Create New Account
Sign up to continue searching for suitable jobs in Web 3.0

OR
Terms of Use
Already have an account?

Log In to Your Account
Log in to continue searching for suitable jobs in Web 3.0

OR
Don’t have an account?
Ledger
Third-Party Security Risk Analyst
at Ledger
5 days ago | 44 views | Be the first one to apply

Third-Party Security Risk Analyst

Full-time
Europe, Paris
Per year
$84,000 To $99,000

About the company

Founded in Paris in 2014, LEDGER is a global platform for digital assets and Web3. Ledger is already the world leader in Critical Digital Asset security and utility. With more than 6M devices sold to consumers in 200 countries and 10+ languages, 100+ financial institutions and brands as customers, 20% of the world’s crypto assets are secured, plus services supporting trading, buying, spending, earning, and NFTs. LEDGER’s products include: Ledger Stax, Nano S Plus, Nano X hardware wallets, LEDGER Live companion app, [ LEDGER ] Market, the world’s first secure-minting and first-sale distribution platform, and Ledger Enterprise. With its ease of use, LEDGER allows a user to begin investing in digital assets and ultimately, achieve financial freedom in a safe and stress-free environment.

Job Summary

Your mission

📍Conduct comprehensive security assessments of third-party vendors, including reviewing their security policies, procedures, and controls 📍Identify and evaluate security/privacy risks, especially for vendors handling sensitive customer data and critical product supply chain operations. 📍Develop and implement risk mitigation strategies to address identified vulnerabilities 📍Collaborate with vendors to remediate security gaps and ensure compliance with Ledger's stringent security requirements 📍Monitor vendor performance and compliance with security agreements 📍Contribute to the development and improvement of Ledger's third-party security risk management program 📍Prepare reports and presentations on vendor security risks and mitigation efforts for various stakeholders

What we're looking for

📍Degree or equivalent experience in Information Security, Cybersecurity, or a related field 📍Minimum 2 years of experience in areas like audit, risk management, compliance or control function 📍Strong organizational skills to manage multiple projects and document outcomes effectively 📍Familiarity with security frameworks and standards (e.g., ISO 27001, NIST Cybersecurity Framework) 📍Analytical and problem-solving mindset with a proactive approach to challenges 📍Clear and inclusive communication skills for technical and non-technical audiences 📍Experience with security assessment tools and technologies is an asset 📍Knowledge of data privacy regulations (e.g., GDPR, CCPA) 📍Certifications (e.g., CISSP, CISM, CISA) are welcome

Similar jobs

1 day ago | 24 views | Be the first one to apply
Full-time
Las Vegas, North America
1 day ago | 32 views | Be the first one to apply
Full-time
Hong Kong, Asia
$76,000 To $97,000 per year
1 day ago | 39 views | Be the first one to apply
Full-time
San Francisco, North America
1 day ago | 22 views | Be the first one to apply
$95,000 To $107,000 per year
1 day ago | 22 views | Be the first one to apply
$120,000 To $126,000 per year