More jobs:
Job Description & How to Apply Below
Location: Bengaluru
Smarsh is the leader in communications compliance, archiving, and analytics. We provide compliance across the broadest set of communications channels with insights on what’s being captured. Smarsh customers manage over 500 million daily conversations across 80 channels and growing. Customers include the top 10 U.S., top 8 European, top 5 Canadian, and top 3 Asian banks. The Smarsh advantage is customers stay ahead of compliance and uncover patterns and relationships hidden within their data.
Smarsh is the leader in communications compliance, archiving, and analytics. We provide compliance across the broadest set of communications channels with insights on what’s being captured. Smarsh customers manage over 500 million daily conversations across 80 channels and growing. Customers include the top 10 U.S., top 8 European, top 5 Canadian, and top 3 Asian banks. The Smarsh advantage is customers stay ahead of compliance and uncover patterns and relationships hidden within their data.
About the Role
As an Information Security Analyst at Smarsh, you will be responsible for evaluating the cybersecurity and third-party risk posture of our clients within highly regulated industries. Utilizing our advanced Vendor Risk Management (VRM) and Cybersecurity Compliance platforms, you will ensure that vendor environments meet rigorous security standards.
Your Mission: Identify and mitigate risks within third-party environments by meticulously reviewing security documentation and assessments. By combining expert analysis with automated monitoring, you provide the visibility needed to safeguard sensitive data and neutralize liabilities before they emerge.
Primary Responsibilities
Strategic Risk Advisory: Review vendor risk by evaluating security assessments and documentation; deliver actionable recommendations to strengthen client risk postures.
Technical Security Assessments: Conduct comprehensive vulnerability scans and penetration tests for Smarsh customers using industry-leading, off-the-shelf security tools.
Vulnerability Reporting: Produce detailed technical reports that categorize vulnerabilities and provide actionable remediation strategies to help clients resolve security gaps.
Client Relationship Management: Serve as a subject matter expert and primary point of contact, guiding clients through platform features and cybersecurity best practices via phone and email.
Operational Leadership: Manage regular client engagements, deliver high-quality due diligence reports, and contribute to the continuous improvement of Smarsh VRM team operations.
Requirements & Qualifications
Experience & Certifications
3–5 years of professional experience specifically within Vendor Risk Management or Information Security .
Relevant industry certifications are highly desirable (e.g., CTPRP, CISA, CISM, CRISC ).
Technical Proficiency
Security Tooling: Familiarity with tools such as Nessus, Metasploit, or Cobalt Strike .
Core Fundamentals: Strong understanding of TCP/IP networking , server administration, and cybersecurity controls (processes, procedures, and policies).
Software: Proficient in Salesforce CRM , Microsoft Office Suite, and MS Teams.
AI Usage & Innovation
Efficiency via AI: Ability to use AI tools to automate repetitive tasks, such as data mapping, report drafting, or initial vendor documentation reviews.
AI-Enabled Analysis: Utilize and recommend enhancements to Smarsh’s AI review tools to automate the extraction of critical data from vendor security documentation.
Strategic Optimization: Collaborate with product teams to refine AI prompts and workflows, reducing the false positive rate in automated compliance flagging.
Continuous Learning: A proactive interest in staying current with how AI is changing the threat landscape and the tools used to defend it.
Professional Skills
Risk Analysis: Proven ability to review complex security assessments for completeness and overall risk impact.
Communication: Exceptional written and verbal communication skills with a customer-first mindset.
Project Management: Ability to manage multiple parallel work streams and document processes accurately under tight…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×