Cybersecurity Engineer - Third Party Risk Management at NVIDIA

Santa Clara, California, United States

Apply Now

Not SpecifiedCompensation

Mid-level (3 to 4 years), Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Technology, CybersecurityIndustries

Requirements

API Engineering: Experience integrating data from security and GRC systems such as BitSight, LogicGate, ServiceNow, or Jira
Workflow Automation Tools: Understanding of orchestration and automation systems such as Tines, n8n, Cortex XSOAR for prototypes
Data Modeling & Pipelines: Ability to design and maintain data models for vendor metadata, risk scores, and control test results
Proficient in using tools like Cursor, Claude, Gemini, or similar frameworks to develop agentic automations for data analysis and workflow execution
Observability & Metrics: Ability to implement logging, monitoring, and metrics dashboards (e.g., PowerBI) for TPRM automation health
8+ years of proven experience in cybersecurity with a focus on automation, security engineering, or architecture
Communication & System Thinking: Strong cross-functional communication. System thinking to translate policy/compliance goals into technical automation design
Leadership: Innovation mindset: Ability to propose and prototype emerging AI approaches responsibly; Excellent Documentation & Knowledge-sharing skills of automation architecture, runbooks, and control mappings
Minimum bachelor’s degree or equivalent experience in a technology or relevant scientific field required

Responsibilities

Agentic Workflow Design: Build autonomous agents that handle the full TPRM lifecycle
Employ Generative AI Technology like embeddings, RAG, or LLM agents for summarizing vendor responses
Continuous Monitoring Automation: Build event-driven integrations (webhooks, serverless functions) to react to vendor risk score changes or asset discovery events
NLP and ETL Automation: Use Natural Language Processing (NLP) for extracting structured data from vendor documents and maintain pipelines for ingesting and correlating vendor risk data, findings, and compliance metrics
Integration Architecture: Design modular, API-based pipelines connecting TPRM tooling (LogicGate/OneTrust) with Databricks, Jira, and data warehouses
Domain Alignment: Apply deep understanding of the TPRM Lifecycle (onboarding, risk tiering, assessment, remediation) and ensure security relevance based on frameworks such as NIST CSF 2.0, ISO 27001, SOC 2, and CMMC mappings
Risk Modeling: Integrate knowledge of Risk Scoring Models (e.g., BitSight scores) into inherent and residual risk calculations

Skills

Key technologies and capabilities for this role

Generative AIEmbeddingsRAGLLM agentsNLPETLAPI EngineeringWebhooksServerless FunctionsDatabricksJiraLogicGateOneTrustNIST CSF 2.0ISO 27001SOC 2CMMCBitSightRisk Scoring ModelsTPRM

Questions & Answers

Common questions about this position

What experience level is required for this Cybersecurity Engineer role?

The role requires 8+ years of proven experience in cybersecurity with a focus on automation, security engineering, or architecture.

What key technical skills are needed for this position?

Required skills include API engineering for integrating security and GRC systems like BitSight and LogicGate, workflow automation with tools like Tines or n8n, data modeling and pipelines, and proficiency in Generative AI tools like Cursor or Claude for agentic automations.

Is this a remote position or does it require office work?

This information is not specified in the job description.

What is the salary or compensation for this role?

This information is not specified in the job description.

What soft skills or qualities make a strong candidate for this role?

Strong candidates will have excellent cross-functional communication, systems thinking to translate policy into technical designs, and a leadership mindset with innovation to prototype emerging AI approaches.

NVIDIA

Designs GPUs and AI computing solutions

About NVIDIA

NVIDIA designs and manufactures graphics processing units (GPUs) and system on a chip units (SoCs) for various markets, including gaming, professional visualization, data centers, and automotive. Their products include GPUs tailored for gaming and professional use, as well as platforms for artificial intelligence (AI) and high-performance computing (HPC) that cater to developers, data scientists, and IT administrators. NVIDIA generates revenue through the sale of hardware, software solutions, and cloud-based services, such as NVIDIA CloudXR and NGC, which enhance experiences in AI, machine learning, and computer vision. What sets NVIDIA apart from competitors is its strong focus on research and development, allowing it to maintain a leadership position in a competitive market. The company's goal is to drive innovation and provide advanced solutions that meet the needs of a diverse clientele, including gamers, researchers, and enterprises.

Santa Clara, CaliforniaHeadquarters

1993Year Founded

$19.5MTotal Funding

IPOCompany Stage

Automotive & Transportation, Enterprise Software, AI & Machine Learning, GamingIndustries

10,001+Employees

Benefits

Company Equity

401(k) Company Match

Risks

Increased competition from AI startups like xAI could challenge NVIDIA's market position.

Serve Robotics' expansion may divert resources from NVIDIA's core GPU and AI businesses.

Integration of VinBrain may pose challenges and distract from NVIDIA's primary operations.

Differentiation

NVIDIA leads in AI and HPC solutions with cutting-edge GPU technology.

The company excels in diverse markets, including gaming, data centers, and autonomous vehicles.

NVIDIA's cloud services, like CloudXR, offer scalable solutions for AI and machine learning.

Upsides

Acquisition of VinBrain enhances NVIDIA's AI capabilities in the healthcare sector.

Investment in Nebius Group boosts NVIDIA's AI infrastructure and cloud platform offerings.

Serve Robotics' expansion, backed by NVIDIA, highlights growth in autonomous delivery services.

Land your dream remote job 3x faster with AI

Try Jobo Free