Senior Specialist - Security and Compliance

MarketStar -
Hyderabad, Telangana

Apply Now

Job details

Full-time
13 hours ago

Benefits

Health insurance

Qualifications

Computer Science
PCI
Information security
Analysis skills
Information Security
Bachelor's degree
NIST standards
ISO 27001
AI
Communication skills

Full job description

If you are a current employee who is interested in applying to this position, please navigate to the internal Careers site to apply.

Disclaimer: MarketStar is committed to ensuring integrity and transparency in our recruitment practices. We DO NOT charge any fees at any stage of the recruitment process. In case you receive any unsolicited requests for payments, please report to <[email protected]> immediately.

Role-Senior Specialist - Security and Compliance.
Experience- 03 to 04 years, Domain experience 2 years .
Location- Hyderabad.

About MarketStar:

In everything we do, we believe in creating growth, for our clients, our employees, and our community. For the past 35+ years, we have been generating revenue for the most innovative tech companies across the globe through our outsourced B2B demand, sales, customer success, and revenue operations solutions. We are passionate about cultivating career advancements for our people, and support them through mentorship, leadership, and career-development programs. We provide service and support to our communities through the MarketStar Foundation.

Our exceptional team is the cornerstone of MarketStar's accomplishments. We are proud of our award-winning workplace culture and to be named a top employer in our industry. These achievements are a testament to our six core values, embraced by our 3,000+ employees worldwide. From our headquarters in Utah, USA, to our global offices in India, Ireland, Bulgaria, Mexico, the Philippines, and Australia, we all work together to drive innovation and success.

We are excited to have you apply to join our MarketStar team and can’t wait to discuss how we can help you find growth!

Role Overview:
This requisition is for the Senior Security and Compliance Senior Specialist-TPRM position. This role plays a crucial role in ensuring the security and compliance of our third-party partnerships on a global scale.
The candidate will coordinate and manage end-to-end vendor due diligence activities by collaborating with internal stakeholders and external vendors.
Additionally, they will review and analyze vendor contracts, Data Processing Agreements (DPAs), and Statements of Work (SOWs) from an Information Security and Data Privacy perspective.

Job Summary:
The Security and Compliance Senior Specialist-TPRM plays a crucial role in ensuring the security and compliance of our third-party partnerships on a global scale. The ideal candidate will bring a deep understanding of vendor security assessments, client security questionnaires, and due diligence processes to our team.

Key Responsibilities:

Third-Party Risk Management.
Coordinate and manage end-to-end vendor due diligence activities by collaborating with internal stakeholders such as Legal, Procurement, IT, Compliance, Business Units, and external vendors.
Ensure timely completion of risk assessments, documentation reviews, and remediation follow-ups.
Conduct comprehensive security, compliance, privacy, and AI governance assessments for new third-party vendors, tools, applications, Generative AI tools, and AI-based solutions/platforms.
Assess AI/ML and Generative AI vendors for risks related to data privacy, model governance, data retention, intellectual property exposure, secure AI usage, regulatory compliance, and responsible AI practices.
Perform annual and periodic reassessments of existing vendors, including AI and Generative AI vendors, to ensure continued compliance with organizational security standards, AI governance requirements, and regulatory obligations.
Information Security Contractual Compliance
Review and analyze vendor contracts, Data Processing Agreements (DPAs), Statements of Work (SOWs), and related legal documents from an Information Security and Data Privacy perspective.
Identify security, compliance, and data protection risks and provide recommendations to mitigate organizational exposure.
Review AI vendor contractual terms related to data ownership, AI model training, data usage rights, confidentiality, retention, sub-processors, and regulatory compliance requirements.
Develop, manage, and review third-party client security questionnaires. Ensure that responses are accurate, complete, and align with our organizational security policies and standards.
Stakeholder Coordination & Risk Management
Work closely with cross-functional teams and external vendors to drive completion of security reviews, contract evaluations, and remediation activities.
Track assessment status, communicate risks effectively, and ensure adherence to internal TPRM processes and timelines.
Diligent Work Ethic
Maintain a high level of diligence, accountability, and attention to detail across all third-party risk management activities.
Ensure security assessments, vendor due diligence reviews, and contract evaluations are completed accurately and in alignment with organizational policies, regulatory requirements, and industry best practices.

Qualification:

Bachelor's degree in information security, Computer Science, or related field.
2+ years of experience in third-party security assessments, client security questionnaires, and vendor due diligence.
Strong understanding of vendor management tools such as Whistic, OneTrust, and LogicGate, as well as contract management tools like Luminance, ContractWorks, and DocuSign CLM.
Familiarity with emerging technologies like Generative AI, and understanding of related data privacy and information security risks.
Strong understanding of information security principles, standards, regulations, and best practices, such as ISO 27001, NIST Cybersecurity Framework, GDPR, HIPAA, PCI DSS, etc.
Excellent communication (both verbal and written), presentation, and interpersonal skills, with the ability to effectively communicate complex technical concepts to non-technical stakeholders.
Strong analytical and problem-solving abilities, with the capacity to analyze security incidents, investigate root causes, and recommend corrective actions and preventive measures.

What’s in it for you?
Constant Learning and an entrepreneurial growth mindset. Employee-centric benefits plan including but not limited to Comprehensive Health Insurance, generous Leave Policy, Covid Support, Vaccination drives, Well-being sessions, real-time grievance redressal, and work flexibility.

We are a people-first organization with policies and processes that help you bring the best version of yourself into work including fast-track growth for high-potential folks. An opportunity to be associated with the world’s leading brands as clients. To be a part of an organization with more than 60% of homegrown Leaders. Customized training programs that are catered to personal and professional development. We are an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success.

Note: This job description is intended to convey information essential to understanding the scope of the position and is not an exhaustive list of skills, efforts, duties, responsibilities, or working conditions associated with it. Responsibilities may change over time to accommodate business needs.

If you’re up for this job, go on and hit the “Apply Now” button!

Apply Now

Jobseeker tools

Employer Tools

Browse

Stay Connected