Are you ready for a new beginning?
We need your talent, knowledge and dedication to better our world with biology.
Our purpose points the way
In Novonesis, we know that solutions rooted in biology can help solve humanity’s biggest challenges. Since we began more than a century ago, this has been our guide. It’s how we've gotten so far. And it’s how we'll impact the future. Now, more than ever, the world needs change. And with biosolutions, the possibilities for transformation are endless.
We’re here to better our world with biology.
In this role you’ll make an impact by:
The Third-Party Cyber Risk Analyst supports the organization’s cybersecurity risk management efforts related to third-party vendors, suppliers, and partners. This role is ideal for individuals with 1-5 years of experience in cybersecurity, IT risk management, or vendor management. The analyst will assist in assessing third-party cybersecurity practices, monitoring compliance with security standards, and ensuring that third-party risk aligns with the organization’s security goals.
Vendor Risk Assessment: Assist in evaluating the cybersecurity posture of third-party vendors by conducting initial and ongoing assessments to identify potential security vulnerabilities.
Risk Mitigation: Support the implementation of risk mitigation strategies for third-party vendors, ensuring adherence to established security standards.
Collaboration and Support: Work closely with cross-functional teams, including procurement, IT, legal, and compliance, to support vendor onboarding and ongoing risk management.
Documentation and Record Keeping: Maintain and update records related to third-party assessments, ensuring accurate tracking of vendor compliance and risk ratings
Monitoring and Reporting: Help monitor third-party risk metrics, track remediation activities, and generate periodic reports on the status of third-party cyber risk.
Policy Adherence and Compliance: Support compliance with cybersecurity policies and regulatory requirements by assisting in the development and enforcement of third-party security standards.
Potentially relevant experience:
Bachelor’s degree in Cybersecurity, Information Technology, Risk Management, or a related field.
1-5 years of experience in cybersecurity, IT risk, compliance, or vendor management (internships and entry-level roles in these fields are also considered).
Familiarity with cybersecurity frameworks and standards such as NIST, ISO 27001, or SOC 2, as well as basic risk assessment methodologies.
Basic knowledge of regulatory requirements related to third-party cybersecurity risk (e.g., GDPR, CCPA) is a plus.
Analytical Skills: Strong analytical skills to support the identification of potential risks and evaluate the effectiveness of third-party security controls.
Attention to Detail: Ability to ensure accuracy in risk assessments, documentation, and reporting.
Communication: Effective written and verbal communication skills to convey risk-related information to both technical and non-technical audiences.
Team Collaboration: Ability to work effectively within cross-functional teams and support senior team members in managing third-party cyber risk.
Organizational Skills: Strong organizational and multitasking skills to manage multiple assessments and adhere to timelines.
Learning Agility: Enthusiasm for learning new cybersecurity concepts, risk management techniques, and tools to adapt in a dynamic environment.
Could our purpose be yours? Then apply today!
At Novonesis we commit to an inclusive recruitment process and equality of opportunity for all our job applicants. We recommend you not to attach a cover letter to your application. Instead, please include a few sentences in your resume/CV about why you are applying. To ensure a fair recruitment process, please refrain from adding a photo in your resume/CV.
Novonesis is committed to creating a diverse environment and is proud to be an equal opportunity and affirmative action employer. All employment decisions are based on business needs without regard to race, color, ethnicity, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, age, disability, or veteran status.
Want to learn more?
Learn more about Novonesis, our purpose, and your career opportunities at novonesis.com
Not the right fit for you?
Even if this job isn't the right fit for you, perhaps you know someone who might find it interesting. If so, please feel free to share the job link and encourage them to apply. Thank you for your referral! Please check out our other open positions. The right fit for you could just be a few clicks away.