Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

GRC TPRM SME

Artech

GRC TPRM Assessment and Remediation SME

We are seeking an experienced Third-Party Risk Management (TPRM) Assessment and Remediation Subject Matter Expert to manage the end-to-end lifecycle of supplier/vendor cybersecurity risk assessments and remediation from inventory governance through assessment coordination, escalation management, and executive reporting in a fully remote, client-facing environment. This role serves as the process authority for vendor risk assessments, findings management, and cross-functional remediation, requiring precise, proactive communication to maintain trust with high-visibility stakeholders.

Key Responsibilities:

  • Supplier Inventory Management
  • Maintain the Supplier Inventory (GRC platform, e.g., SupplierNinja) as the single source of truth for assessment status.

    Tier/filter suppliers requiring reassessment vs. new assessment per program criteria.

    Maintain accurate Direct Responsible Individual (DRI) records in the GRC tool (e.g., OneTrust).

  • Assessment Execution
  • Evaluate suppliers against standard frameworks (SIG, CAIQ, NIST CSF, ISO 27001, SOC 2) and validate evidence (audit reports, certifications, pen test results).

    Confirm DRI ownership and obtain kick-off acknowledgement before initiating assessments.

    Log and track assessment tasks in a workflow tool (e.g., Wrike), including acknowledgement evidence.

    Confirm onsite-assessed suppliers have current-year coverage (e.g., in AirTable).

    Participate in recurring findings-review meetings (e.g., CSFA), advising on policy and evidence standards.

  • Remediation Management
  • Own Corrective Action Plans (CAPs) end-to-end: define SLAs, track progress, drive closure with vendors and business owners.

    Coordinate with Legal, Procurement, and InfoSec on remediation timelines and compensating controls.

  • Stakeholder Communication & Escalation
  • Run a structured outreach cadence with DRIs (kick-off ? 3 follow-ups ? 3 escalations to management).

    Track response/non-response rates for every outreach cycle.

    Escalate unresolved/high-risk findings to client leadership and track to closure.

  • Weekly Reporting
  • Deliver a standing weekly metrics report to leadership: outreach volume, response rates, follow-up/escalation status, suppliers approved for (re)assessment, and overall assessment/remediation coverage.

Required Qualifications:

  • 5+ years in cybersecurity, TPRM, GRC operations, or supplier risk coordination.
  • Working knowledge of NIST CSF, ISO 27001, SOC 2, SIG/CAIQ.
  • Hands-on experience with GRC/TPRM tools (OneTrust, Archer, ServiceNow GRC, SupplierNinja, or similar).
  • Proven ownership of high-volume, multi-step communication workflows with strict tracking/documentation.
  • Excellent written communication for remote, client-facing engagement.
  • Experience operating in distributed/remote teams.

Preferred Qualifications:

  • Certification: CTPRP, CRISC, CISA, or CISSP.
  • Experience with Wrike, AirTable, Jira, or similar tracking tools.
  • Prior experience in regulated industries (financial services, healthcare, insurance).
  • Track record producing leadership-facing weekly reporting.

Company Benefits & Culture:

  • Inclusive and diverse work environment
  • Opportunities for professional growth and development
  • Comprehensive health and wellness benefits
Artech
Vacancy posted 3 hours ago
Similar jobs that could be interesting for youBased on the GRC TPRM SME in Cupertino, CA vacancy
  • $92.25k - $144k

     ...guidance on such reports. Collaborate with General Foremen, Site Superintendents, Area Superintendents and Project Managers as Civil SME. Co‑ordinates rolling schedules with civil contractor and Field Operations team to ensure proper staffing for daily civil... 
    Suggested
    Contract work
    For contractors
    For subcontractor
    Work at office
    Immediate start

    Cupertino Electric, Inc.

    Cupertino, CA
    13 hours ago
  • $172.1k - $258.6k

     ...Develop and refine documentation, APIs/SDKs, and tooling to simplify integrations and reduce partner onboarding friction. Serve as SME on contactless payments, EMV, tokenization, provisioning, and Apple Pay flows to guide troubleshooting and partner architecture reviews... 
    Suggested
    Relocation

    Apple Inc.

