RemoteLeaf Logo
Log in Sign up

Senior Specialist, Information Security, Third Party Risk

2 hours, 15 minutes ago
United States
Full-time
Senior
Compliance Manager
Cybersecurity
Asana Confluence Cybersecurity HIPAA JIRA
Apply Now
Planned Parenthood

Planned Parenthood

Planned Parenthood is a trusted provider of sexual and reproductive health care, delivering vital services and information to millions worldwide.

Health Care Providers & Services
251-1K
Founded 1916
$275M raised
View All Jobs 3

Description

  • Manage the end-to-end third-party risk management process for assigned vendors.
  • Conduct detailed information security risk assessments across vendors with varying risk levels.
  • Review and analyze vendor security and compliance documentation, including questionnaires and reports.
  • Identify, document, and escalate risks and control gaps for remediation and decision-making.
  • Produce clear assessment reports for procurement, legal, security, and business stakeholders.
  • Coordinate communications with internal teams and external vendors to gather information and clarify responses.
  • Support vendor intake, onboarding, and renewal reviews with risk input.
  • Track assessment progress, delays, remediation plans, and escalation needs using risk management tools.
  • Maintain and improve third-party risk management documentation, templates, workflows, and resource materials.
  • Participate in cross-functional meetings and working groups to improve TPRM processes.

Requirements

  • Bachelor’s degree in Cybersecurity, Information Technology, Information Systems, Risk Management, or a related field.
  • Relevant coursework or training in data privacy, regulatory compliance, or cyber risk management preferred.
  • Industry certifications such as CTPRA, CTPRP, or CISA preferred.
  • Must obtain an industry certification within 1 year of hire.
  • 3–6 years of professional experience in information security, vendor risk management, IT/IS risk, or compliance.
  • At least 2 years of experience conducting or supporting third-party or vendor security risk assessments, preferably in a regulated industry.
  • Experience reviewing vendor security questionnaires, SOC 2 reports, SIG assessments, or similar compliance documentation.
  • Familiarity with NIST CSF, HIPAA Security Rule, PCI DSS, and basic privacy regulations such as CCPA and GDPR.
  • Hands-on experience with GRC or assessment tracking tools such as UpGuard, LogicGate, OneTrust, Jira, or Asana.
  • Experience working with procurement, legal, privacy, or compliance teams during vendor onboarding or contract review.
  • Ability to review contracts and legal language with data privacy and security requirements.
  • High proficiency in Google products.
  • Excellent written communication skills with the ability to draft, proofread, and edit quickly.
  • Ability to work in a fast-paced environment with changing priorities and ambiguous situations.
  • Commitment to advancing racial equity and supporting Planned Parenthood’s mission, diversity, equity, and inclusion.

Benefits

  • Remote work arrangement.
  • Full-time union position.
  • $88,000–$93,000 annual salary.
  • 0–10% domestic travel as needed.
  • Participation in E-Verify.
  • A workplace culture focused on belonging, learning, and individual contributions.
  • An employer committed to diversity, inclusion, respect, integrity, customer focus, and innovation.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Excelya

Local Responsible Person for Pharmacovigilance - Australia & New-Zealand

Excelya 251-1K Professional Services

Excelya is hiring a Local Responsible Person for Pharmacovigilance (LRPV) in APAC to oversee local safety operations, regulatory compliance, and stakeholder coordination within its PV & Safety team.

Australia Contract Junior Compliance Manager
0 minutes ago
The Investigo Group

Governance, Risk & Compliance (GRC) Analyst

The Investigo Group Professional Services

The Investigo Group is hiring a remote UK Governance, Risk & Compliance (GRC) Analyst to support its security team in strengthening governance, risk, compliance, and ISO 27001 readiness across a growing technology organisation.

United Kingdom Full-time Junior Compliance Manager Security Analyst
Power BI
0 minutes ago
Contact Government Services

FOIA Analyst

Contact Government Services 1-10 Professional Services

CGS is hiring a FOIA Analyst to support a large federal agency’s legal mission by processing Freedom of Information Act requests and managing related correspondence and release decisions.

United States Full-time Mid Level Compliance Manager
$75k-$125k
15 minutes ago
Contact Government Services

FOIA Analyst

Contact Government Services 1-10 Professional Services

CGS is hiring a FOIA Analyst to support a large federal agency’s legal mission by processing Freedom of Information Act requests and managing related correspondence and communications.

United States Full-time Mid Level Compliance Manager
$75k-$125k
45 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers