Talent.com
IT Risk & Compliance Third Party Engineer
IT Risk & Compliance Third Party EngineerWilson Sonsini Goodrich & Rosati • Washington, D.C.
IT Risk & Compliance Third Party Engineer

IT Risk & Compliance Third Party Engineer

Wilson Sonsini Goodrich & Rosati • Washington, D.C.
[job_card.30_days_ago]
[job_preview.job_type]
  • [job_card.full_time]
[job_card.job_description]

Wilson Sonsini is the premier legal advisor to technology, life sciences, and other growth enterprises worldwide. We represent companies at every stage of development, from entrepreneurial start-ups to multibillion-dollar global corporations, as well as the venture firms, private equity firms, and investment banks that finance and advise them. The firm has approximately 1,100 attorneys in 17 offices : 13 in the U.S., two in China, and two in Europe. Our broad spectrum of practices and entrepreneurial spirit allow our staff exceptional opportunities for professional achievement and career growth.

The firm is actively seeking an IT Risk & Compliance Third Party Engineer to join our IT Security & Risk Management team for our Washington, D.C. office. This role, under the guidance of the Director of Information Security Governance, Risk & Compliance is responsible for Wilson Sonsini Goodrich & Rosati’s (WSGR’s) day-to-day governance risk and compliance processes also, this position focuses on third-party compliance and risk assessment. This individual will work closely with other IT engineering teams to help enhance the risk posture of WSGR.

This role is available as a flexible hybrid work schedule.

Responsibilities :

  • Conduct regular audits and assessments of third-party vendors to evaluate compliance with the organization’s policies and regulatory requirements
  • As part of the Third-Party Risk Management (TPRM) team, ability to focus on engineering continuous improvement efforts in the Third-Party risk assessment process
  • Work with TPRM teams to schedule and execute a variety of activities related to third party risk assessment
  • As a Third-Party Risk Engineer, ability to support the implementation of the Third-Party Management Policy, risk remediation and risk scoring
  • Review, measure, monitor and report on the state of key risk metrics and compliance gaps across the WSGR
  • Evaluate, quantify, and communicate risk across the WSGR internal technical and procedural controls
  • Improve risk monitoring and observability through log analysis, dashboard creation, and automated alerts and response
  • Track and monitor IT remediation and risk treatment plans
  • Assist in implementing and enforcing audit, governance, and risk frameworks across the WSGR
  • Perform deep-dive analysis of cybersecurity issues using data from various threat management and provide recommendations and remediation

Qualifications :

  • Bachelor's Degree required in Computer Science, Information Technology, or related field of study
  • ServiceNow certifications required, 3+ years of ServiceNow experience
  • 4+ years of relevant experience in risk and compliance or security
  • Knowledge of Governance Risk & Compliance (GRC) tools is highly desired
  • Knowledge of the NIST Cybersecurity Framework (CSF) and NIST 800-53
  • Strong analytical, problem- solving, multitasking and time management skills and ability to follow through on issues to resolution
  • Excellent technical writing and verbal communication skills
  • Ability to work independently and to carry out assignments to completion within parameters of instructions given, prescribed routines, and standard accepted practices

    • The primary location for this job posting is in Washington, D.C.. The actual base pay offered will depend upon a variety of factors, including but not limited to the selected candidate’s qualifications, years of relevant experience, level of education, professional certifications and licenses, and work location. The anticipated pay range for this position is as follows : $105,400 - $142,600 per year.

    The compensation for this position may include a discretionary year-end merit bonus based on performance. We offer a highly competitive salary and benefits package.

    Benefits information can be found here. Equal Opportunity Employer (EOE).

    [job_alerts.create_a_job]

    IT Risk Compliance Third Party Engineer • Washington, D.C.

    [internal_linking.similar_jobs]
    Platform Engineer

    Platform Engineer

    Parry Labs, LLC • Alexandria, VA, US
    [job_card.full_time]
    At Parry Labs we believe the modern combat advantage relies on the speed and scale of open systems.We’re redefining the edge of the increasingly ever-changing battlespace by delivering game c...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Water Resources Engineer

    Water Resources Engineer

    Straughan Environmental, Inc. • Columbia, MD, United States
    [job_card.full_time]
    Straughan is currently seeking an Water Resources Engineer to join our Engineering Business Unit.Straughan is currently operating under a flexible, hybrid workplace strategy that allows employees t...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    IT Governance and Compliance Analyst

    IT Governance and Compliance Analyst

    vTech Solution • DC, United States
    [job_card.full_time]
    [filters_job_card.quick_apply]
    This role ensures AI technology practices align with academic integrity, regulatory requirements, and the institution's mission. Monitor and enforce compliance with FERPA, HIPAA, and other secu...[show_more]
    [last_updated.last_updated_1_day]
    IT Systems Engineer - Advanced Networking

    IT Systems Engineer - Advanced Networking

    The Johns Hopkins University Applied Physics Laboratory • Laurel, MD, United States
    [job_card.full_time]
    Do you have extensive experience with advanced networking technologies and cloud orchestration?.Are you passionate about designing and implementing innovative network solutions to support groundbre...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Partner Network Pro - IT & ISO Solutions

