Security Risk Manager
12 hours ago
About Company :
The company, publicly traded on the NYSE, reports annual revenues of approximately $450 million and holds a market capitalization near $3.5 billion. As a member of the S&P 600 Cosmetics Index since 2004, it has steadily expanded its brand portfolio. Today, it offers a diverse range of cosmetics, including Well People, a clean beauty label, and Keys Soulcare, a lifestyle beauty brand developed in collaboration with Alicia Keys. Its products are widely available online and at major U.S. retailers, with a steadily growing international presence.
Position Summary :
We are seeking a highly skilled and proactive Security Risk Manager to join our growing security team. You will be responsible for assessing, monitoring, and mitigating information security risks associated with third-party vendors and service providers. This role ensures vendor relationships comply with organizational security policies, industry regulations, and best practices to protect sensitive data and systems.
Key Responsibilities :
- Conduct comprehensive security risk assessments internally and of third-party vendors, including cloud providers, SaaS vendors, and IT service providers.
- Evaluate internal and third-party security controls, policies, and compliance with frameworks such as NIST, ISO 27001, SOC 2, GDPR, HIPAA, and PCI-DSS.
- Perform due diligence reviews, including security questionnaires, audits, and contract reviews.
- Identify, document, and prioritize risks related to vendor access, data handling, and system integrations.
- Work with procurement and legal teams to ensure security requirements are included in vendor contracts and SLAs.
- Prepare risk reports for senior leadership, highlighting key vendor risks and mitigation strategies.
- Communicate security expectations to vendors and internal stakeholders.
- Maintain a centralized vendor risk repository with up-to-date documentation.
- Stay updated on emerging threats, regulatory changes, and industry best practices.
- Enhance vendor risk assessment processes and tools for efficiency and effectiveness.
- Cross-train team members on risk management principles.
- Actively participate in the broader corporate security efforts, including infrastructure security, end-user training, and vulnerability management
Required Qualifications :
- Bachelors degree in Information Security, Cybersecurity, Risk Management, or related field.
- 5+ years of experience in IT risk management, vendor risk assessment, or third-party security evaluations.
- Strong knowledge of security frameworks (NIST, ISO 27001, SOC 2, GDPR, etc.).
- Experience with vendor risk assessment tools
- Strong GRC (Governance, Risk, and Compliance) platform knowledge.
- Familiarity with cloud security, data privacy laws, and contractual security clauses.
- Strong communication and interpersonal skills, with the ability to collaborate effectively with technical and non-technical stakeholders.
Preferred Qualifications :
- Industry certifications such as CISA, CRISC, CTPRP
- Experience in regulated industries (finance, healthcare, government).
- Knowledge of supply chain security risks and zero-trust architecture principles
- Experience with contract reviews to ensure security clauses (data protection, breach notification, audit rights).
- Knowledge of continuous monitoring strategies for vendors.
(ref:hirist.tech)
-
Sr. security analyst
2 weeks ago
Ahmedabad, India Eventus Security Full timePosition Title: Sr. Security Analyst Experience: 3yrs +Location: Ahmedabad (candidate based out at Gujarat preferred)Qualifications:BE/ B. Tech/ M. Tech/ MSc/ MCA qualification or equivalentAt least one of the following certifications - GCFA, GCFE, CISP, CISSP, CCNP, CCIE Security, CEH, CSA.Responsibilities:• Should have minimum of 3 years of experience in...
-
Sr. Security Analyst
3 weeks ago
Ahmedabad, Gujarat, India Eventus Security Full timePosition Title: Sr. Security Analyst Experience: 3yrs +Location: Ahmedabad (candidate based out at Gujarat preferred)Qualifications:BE/ B.Tech/ M.Tech/ MSc/ MCA qualification or equivalentAt least one of the following certifications - GCFA, GCFE, CISP, CISSP, CCNP, CCIE Security, CEH, CSA.Responsibilities:• Should have minimum of 3 years of experience in...
-
Sr. Security Analyst
3 weeks ago
Ahmedabad, Gujarat, India Eventus Security Full timePosition Title: Sr. Security Analyst Experience: 3yrs +Location: Ahmedabad (candidate based out at Gujarat preferred)Qualifications:BE/ B.Tech/ M.Tech/ MSc/ MCA qualification or equivalentAt least one of the following certifications - GCFA, GCFE, CISP, CISSP, CCNP, CCIE Security, CEH, CSA.Responsibilities:• Should have minimum of 3 years of experience in...
-
Sr. Security Analyst
2 weeks ago
Ahmedabad, India Eventus Security Full timePosition Title: Sr. Security Analyst Experience: 3yrs +Location: Ahmedabad (candidate based out at Gujarat preferred)Qualifications:BE/ B.Tech/ M.Tech/ MSc/ MCA qualification or equivalentAt least one of the following certifications - GCFA, GCFE, CISP, CISSP, CCNP, CCIE Security, CEH, CSA.Responsibilities:• Should have minimum of 3 years of experience in...
-
Sr. Security Analyst
3 weeks ago
Ahmedabad, Gujarat, India Eventus Security Full timePosition Title: Sr. Security Analyst Experience: 3yrs + Location: Ahmedabad (candidate based out at Gujarat preferred) Qualifications: BE/ B.Tech/ M.Tech/ MSc/ MCA qualification or equivalent At least one of the following certifications - GCFA, GCFE, CISP, CISSP, CCNP, CCIE Security, CEH, CSA. Responsibilities: • Should have minimum of 3 years of...
-
IT Security Manager
2 weeks ago
Ahmedabad, India TechBlocks Full timePosition Overview: We are seeking a strategic leader for the role of Manager, IT Security - Operations and Engineering. This position is crucial for safeguarding TechBlocks' global network and broader digital ecosystem. You will lead the implementation of robust operational controls, manage security engineering initiatives, and work closely with engineering...
-
IT Security Manager
2 days ago
Ahmedabad, Gujarat, India TechBlocks Full time ₹ 12,00,000 - ₹ 36,00,000 per yearPosition Overview:We are seeking a strategic leader for the role of Manager, IT Security - Operations and Engineering. This position is crucial for safeguarding TechBlocks' global network and broader digital ecosystem. You will lead the implementation of robust operational controls, manage security engineering initiatives, and work closely with engineering...
-
IT Security Manager
3 days ago
Ahmedabad, Gujarat, India HyFun Foods Full time ₹ 8,00,000 - ₹ 24,00,000 per yearJob Title: IT Security Manager Grade: ManagerAge Group: Up to 37 years Experience: Minimum 10 years Job Location: Ahmedabad (Frequent Travel to plant location is required (Mehsana, Gujarat) on need basis)Essential Qualification: MBA in Computer Science, Information TechnologyCertification like CISSP, and CISM is an added advantage Essential Areas of...
-
It security manager
7 days ago
Ahmedabad, India HyFun Foods Full timeHy Fun a leading brand in Frozen Food in India with exports in more than 40+ countries is seeking to strengthen its IT Team . We are looking to fill the IT Security Manager position based in Ahmedabad . Position/Profile Title: IT Security Manager Location: Ahmedabad Experience: 10-15 years Essential Qualification: Bachelor's degree in...
-
IT Security Manager
7 days ago
Ahmedabad, India HyFun Foods Full timeHyFun a leading brand in Frozen Food in India with exports in more than 40+ countries is seeking to strengthen its IT Team . We are looking to fill the IT Security Manager position based in Ahmedabad .Position/Profile Title: IT Security ManagerLocation: AhmedabadExperience: 10-15 yearsEssential Qualification:Bachelor's degree in Information...
