance cybersecurity and GRC programs.

Key Responsibilities

• Perform and maintain third-party risk assessments and track vendor remediation activities
• Support coordination and analysis of internal and external security testing, including vulnerability scans and penetration tests
• Develop and follow up on corrective action plans for identified security gaps or audit findings

Required Qualifications

• 5+ years of experience in information security, GRC, or IT risk management
• Strong understanding of cybersecurity concepts, controls, and risk frameworks
• Demonstrated experience with third-party risk management processes and tooling
• Proven ability to coordinate security testing and vulnerability management efforts
• Experience with regulatory compliance and audit support in fast-paced environments