Vendor Privacy and Security Operations Analyst
Gloo, headquartered in beautiful Boulder, Colorado, builds software for people and organizations dedicated to improving lives. We’re leveraging the same exponential tech that’s driving success in other industries and making it available through tools such as big data, custom assessments, an engagement app and eventually an entire market network focused on growth. As one of Boulder’s most successful and innovative tech companies, Gloo needs more talented professionals who are driven to make a positive impact on humanity. Are you one of them?
In this newly created position, you are the eyes and ears of the Trust Department. You will be managing and improving existing security and privacy programs by serving on the front-line. You understand compliance and appreciate the balance between business value and the partnership with our business teams; product, finance, accounting and legal. Your success will be a combination of your strategic thinking and your inclination to get into the day to day execution, and improvement, of our trust program. Our business and ability to serve our champions is dependent upon the trust we develop, and you are central to that core value proposition. If you are excited to put your experience to work where it really matters, let’s talk.
What you'll be doing:
- Managing and improving the operation of the vendor risk management and data procurement program
- Providing operational support to ensure all risk assessment and mitigation requirements are met
- Collaborating with the trust team to certify our vendors and establish awareness of best practices within the organization by working as a partner with engineering, product, sales and administration groups
- Establishing a baseline vendor risk and maintaining a structured framework to oversee vendor risk and procurement compliance
- Developing and deploying the training program to facilitate awareness of vendor risk management and reporting high-risk contracts and procurement risks
- Administering trust programs including coordinating incident response and customer support activities, internal auditing and data protection assessments while maintaining knowledge of current security and privacy regulations
What we're looking for:
- BS in a privacy related field like quality operations, information systems, information engineering, data services, vendor management, risk management
- At least three years of professional experience as a security, privacy or compliance specialist
- Commitment to your profession as demonstrated by your certifications that might include CISSP, Security+, CISM, CIPP and IAPP
- An understanding of the privacy aspects of GDPR, HIPAA and state, federal and international privacy regulations
- Gifted Communicator who can dissect complex concepts and translate them into digestible material
- A strategic thinker with the ability to be hands-on in the execution and improvement of the programs
- A high-energy, humble, positive, decisive and resourceful leader who is able to thrive with a healthy dose of ambiguity – you’ll just figure it out!
- A security mindset with a business sense – you understand the cost-benefit of implementation
Our Team members enjoy:
- Compensation and bonus commensurate with experience
- Plenty of time off to keep you balanced
- Medical with HSA contribution
- A dynamic, talented team, dedicated to changing the world and building an incredible business
- Beautiful office space in downtown Boulder on Pearl Street, steps from coffee shops and blocks from hiking trails
- Company Happy Hour Fridays
- Fresh fruit, snacks, coffee and sodas
Applications welcomed from those who are US Citizens or hold a Green Card.