    Partner Network Pro - IT & ISO Solutions

    ATIA Ltd • Washington, DC, United States
    [job_card.full_time]
    A multinational company is looking for reseller partners who can connect with clients and generate projects in IT systems and ISO standards. Partners will earn a commission between 20-30% on project...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Cybersecurity Systems Engineer - EDR & Threat Defense

    Cybersecurity Systems Engineer - EDR & Threat Defense

    Booz Allen Hamilton • Washington, DC, United States
    [job_card.full_time]
    A leading technology firm is seeking a Trellix Cybersecurity Engineer in Washington, DC.The role involves designing, deploying, and maintaining security architectures to support critical missions.T...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Risk and Compliance Analyst

    Risk and Compliance Analyst

    SOSI • Washington, DC, US
    [job_card.full_time]
    Founded in 1989, SOSi is among the largest private, founder-owned technology and services integrators in the defense and government services industry. We deliver tailored solutions, tested leadershi...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Systems Engineer – Remote IT for Federal Programs

    Senior Systems Engineer – Remote IT for Federal Programs

    LinTech Global, Inc. • Washington, DC, United States
    [filters.remote]
    [job_card.full_time]
    A leading IT services firm is seeking a Sr.Systems Engineer to support IT Systems for the U.Environmental Protection Agency. Candidates should have at least 6 years of experience in various systems ...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Information System Security Officer (ISSO)

    Information System Security Officer (ISSO)

    C-HIT • Columbia, MD, US
    [job_card.full_time]
    Security Governance & Compliance.Implement and manage security controls based on.Support security authorization (ATO) processes including SSPs, SARs, POA&Ms, and risk assessments.Ensure con...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Platform Engineer - ACTIVE TS / SCI REQUIRED

    Platform Engineer - ACTIVE TS / SCI REQUIRED

    Computer Task Group, Inc • Columbia, MD, US
    [job_card.permanent]
    CTG is seeking to fill a cleared Platform Engineer opening for our client in Columbia, MD.Develop and integrate custom software components to solve complex time series analysis problems using cutti...[show_more]
    [last_updated.last_updated_30] • [promoted]
    IT Security Compliance Specialist (0036)

    IT Security Compliance Specialist (0036)

    OCT Consulting, LLC • Suitland-Silver Hill, MD, US
    [job_card.full_time]
    [filters_job_card.quick_apply]
    IT Security Compliance Specialist (0036).OCT Consulting is a business management and technology consulting firm that supports Federal Government clients. We provide consulting services in the areas ...[show_more]
    [last_updated.last_updated_30]
    IT Engineer

    IT Engineer

    Innovative Defense Technologies (IDT) • Arlington, VA, US
    [job_card.full_time]
    Innovative Defense Technologies.IDT), provider of cutting-edge cloud-based integration, automated testing and data analysis for complex, mission-critical systems in the US Department of Defense (DO...[show_more]
    [last_updated.last_updated_variable_days]
    Platform Engineer

    Platform Engineer

    Parry Labs • Alexandria, VA, United States
    [job_card.full_time]
    At Parry Labs we believe the modern combat advantage relies on the speed and scale of open systems.We're redefining the edge of the increasingly ever-changing battlespace by delivering game changin...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Cybersecurity Threat Detection Engineer

    Cybersecurity Threat Detection Engineer

    CARE IT SERVICES • Washington, DC, United States
    [job_card.full_time]
    Cybersecurity Threat Detection Engineer.Duration : Full Time (18+ months).Experience Required : 8+ / 10+ years (Mid-Level & Senior level positions). Required Knowledge, Skills and Abilities : .Broad exp...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    CyberArk Engineer - Senior

    CyberArk Engineer - Senior

    SAIC • Washington, DC, United States
    [job_card.full_time]
    Category : Engineering and Sciences.Minimum Clearance Required : None.Clearance Level Must Be Able to Obtain : Public Trust. As a CyberArk Senior Systems Engineer, you'll play a key role in enhancing o...[show_more]
    [last_updated.last_updated_30] • [promoted]
    IT034 Principal Systems Engineer - Cloud Engineer

    IT034 Principal Systems Engineer - Cloud Engineer

    ADNET Systems, Inc. • Greenbelt, MD, United States
    [job_card.full_time]
    IT034 Principal Systems Engineer - Cloud Engineer.ADNET is seeking a Principal Systems Engineer - Cloud Engineer to join our dynamic team building next-generation cloud computing infrastructure for...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Network Security Engineer

    Network Security Engineer

    Office of The Chief Financial Officer • Northern Virginia, VA, United States
    [job_card.full_time]
    Government of the District of Columbia.Office of the Chief Financial Officer (OCFO).Network Security Engineer (INFOSEC).This position is located in the Office of the Chief Financial Officer (OCFO),...[show_more]
    [last_updated.last_updated_30] • [promoted]
    IT Risk and Compliance Professional

    IT Risk and Compliance Professional

    Two95 International Inc. • Washington, DC, US
    [job_card.full_time]
    [filters_job_card.quick_apply]
    IT Risk and Compliance Professional.The IT risk and compliance or IT audit professional will support Client's IT Risk & Compliance team in its efforts to establish an ongoing monitoring program...[show_more]
    [last_updated.last_updated_30]