Experienced GRC Professional for Cyber Protection - Third Party Risk Management & Compliance Specialist at blithequark

Join the blithequark Team as a Remote GRC Professional: Shaping the Future of Cyber Protection blithequark is at the forefront of innovation, blending technology and creativity to deliver enchanting experiences. As a leader in the industry, we're committed to protecting our digital kingdom with cutting-edge cybersecurity measures. We're seeking an experienced GRC (Governance, Risk, and Compliance) Professional to join our Cybersecurity Crew, working remotely on a part-time or full-time basis. If you're passionate about safeguarding our digital assets and ensuring compliance with industry standards, we invite you to be part of our dynamic team. About Our Cybersecurity Crew Our Cybersecurity Crew is a team of green cybersecurity specialists who formulate and implement techniques and recommendations to help blithequark align with its business dreams while dealing with dangers correctly and meeting industry guidelines and standards. We work on slicing-edge technology and toward new innovations in the area of cybersecurity to ensure the magic of blithequark continues uninterrupted. Key Responsibilities Third Party Risk Management (TPRM) Program: Assist in managing blithequark's global third-party/internal risk method for carrying out cyber risk-related due diligence exams. Validate incoming third-party/internal risk assessment requests, working with business stakeholders to confirm the details of the request and the scope of the engagement. Conduct kick-off sessions with business stakeholders and any related third-party for conducting the Third Party Assessment (TPA). Coordinate the distribution of due diligence questionnaires to internal stakeholders/third party, review submitted questionnaires for completeness, and determine risks arising from the current design and operational effectiveness of the internal/third party's security controls. File responses, associated findings, and remediation plans in blithequark's systems. Draft/review reports for the checks performed and ensure respective business stakeholders finalize reviews. Act as a strong liaison to ensure any queries are addressed concerning the risk management technique and evaluation to the business or third parties as required. Perform continuous tracking of third parties via blithequark systems for current/new findings and track any findings to closure. Identify opportunities for improvement within blithequark's systems and strategies. Work closely with Risk Lead/Manager to schedule and execute a range of different assisting activities related to the risk management program. Governance, Risk, and Compliance Lead and assist in the development of cybersecurity risk and compliance-related strategies to ensure treatment of cybersecurity risk consistent with blithequark's risk appetite. Maintain and document compliance towards information security-associated guidelines and processes through planning, testing, remediating, tracking, and reporting on control reviews and risk assessments. Lead development and delivery of compliance and risk education and ongoing communications that help drive a culture of protection and compliance. Stay abreast of regulatory changes, new guidelines, technology, and internal policy modifications to further identify new key risk areas. Lead activities to maintain and support ISO 27001 certification. Competencies & Attributes for Success Understanding and Competencies Outstanding stakeholder management skills. Working understanding of information security-related best practices and standards, including ISO 2700x, SOC 2 requirements, SSAE 16/18 standards, and more. Experience in the management of risk, controls, and compliance. Knowledge of risk assessment methodologies - qualitative/quantitative. Superior analytical and problem-solving abilities. Excellent presentation making and delivery skills. Personal Attributes Robust interpersonal skills. Ability to navigate a fast-paced environment and be flexible with working hours. Excellent communication skills, both verbal and written. Adapt quickly to changing conditions and drive positive change. Preferred Training & Experience Relevant Bachelor's/Master's degree from an accredited university or equivalent experience. 4 years of experience throughout third-party risk management, information security, and audit & compliance tracking (minimum of 2-3 years in TPRM/internal audit). Preferred experience with a large company and/or big four accounting firm. One or more credentials - CISA, CRISC, ISO27001 L/LI, CISSP. Experience in AI/ML is a plus. What We Offer At blithequark, we offer a competitive salary of $80,000 per year, along with a comprehensive benefits package that includes health insurance, retirement plans, and paid time off. We also provide opportunities for career growth and professional development, ensuring that our team members can achieve their full potential. Our remote work environment offers flexibility and work-life balance, allowing you to work from the comfort of your own home. Why Join blithequark? blithequark is not just a company; it's a community that values innovation, creativity, and protection. By joining our team, you'll be part of a dynamic group that's shaping the future of cybersecurity. You'll have the opportunity to work on exciting projects, develop your skills, and grow your career. Our company culture is built on collaboration, respect, and a passion for delivering exceptional results. How to Prepare for Your Interview To succeed in your interview, be prepared to discuss your professional heritage, capabilities, and experiences. Highlight your relevant skills and how they align with the job requirements. Be ready to answer common interview questions, such as: Tell me about yourself. Why do you want to work for blithequark? What is your greatest strength? What is your greatest weakness? Tell me about a challenging situation you've faced at work and how you handled it. Why should we hire you for this role? Where do you see yourself in 5 years? What do you know about our products/services? How do you handle working under stress? Tell me about a time you worked in a team. What is your preferred work style or work environment? Do you have any questions for us? Research blithequark's services and products, and be prepared to ask informed questions during the interview. Demonstrate your enthusiasm for the company and the role, and show how your skills and experiences make you the ideal candidate. Join Our Team If you're ready to take your career to the next level and be part of a dynamic team that's shaping the future of cybersecurity, apply now to join blithequark as a GRC Professional. Don't miss this opportunity to contribute to the enchanting world of blithequark from the comfort of your own home. Apply Now! For more job opportunities, click here . Apply for this job