    Cupertino, CA
    1 day ago
  •  ...standards deviations, and risk acceptance activities across cloud and on-premises environments. The ideal candidate has experience within GRC, technology risk, or information security and can effectively assess control gaps, compensating controls, and overall risk exposure.... 
    Suggested

    Insight Global

    San Jose, CA
    4 days ago
  • GRC Engineer Why Zania Every enterprise spends millions of dollars on Governance, Risk, and Compliance (GRC). It's one of the most critical, yet universally painful, parts of running a business. For decades, this industry has been dominated by legacy systems with notoriously... 
    Suggested
    Contract work
    Work at office
    Relocation package
    Flexible hours
    Day shift

    Zania

    Palo Alto, CA
    2 days ago
  • CrowdStrike, Inc. is looking for a Manager, Third Party Risk Management based in Sunnyvale, California. In this role, you will lead a team responsible for assessing and managing risks associated with our third-party vendor ecosystem. You will drive improvements to our program...
    Suggested

    CrowdStrike, Inc.

    Sunnyvale, CA
    2 days ago
  •  ...Functional NetSuite Finance Sme Position: Functional NetSuite Finance Sme--This is NOT a NetSuite Developer or Admin resource! Location: Sunnyvale, Ca Duration: 6 Months Hands-on Functional NetSuite experienceconfiguring, customizing, working on integrations etc.... 

    Implify, Inc.

    Sunnyvale, CA
    2 days ago
  •  ...requires deep knowledge of ServiceNow fundamentals, especially in Business Continuity Management. A solid understanding of IT risk and GRC is crucial, along with certifications such as CSA or CIS. Work involves collaborating with teams to implement BCM solutions... 

    ApTask

    Sunnyvale, CA
    3 days ago
  • $160k - $190k

     ...collaborating with various departments to ensure regulatory alignment. The ideal candidate will have over 6 years of experience in security GRC, strong communication skills, and hands-on experience with leading compliance frameworks. Competitive salary range is $160,000 - $190... 

    Applied Intuition

    Sunnyvale, CA
    2 days ago
  • $99k - $232k

    PwC is seeking a SAP Business Process & IT Controls Manager in Palo Alto, California, responsible for leading consulting services that enhance compliance and security in SAP applications. The ideal candidate will have at least a Bachelor's degree and 4 years of experience...

    PwC

    Palo Alto, CA
    3 days ago
  • Identity Governance and Administration SME Job Description Job Title: T&T - IGA (Onshore) Location: Onshore Experience: 10-12 years Practice / Tower: Security Practice Function: Transition & Transformation (T&T) - Architect / SME About the Role: We are seeking a senior... 

    Persistent Systems LLC (New York)

    Santa Clara, CA
    13 hours ago
  •  ...efficiency. The ideal candidate will possess a Bachelor's degree and have at least 2 years of relevant experience, utilizing tools like SAP GRC Tools and SAP BW/4HANA. A comprehensive benefits package and an annual discretionary bonus are included. #J-18808-Ljbffr PwC

    PwC

    Palo Alto, CA
    2 days ago
  • Zania is seeking a GRC Engineer in Palo Alto, California. In this role, you will bridge the product and enterprises, ensuring successful implementation of compliance solutions. You will set clear success goals, own customer relationships, and transition clients to a steady... 
    Flexible hours

    Zania

    Palo Alto, CA
    2 days ago
  • A technology solutions provider is seeking an experienced IAM Consultant to design, integrate, and deploy IAM products, particularly using Saviynt. The successful candidate will have over 10 years in enterprise software, with significant experience in security applications...

    Cloud Hybrid Technologies, LLC

    Santa Clara, CA
    13 hours ago
  •  ...California is seeking a Risk and Compliance Lead to enhance security compliance across the organization. The candidate will oversee security GRC programs, manage compliance efforts, and conduct risk assessments to mitigate risks effectively. The position requires over six years... 

    Decisive Point

    Sunnyvale, CA
    4 days ago
  • Northrop Grumman in Sunnyvale seeks a Sr. Principal Engineering CAD Administrator to manage the CAD system and support engineering documentation. This role involves ensuring compliance of CAD models with ASME standards and collaborating with multiple departments. The ideal...

    Northrop Grumman

    Sunnyvale, CA
    2 days ago
  • Traveltechessentialist is seeking a Head of Audit, Risk & Compliance to lead the governance ecosystem and report directly to the CFO. This role involves architecting a scalable framework to ensure compliance and operational efficiency. The ideal candidate will have 12+ ...

