Third Party Risk Management Specialist

The Trade Desk is a global technology company with a mission to create a better, more open internet for everyone through principled, intelligent advertising. Handling over 1 trillion queries per day, our platform operates at an unprecedented scale. We have also built something even stronger and more valuable: an award-winning culture based on trust, ownership, empathy, and collaboration. We value the unique experiences and perspectives that each person brings to The Trade Desk, and we are committed to fostering inclusive spaces where everyone can bring their authentic selves to work every day.Do you have a passion for solving hard problems at scale? Are you eager to join a dynamic, globally-connected team where your contributions will make a meaningful difference in building a better media ecosystem? Come and see why Fortune magazine consistently ranks The Trade Desk among the best small-medium-sized workplaces globally.The Cybersecurity team at The Trade Desk strives to protect the people, process, and technology used to further our goals for the open internet. We are looking for a Third-Party Risk Management Specialist who can leverage interpersonal and communication skills in concert with deep security expertise to enable business opportunity through efficient and accurate reporting of the state of Security and Privacy in the organization.What you will do at The Trade Desk:Collaborate with internal teams to respond to security questionnaires and provide accurate, timely responses to customer inquiries.Contribute to and maintain accurate inventory of information relating to the Information Security programs.Execute, monitor, and refine multiple processes from new customer engagements to application review and interpreting new legislation as it relates to company exposure.Work cross functionally, touching parts of business teams, legal, privacy, engineering, and many more.Implement a structured and standardized approach to evaluate potential vendors and service providers.Coordinate the collection of necessary documentation, such as security certifications, audit reports, and compliance evidence.Analyze the collected information to assess the overall risk profile of third parties.Evaluate the security posture and GRC practices of third-party vendors and service providers.Assist in negotiating contracts with third parties to incorporate appropriate security clauses and requirements.Maintain up-to-date records of all third-party risk assessments and compliance status.Support incident response efforts related to third-party incidents, breaches, or security events.We do not expect all applicants will have skills that match a job description exactly. We strongly encourage applicants with alternative experiences to also apply. We are especially interested in connecting if you have:Experience in Third Party Risk Management, Vendor Management, orExperience in Governance, Risk Management and Compliance (GRC)Experience in Information Security/Cybersecurity, or Network/System Administration.A track record in third-party risk management and vendor assessment processes.Familiarity of industry regulations and standards (e.g., GDPR, ISO 27001, NIST, SOC1/2 etc.).Strong analytical and problem-solving skills with attention to detail.Excellent communication and interpersonal skills to collaborate effectively with various stakeholders.Certifications such as CISSP, CISA, CISM, or CRISC.#LI-AD1Our Compensation and Benefits (for NY, CO, CA, and WA residents only)At the Trade Desk, Base Salary is one part of our competitive total compensation and benefits package and is determined using a salary range.  The base salary range for this role is $68,600 -$125,700In accordance with NY, CO, CA, and WA law, the range provided is The Trade Desk's reasonable estimate of the base compensation for this role.  The actual amount may differ based on non-discriminatory factors such as experience, knowledge, skills, abilities, and location.  All employees may be eligible to become The Trade Desk shareholders through eligibility for stock-based compensation grants, which are awarded to employees based on company and individual performance. The Trade Desk also offers other compensation depending on the role such as sales-based incentives and commissions. Plus, expected benefits for this role include comprehensive healthcare (medical, dental, and vision) with premiums paid in full for employees and dependents, retirement benefits such as a 401k plan and company match, short and long-term disability coverage, basic life insurance, well-being benefits, reimbursement for certain tuition expenses, parental leave, sick time of 1 hour per 30 hours worked, vacation time for full time employees up to 120 hours thru the first year and 160 hours thereafter, and around 13 paid holidays per year.  Employees can also purchase The Trade Desk stock at a discount through The Trade Desk’s Employee Stock Purchase Plan. The Trade Desk also offers a competitive benefits package. Click here to learn more.Note: Interns are not eligible for variable incentive awards such as stock-based compensation, retirement plan, vacation, tuition reimbursement or parental leaveThe Trade Desk does not accept unsolicited resumes from search firm recruiters. Fees will not be paid in the event a candidate submitted by a recruiter without an agreement in place is hired; such resumes will be deemed the sole property of The Trade Desk. The Trade Desk is an equal opportunity employer. All aspects of employment will be based on merit, competence, performance, and business needs. We do not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local law.