Information Third-Party Security Analyst

⚡️ Why Altium?

Altium is transforming the way electronics are designed and built. From startups to world’s technology giants, our digital platforms give more power to PCB designers, supply chain, and manufacturing, letting them collaborate as never before.

• Constant innovation has created a transformative technology, unique in its space
• More than 30,000 companies and 100,000 electronics engineers worldwide use Altium
• We are growing, debt-free, and financially strong, with the resources to become #1 in the EDA industry

About the Role: 

As a Third-Party Security Analyst, you will manage the security risks associated with our vendor and third-party relationships. The ideal candidate will have a strong background in risk assessment, security auditing, and vendor management processes. You will work in a cross-functional environment and operationalize security operations, risk management, and regulatory compliance.

 A Day in The Life of Our Third-Party Security Analyst: 

• Develop and implement a robust third-party risk management program to assess, monitor, and mitigate security risks posed by vendors, suppliers, and other third-party entities
• Conduct comprehensive security assessments and due diligence reviews of potential and existing third-party vendors, evaluating their security posture, policies, and controls
• Collaborate with cross-functional teams, such as procurement, legal, and business units, to ensure third-party security requirements are integrated into vendor selection and contractual processes
• Establish and maintain vendor security risk profiles, continuously monitoring for changes in risk levels and ensuring appropriate risk treatment plans are in place
• Perform periodic security audits and assessments of third-party vendors, including reviews of security documentation, and testing of security controls
• Develop and maintain a centralized repository of third-party security information, including risk assessments, audit reports, and security certifications
• Ensure compliance with relevant industry regulations, standards, and security frameworks (e.g., SOC II, GDPR,  ISO 27001) for third-party relationships
• Provide guidance and support to internal stakeholders on third-party security best practices, vendor risk management, and secure vendor integration
• Stay current with emerging third-party security threats, trends, and best practices, and continuously enhance the organization's third-party risk management capabilities
• Present third-party security risk assessments, metrics, and recommendations to senior leadership and stakeholders

Who We’re Looking For and What You will Need For This Position:

• Bachelor's degree in business administration, computer science, information technology, or a related field of study, or equivalent experience
• Strong analytical and problem-solving skills with the ability to identify security risks and recommend appropriate mitigating controls.
• Excellent communication and interpersonal skills with the ability to effectively collaborate with cross-functional teams and communicate with vendors.
• Familiarity with project management methodologies and processes.
• Experience with risk assessment methodologies, security auditing techniques, and vendor management tools is preferred.
• Ability to work independently and effectively in a remote environment
• Passion and willingness to communicate cross-organizationally between operations, product security, contracts, GRC, etc

Preferred Technology Experience

• Experience in security, or security-adjacent fields
• Security certification is a plus
• Knowledge and experience with information security standards, rules and regulations related to information security and data protection: NIST CSF, GDPR etc
• Experience working in or with a technology organization is preferred

The salary range for this role is $103,000 - $117,000. Actual compensation packages within this range are based on a wide array of factors unique to each candidate and role requirements, including but not limited to skill set, years and depth of experience, certifications, and specific location.

Benefits

• 🏥 Medical, Dental, Vision Plans and HSA and FSA accounts
• ❤️ Basic Life and AD&D insurance; disability coverage where applicable   
• 🌅 Retirement 401(k) Plan Option with Altium match
• 🧘 Calm App and Employee Assistance Program 
• 🏖 Paid holidays plus a “Choice Day” off per quarter       
• ✈️ Paid time-off on arising schedule upon key milestones
• 🤒 Sick time for Dr. appointments or family health needs   
• 👶 Family medical, maternity, paternity, and military leave
• 🏡 Flexible working arrangements available based on role and location
• 🥳 Employee referral and employee-of-the-month programs  
• 🖥 Home internet allowance
• 📚 Professional development support
• 🥪 Free lunch, snacks, and drinks in the office
• 🚗 Free parking

🎯 What Matters to Us

• Big-thinking in pursuit of purpose
• Diversity of thought
• Courage of conviction
• Transparency of intent
• Ingenuity of AND
• Agility in action
• Adaptability of approach
• Grit in pursuit of mission

🌍 Also, we would like you to know

We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace.

💡 Learn more about why a career at Altium is an opportunity like no other: https://www.youtube.com/watch?v=cAYCOLpPLPE 

✈️ Altium Benefits: https://careers.altium.com/#s-benefits 

👏 Are you already an Altium employee? Please apply directly through our internal Greenhouse job board. If you have questions, please contact HR.