3rd Party Vendor Assessment Resource.

3rd Party Vendor Assessment Resource.

03 Nov 2023
New York, New york city, 10001 New york city USA

3rd Party Vendor Assessment Resource.

Greetings
Kindly do revert back, if interested in below position.

Role:

3rd Party Vendor Assessment Resource.

Duration: 12+ months

Location: Remote, need to travel to NY on demand.

Description:
  • 3rd party vendor assessment process
    • Need individuals that help with assessing 3rd party vendors
    • Panorays used to create questionnaires (automated and dynamic, and it also exposes attack surface assessments and)
    • Need resources to review the answers to questionnaires that were already filled out and validate the information (often, vendors provide inaccurate or partially accurate information)
    • Ideal Resources should be familiar with using Panorays, but resources familiar with doing security assessments should be fine.
    • Review/understand Admin, Technical, and Operational Controls that are catalogued for vendors
    • Skills: Security Risk Assessments, Technical Architecture (basic), Vendor Review, Software Audits
  • Vulnerability Management [2nd priority]
    • Currently use Rapid7 for vulnerability assessments (not enough information on which parts/modules are used)
    • Application Security Reviews
    • Review internal applications
    • Veracode
    • Building out CI/CD process to run VeraCode
    • Need resources that are familiar with how to run/configure VeraCode
    • Need resources that are familiar with Azure DevOps and can help integrate VeraCode into CI/CD
    • Need resources that are familiar with Rapid7
  • DLP (data loss prevention)
    • Symantec for endpoint DLP
    • Want to rebuild the system
    • “Refreshing” Symantec
    • Proofpoint and Office 365 DLP
    • Configure enhance and tweak
    • Want to streamline, most of the work is on Symantec to implement and roll out
  • Identity Access Management
    • IBM platform – ISEM (security entity manager), ISAM, IBM Verify
    • Want to look at IGI – access level / role-based product
    • Release security level
    • OpenID, SAML2
    • Primarily SAML
    • DEV Experience from SAML2 to OAUTH2
    If interested, kindly do share resumes to madhavi(at)techprojects(dot)com
    Thanks & Regards

    Related jobs

    Job Details

    • ID
      JC46917948
    • State
    • City
    • Job type
      Contract
    • Salary
      Depends on Experience
    • Hiring Company
      Babatek Inc DBA Impetus
    • Date
      2022-11-02
    • Deadline
      2022-12-31
    • Category

    Jocancy Online Job Portal by jobSearchi.