Vendor Security Assessment Engineer
5 days ago
Job Description HCLTech is hiring Vendor Security Assessment Engineer Location: Gurugram Notice: Immediate joiner/30 days Job Title: Vendor Security Assessment Engineer Location: Gurugram Job Summary: We are seeking a highly skilled Vendor Security Assessment Engineer to evaluate and ensure the security posture of third-party vendors, partners, and suppliers. This role involves assessing vendor compliance with security policies, industry standards, and regulatory requirements. The ideal candidate will have a strong background in cybersecurity, risk assessment, and vendor management. Key Responsibilities: Conduct security assessments of third-party vendors, identifying risks and recommending mitigations. Evaluate vendor compliance with security frameworks such as ISO 27001, NIST, SOC 2, GDPR, and other relevant regulations. Review penetration testing reports, cloud configuration reports, and report findings. Perform security due diligence and risk analysis for vendor onboarding and ongoing vendor relationships. Collaborate with internal teams, including procurement, legal, and IT security, to ensure security requirements are met. Develop and maintain security assessment questionnaires and methodologies. Monitor vendor security incidents and work with vendors to resolve security gaps. Provide recommendations for vendor risk remediation and track progress. Maintain documentation of security assessment results and provide regular reports to management. Stay up to date with emerging security threats and industry best practices. Required Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field. 3+ years of experience in security risk assessment, vendor risk management, or cybersecurity. Strong understanding of security frameworks and regulatory compliance requirements. Ability to analyze security policies, architecture, and controls of third-party vendors. Excellent communication and interpersonal skills. Relevant security certifications (e.g., CISSP, CISA, CISM, CRISC, or equivalent) are a plus. Preferred Qualifications: Experience working in a cloud security environment (AWS, Azure, GCP). Familiarity with third-party risk management tools and platforms. Knowledge of data privacy laws and secure data handling practices. Experience in contract review from a security and compliance perspective. Interested candidates drop your resume @ [Confidential Information]
-
Manager - IT Risk Assessment
3 weeks ago
Gurugram, India Grizmo Labs Full timeDescription :Location : GurgaonExperience : 57 yearsEmployment Type : Full-timeFunction : Information Technology / Risk & ComplianceAbout the Role :We are looking for an experienced IT Manager Client Proposals & Risk Assessment to lead and manage client RFP responses, IT policy reviews, and vendor risk assessments for our technology product offering.This is...
-
Senior Security Engineer – Cloud, AI
3 weeks ago
India Symosis Security Full timeLocation: Remote (India)Type: Full-TimeCompany: Symosis SecurityAbout Symosis SecuritySymosis Security is a fast-growing cybersecurity and technology firm helping global organizations strengthen their cloud, application, and AI security posture. We combine deep technical expertise with practical execution—supporting clients across threat modeling,...
-
Senior Security Engineer – Cloud, AI
3 weeks ago
India Symosis Security Full timeLocation : Remote (India) Type : Full-Time Company : Symosis Security About Symosis Security Symosis Security is a fast-growing cybersecurity and technology firm helping global organizations strengthen their cloud, application, and AI security posture. We combine deep technical expertise with practical execution—supporting clients across threat modeling,...
-
Design Engineer- Vendor
2 weeks ago
Gurugram, Gurugram, India Assystem Full timeJob Description Assystem Stup is a full-service design, engineering and project delivery consultancy created following Assystem's acquisition of Stup Consultants Pvt Ltd in July 2021. Assystem Stup combines Assystem's internationally recognised expertise in low-carbon technologies and complex project management with Stup's extensive experience. Stup has 5...
-
Vendor Management
2 weeks ago
Gurugram, India Sago Full timeSago is seeking a detail-oriented and proactive Vendor Management & Compliance Analyst to support our third-party risk management and compliance efforts. The role is responsible for managing the full lifecycle of vendor relationships-from onboarding and due diligence to contract reviews and ongoing compliance monitoring-ensuring all vendors meet internal...
-
India Symosis Security Full timeLocation: Remote (India) Type: Full-Time Company: Symosis Security About Symosis Security Symosis Security is a fast-growing cybersecurity and technology firm helping global organizations strengthen their cloud, application, and AI security posture. We combine deep technical expertise with practical execution—supporting clients across threat modeling,...
-
Senior Security Engineer – AI, Cloud
3 weeks ago
India Symosis Security Full timeLocation: Remote (India) Type: Full-Time Company: Symosis Security About Symosis Security Symosis is a cybersecurity consulting firm purpose-built for the AI-native, cloud-first era. We help public-sector and enterprise clients mature their security operations through managed services, offensive testing, governance, and automation. We're expanding our MSSP...
-
Senior Security Engineer – AI, Cloud
3 weeks ago
India Symosis Security Full timeLocation : Remote (India) Type : Full-Time Company : Symosis Security About Symosis Security Symosis is a cybersecurity consulting firm purpose-built for the AI-native, cloud-first era. We help public-sector and enterprise clients mature their security operations through managed services, offensive testing, governance, and automation. We’re expanding our...
-
Network Security Engineer II
1 week ago
Gurugram, India Rackspace Technology Full timeJob Description The Information Security Engineer configures, improves, modifies, and evaluates security tools and services in our hosting-based environment. They specialize in conducting technology and system assessments, while providing technical consultation, to our customers, that offers unparalleled world-class service. As technology evolves, so does...
-
Network Security Engineer II
1 week ago
Gurugram, India Rackspace Full timeThe Information Security Engineer configures, improves, modifies, and evaluates security tools and services in our hosting-based environment. They specialize in conducting technology and system assessments, while providing technical consultation, to our customers, that offers unparalleled world-class service. As technology evolves, so does the safety needed,...
