This site uses cookies. To find out more, see our Cookies Policy

Data Security Analyst in Charlotte, NC at Vaco

Date Posted: 3/8/2018

Job Snapshot

Job Description

Position Description

Serves as a risk analyst dedicated to Data Security program in the Information Protection and Risk Management group, also working closely with the Third-Party Risk Management and Integration Services teams to identify, document and recommend protection controls for structured and unstructured data internally and externally. Position will report directly into the IPRM Data Security team and on a dotted line basis to the GSC Risk Manager. Conducts risk assessments and provide data protection recommendations on requests to transmit data outside the firm and analysis of suppliers who provide high risk services to our client and its subsidiaries, focusing on information security.

Job Responsibilities

  • Evaluate third party supplier risk information security controls and ensure they are aligned with our client internal standards
  • Review and understand the inherent risk characteristics for sourcing deals
  • Respond to requests to transmit data outside the firm and validate data protection controls are applied
  • Apply corporate methodologies relating to information security as well as the Operational Risk Management Methodology and approaches
  • Develop data protection control recommendations for use by Global Supply Chain, Information Protection and Risk Management, line of business personnel, and various risk councils within the client
  • Participate in developing quantitative risk models to assist with communicating and evaluating risk
  • Enter and track findings in enterprise systems (e.g., Ariba, OpenPages)
  • Participate in the development and improvement of assessment methodology and tools
  • Maintain subject matter expertise in information security as well as supplier management
  • Provide advice to Sourcing Consultants, Legal, etc. to on risk areas during contract negotiations
  • Assess supplier controls in regard to the specific services they are providing to the client.
  • Examples of analysis include:
  • Review data protection controls for data at rest, in-motion and in-use
  • Review supplier policies, standards & procedures
  • Review supplier responses to supplier risk questionnaire and review all pertinent artifacts

Know someone who is well-qualified for this role? If you refer someone to us, and we place them at any time in the future, Vaco will send you a generous referral bonus.

At Vaco, we connect your work experience to the open job-promoting your strengths to the manager while preparing you for that specific interview.

Our recruiters will provide you with great insight about trends in the market-keeping you up to date on compensation expectations, company culture and growth opportunities.

U.S. Citizens and those authorized to work in the U.S. are encouraged to apply. We are unable to sponsor at this time.