    Traveltechessentialist

    Palo Alto, CA
    3 days ago
  • $70 - $75 per hour

     ...Security Compliance Consultant / GRC Specialist Primary Skills: Evidence collection (advanced), Control documentation (advanced), Gap identification (advanced), GRC workflows (intermediate), Compliance frameworks (intermediate) Contract Type: W2 Only Duration: 8 Months... 
    Hourly pay
    Contract work
    Remote work

    Akraya

    San Jose, CA
    13 hours ago
  •  ...conformity to methodology; validate that RTO/RPO targets from BIA/TIA are supported by architecture and procedures. • Technical SME & advisor: Advise product/service teams on resilient patterns given their structure and how DR integrates with Business Continuity... 
    Work at office
    Remote work

    eTeam

    Cupertino, CA
    1 day ago
  • $132.5k - $302.4k

     ...in the boardroom and in architecture review sessions. The work: Serve as the primary Oracle Cloud Infrastructure (OCI) architecture SME on a large‑scale Oracle Utilities IT transition program, defining cloud architecture standards and guiding infrastructure design... 
    Work experience placement
    Live in
    Work at office
    Local area

    Accenture

    Mountain View, CA
    1 day ago
  • SAIGroup is looking for a Mortgage Loan Officer Subject Matter Expert to lead the integration of operational mortgage expertise into the design of AI products. This role requires at least 7 years of hands-on mortgage loan origination experience and an active NMLS license...

    SAIGroup

    Los Altos, CA
    13 hours ago
  •  ...of experience in backend engineering and proficiency in Python. If you're passionate about emerging technologies and enjoy working in a dynamic startup, this is an excellent opportunity to contribute to shaping the future of GRC solutions. #J-18808-Ljbffr CTERA Networks

    CTERA Networks

    Palo Alto, CA
    4 days ago
  •  ...Senior Manager, GRC At Bloom Energy, our vision for a world powered by clean, reliable, and affordable energy is more than just a dreamwe're making it reality. For over two decades, we've been at the forefront of the global energy transition, pioneering solutions... 
    Full time
    Work at office
    Worldwide
    Flexible hours

    Bloom Energy

    San Jose, CA
    3 days ago
  • $140.91k - $169k

     ...lifecycles, POA&M remediation, and continuous monitoring in a cloud-native environment (AWS or GCP). ~ Hands-on experience with a GRC platform (LogicGate preferred) for control tracking, evidence management, and findings remediation. ~ Demonstrated professional use... 
    Full time
    Temporary work
    Work at office
    Remote work
    Flexible hours

    ID.me

    Mountain View, CA
    21 days ago
  • ESSENTIAL DUTIES AND RESPONSIBILITIES The position is responsible for the daily operational management of the ESL/Reliability laboratories. This position oversees onsite engineering operations, chamber utilization, staffing coordination, customer execution, test scheduling...

    Seeds Renewables

    Santa Clara, CA
    25 days ago
  •  ...portfolio. ~ Golden Deal Library & Validation Rubric — representative scenarios and expected outputs for evaluating AI performance, SME review, regression testing, and release readiness. ~ Servicing & Portfolio Opportunity Map — a prioritized view of post-close... 
    Contract work
    Worldwide

    JazzX AI

    Los Altos, CA
    15 days ago
  • 8+ years of Project Management experience in GRC(Govrenance , Risk Compliance) • Manufacturing (OT) Cybersecurity Experience is must • Candidate should be preferably from Cybersecurity background • Managing GRC projects and has met Assessments and Remediations for... 

    Purple Drive

    Sunnyvale, CA
    19 days ago
  • $124.3k - $234.6k

     ...GRC Strategy & Security Insights Lead Adobe's Technology Governance, Risk & Compliance Organization plays a meaningful role in maintaining customer trust, protecting Adobe's customers, employees, and platforms while enabling innovation at scale. We seek a GRC Strategy... 
    Temporary work
    Local area
    Worldwide
    Shift work

    Adobe

    San Jose, CA
    2 days ago
  • $188k - $282k

     ...Job Description Job Description We are seeking a visionary and results-driven Director of Product, GRC/compliance, to lead our core product strategy, roadmap, and execution. This leader will be responsible for driving innovation across our Compliance product line... 

    FloQast

    San Jose, CA
    a month ago
  • $145k - $160k

     ...environmental testing or design/automation or general ESL experience Ability to design/troubleshoot/maintain an electro-mechanical system SME - Environmental/Dynamics/Electronics Developing detailed plans for new designs and products Making determinations for equipment,... 
    Full time
    Contract work
    Monday to Friday

    Eurofins

    Santa Clara, CA
    2 days ago
  •  ...Principal IAM GRC Analyst The Principal IAM GRC Analyst provides technical guidance, implementation, and enforcement of governance, risk and compliance for IAM-related functions. Additionally, the Principal Analyst utilizes existing systems to govern and manage user... 

    Professional Recruiters

    Santa Clara, CA
    3 hours ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to GRC TPRM SME. Be the first to apply!