Senior Third-Party Security Risk Analyst, Ledger

Ledger

Location:
France, Paris

Category:
IT - Administration

Contract Type:
Not provided

Salary:

Not provided

Save Job

Apply Position

Job Description:

As a Senior Third-Party Security Risk Specialist at Ledger, you will play a vital role in protecting our organization and our customers from security risks associated with third-party vendors and partners. You will be contributing to our Enterprise Risk Management program, by assessing, mitigating, and monitoring risks throughout the vendor lifecycle, ensuring that our high security standards are met and that our data and systems remain secure.

Job Responsibility:

Conduct comprehensive security assessments of third-party vendors, including reviewing their security policies, procedures, and controls
Proactively identify and evaluate potential security/privacy risks associated with a particular focus on those that could impact Ledger's reputation, financial stability, and customer trust
Develop and implement risk mitigation strategies to address identified vulnerabilities
Lead the collaboration with vendors to remediate security gaps and ensure compliance with Ledger's stringent security requirements
Establish and maintain a robust vendor security monitoring program, driving continuous improvement in vendor security posture and compliance
Develop, implement, and continuously improve Ledger's third-party security risk management program, including policies, standards, procedures, and tools
Prepare reports and presentations on vendor security risks and mitigation efforts to senior management, stakeholders, and the Comex
Participate in audits as part of the Privacy audit program according to the agreed annual audit plan

Requirements:

Master degree in Information Security, Cybersecurity, or a related field
5+ years of progressive experience in third-party risk management, with a strong background in audit, risk management, compliance, or a related control function within a complex organization
Proven project management skills with the ability to manage complex, cross-functional projects and maintain comprehensive documentation
In-depth knowledge of security frameworks and standards (e.g., ISO 27001, NIST Cybersecurity Framework) and experience in applying them to third-party risk management and regulatory requirements
Excellent analytical and problem-solving skills with a focus on identifying root causes and developing effective solutions
Strong communication and interpersonal skills, including the ability to influence and negotiate with vendors and stakeholders at all levels

What we offer:

Equity: Employees are the foundation of our success, and we award stock options so you can share in that success as we grow
Flexibility: A hybrid work policy
Social: Annual company outing for Ledgerdary Days, plus frequent social events, snacks and drinks
Medical: Comprehensive health insurance policy offering extensive medical, dental and vision care coverage
Well-being: Personal development, coaching & fitness with our dedicated partners
Vacation: Five weeks of paid leave per year, in addition to national holidays and rest & relaxation (RTT) days
High tech: Access to high performance office equipment and gadgets
Transport: Ledger reimburses part of your preferred means of transportation
Discounts: Employee discount on all our products

Additional Information:

Job Posted:
April 24, 2025

Employment Type:

Fulltime

Work Type:

Hybrid work

View All Jobs In This Company

Job Link Share:

Senior Third-Party Security Risk Analyst