Senior Information Security Specialist

As a highly skilled resource proficient in the Information Security domain, you will be a valuable addition to our Vendor and Client Security team within the Information Security Department. Your primary responsibilities will include: - Completing client security questionnaires, answering follow-up questions, and participating in client audits as requested by the business. - Conducting vendor security due diligence assessments to verify vendors" information security and privacy capabilities through risk assessment questionnaires, response analysis, and final assessment report creation. - Monitoring critical vendors continuously and collaborating with them on the remediation of identified vulnerabilities. - Partnering with business stakeholders to articulate risks clearly to both business and technology audiences. - Tracking remediation progress to address vulnerabilities identified by clients effectively. - Reviewing contracts and master service agreements to ensure the presence of appropriate security language. - Supporting the development, implementation, and maintenance of the Information Security program. - Participating in internal and external audits related to SOC2, ISO 27001/27701, etc. - Maintaining familiarity with Information Security policies to facilitate annual reviews and updates. - Performing general administrative duties as required to support Information Security operations. Key Requirements: - Minimum 3-5 years of experience in Information Security roles. - Bachelor's degree in a related field from an accredited college or university. - Proficient in English written and verbal communication. - Strong understanding and experience in Information Security program development, maintenance, and governance. - Excellent research skills. - Ability to plan and execute tasks with minimal oversight. - Proficient in multitasking and prioritizing tasks across various projects. - Strong time management and organizational skills. - Demonstrated personal integrity and commitment to delivering outstanding results. - Willingness to work flexible hours to support global business users. - Prior experience with ProcessUnity Vendor Risk Management Tool and Bitsight cybersecurity ratings practice is a plus. About Kroll: Kroll is a global valuation and corporate finance advisor specializing in complex valuation, disputes, investigations, M&A, restructuring, compliance, and regulatory consulting. Our professionals combine analytical skills, market insight, and independence to assist clients in making informed decisions. We value diversity, global thinking, and a collaborative work environment that fosters excellence. Kroll is an equal opportunity employer that recruits based on merit. To be considered for a position, please apply formally via careers.kroll.com.,