Principal Cybersecurity Tester/Assessor

Role Overview

• Evaluate third‑party cybersecurity controls to ensure that confidential data and business operations are protected.
• Stay current with cybersecurity best practices and identify risks introduced through vendor technologies, processes, and services.
• Continuously refine your ability to assess risks and vulnerabilities in a rapidly evolving technology landscape.
• Produce clear, thorough documentation for each assessment and ensure tracking through closure.
• Collaborate with peers, sharing expertise and providing guidance as your own capabilities grow.
• Leverage your principal‑level experience to enhance assessment techniques, mentor teammates, and contribute to overall program maturity.

Requirements

• A minimum of six years of professional experience leading work in IT, cybersecurity, IT audit, IT controls, or IT project management.
• Strong ability to engage with peers and vendors clearly and confidently, including in challenging conversations.
• Deep knowledge of IT systems and architecture, especially cybersecurity controls, enterprise architectures, and associated technologies.
• Expertise with cloud computing architecture and implementation.
• Bachelor's degree in Information Technology or a related field.
• Strong IT audit background and familiarity with control frameworks such as NIST, ISO 27001, and SOC 2.
• Experience with third-party risk assessments is strongly desired.
• Excellent written and verbal communication skills, including the ability to interview vendors about their cybersecurity posture and clearly articulate findings in written reports.
• Outstanding organizational skills and attention to detail, with the ability to manage multiple concurrent vendor assessments.

Tech Stack

• Cloud
• Cyber Security

Benefits

• Professional certifications such as CISSP, CISA, or equivalent are strongly preferred.
• Health insurance
• 401(k) matching
• Flexible work hours
• Paid time off
• Remote work options