Zscaler

Sr Staff, Security Third Party Risk Management

Costa Rica

Auto‑apply with AI Apply

Not SpecifiedCompensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Information Security, CybersecurityIndustries

Requirements

Candidates should possess a minimum of 7 years of experience in cybersecurity roles such as risk management, vendor risk assessments, incident response, security operations, security engineering, or network security, along with a strong understanding of security best practices including application security, secure software development lifecycles, risk management, data protection, encryption, identity and access management, security governance, and network security. Experience with common cybersecurity frameworks and standards like NIST, ISO 27001, SOC2, and GDPR is required, as well as experience collaborating and communicating with stakeholders across multiple geographies.

Responsibilities

The Senior Staff, Security Third Party Risk Management professional will conduct comprehensive risk assessments of third-party vendors, manage the vendor intake process, and review required evidence; partner with procurement, legal, compliance, IT, and other functions to ensure due diligence is performed; monitor and assess the security of third parties and support the response and remediation of cybersecurity incidents; evaluate and implement improvements to the TPRM program, including policies, procedures, and technical security standards; and generate security risk rating metrics and reports while escalating potential risks or non-responses.

Skills

Cybersecurity

Third Party Risk Management

Risk Assessments

Security Strategy

Vendor Risk

Cybersecurity Governance

Zscaler

Cloud-based cybersecurity and secure gateway services

About Zscaler

Zscaler provides cloud-based information security services, focusing on internet, web, and cloud security. Its platform functions as a secure gateway that inspects all internet traffic between users and applications, ensuring that threats are identified and stopped before they can access a client's network. This service is offered through a subscription model, allowing large enterprises and government organizations to select the level of security that meets their needs. Zscaler differentiates itself from competitors by offering a strong partner program that enhances market reach and provides partners with training and resources. The company's goal is to support secure digital transformation for its clients by delivering reliable security solutions.

Key Metrics

San Jose, CaliforniaHeadquarters

2008Year Founded

$148.8MTotal Funding

IPOCompany Stage

Enterprise Software, CybersecurityIndustries

5,001-10,000Employees

Benefits

Comprehensive health plans

Supportive parental & family leave

On-demand learning & development

Company-sponsored volunteering

Global tuition assistance program

Guilt-free paid time off

Risks

Emerging cybersecurity firms may erode Zscaler's market share.

Economic downturns could impact Zscaler's subscription-based revenue model.

The retirement of CFO Mr. Canessa may lead to financial instability.

Differentiation

Zscaler offers a 100% cloud-based security platform, eliminating on-premise hardware needs.

The company is a Gartner magic quadrant leader for secure web gateways.

Zscaler's platform inspects all internet traffic, ensuring threats are neutralized pre-network.

Upsides

Zscaler's FY/25 guidance was revised upward, indicating strong financial performance.

The partnership with Bharti Airtel enhances Zscaler's zero-trust architecture offerings.

Zscaler's hiring of government experts strengthens its position in the public sector.

Land your dream remote job 3x faster with AI

Try Jobo Free