Vendor Security Program Manager - Remote

Overview

Pinterest’s Security team (Pinfosec) is seeking an experienced program manager to drive vendor and third-party security initiatives to keep our users, employees, and infrastructure safe from third-party risk. You will have the opportunity to lead and improve our vendor security program and provide meaningful impact in minimizing risk for Pinterest. You’re passionate about security innovation, and able to vet third-party solutions while minimizing employee friction and maximizing productivity.

In Short

• Perform vendor security assessments to minimize risk from third-party services.
• Maintain and improve vendor security program while collaborating with internal stakeholders.
• Identify, communicate, and remediate vendor security issues.
• Interface with teams and lead vendor security initiatives.
• Manage contractors delivering vendor security assessments.
• Conduct periodic reviews of the Vendor Security program.
• Drive accurate program metrics and documentation.
• Work with technology and legal partners on security requirements.

Requirements

• 5+ years experience in vendor security risk analysis.
• 3+ years managing a Vendor Security program.
• Experience in designing and managing security programs.
• Familiarity with compliance frameworks (e.g. PCI, GDPR, SOC2, ISO27001).
• Good understanding of various security domains.
• Strong sense of ownership and comfortable with autonomy.
• Great communicator for leading meetings and interviews.
• Bachelor's degree in Computer Science or equivalent experience.

Benefits

• Equitable and inclusive workplace.
• Flexible work model (PinFlex).
• Opportunities for professional growth.
• Access to a supportive team environment.