ADP is hiring a Senior Security Assessor – Global Third-Party Risk Management
Are you passionate about cybersecurity and third-party risk management? Do you thrive in an environment that values security, compliance, and risk-based decision-making?
Join ADP’s Global Security Organization (GSO) and play a critical role in protecting one of our most valuable assets—employee data. Our clients trust us to secure their information, and we ensure integrity, confidentiality, and compliance at every stage of the information lifecycle.
Position summary
The Senior Security Assessor will evaluate the security risks introduced by third-party vendors, assessing their technical, administrative, and physical security controls. This role requires strong analytical skills, technical expertise, and the ability to collaborate across global teams including Business Units, Procurement, Legal, Privacy and other GSO teams. The ideal candidate will have a deep understanding of infrastructure and application security architecture, encryption mechanisms, strong authentication, business resiliency and other technical security concepts to identify and mitigate risks effectively.
Responsibilities:
• Conduct in-depth third-party risk assessments, focusing on technical security controls, compliance with ADP standards and industry best practices.
• Analyze penetration test reports, security architecture diagrams and vulnerability assessments to evaluate vendor security posture.
• Identify, document and report security gaps, collaborating with business leaders and vendors to develop remediation strategies.
• Monitor the remediation progress of identified security gaps, ensuring third parties address vulnerabilities in a timely manner.
• Guide third-party vendors in understanding security gaps and provide remediation options based on industry best practices.
• Communicate complex technical security findings to stakeholders including those with non-technical backgrounds.
• Partner with internal teams to drive third-party risk awareness and develop strategies to mitigate risks effectively.
• Stay updated on emerging threats, vulnerabilities, and evolving security technologies to enhance the third-party risk assessment process.
• Contribute to continuous improvement of the third-party risk management program by recommending and implementing new methodologies and best practices.
Qualifications required:
• 3-5 years of experience in cybersecurity, with at least 3 years focused on security risk assessments, penetration testing or security auditing.
• Strong technical expertise in security controls, network architecture, cloud security and vulnerability management.
• Experience interpreting and assessing reports such as penetration tests, SOC 2, ISO 27001 and security risk assessments.
• Hands-on experience analyzing security configurations, access controls and encryption implementations.
• Proven ability to work independently while collaborating with global teams in a fast-paced environment.
• Excellent verbal and written communication skills, with the ability to explain security risks to technical and non-technical audiences.
• Fluency in English; additional languages are a plus.
Qualifications preferred
• Experience with cloud security including AWS, Azure and GCP.
• Knowledge of security frameworks such as NIST 800-53, ISO 27001, SOC 2, CSA CCM and CIS Controls.
• Familiarity with attack techniques, threat modeling and security architecture principles.
• Professional security certifications such as CISSP, CISA, CISM or CCSK are a plus.
• Passion for cybersecurity and a proactive approach to learning emerging security threats and technologies.
If you’re looking to make an impact in securing ADP’s third-party ecosystem, apply today and become part of our mission to protect critical data and infrastructure.
Diversity, Equity, Inclusion & Equal Employment Opportunity at ADP: ADP affirms that inequality is detrimental to our associates, our clients, and the communities we serve. Our goal is to impact lasting change through our actions. Together, we unite for equality and equity. ADP is committed to equal employment opportunities regardless of any protected characteristic, including race, color, genetic information, creed, national origin, religion, sex, affectional or sexual orientation, gender identity or expression, lawful alien status, ancestry, age, marital status, or protected veteran status and will not discriminate against anyone on the basis of a disability. We support an inclusive workplace where associates excel based on personal merit, qualifications, experience, ability, and job performance.
Ethics at ADP: ADP has a long, proud history of conducting business with the highest ethical standards and full compliance with all applicable laws. We also expect our people to uphold our values with the highest level of integrity and behave in a manner that fosters an honest and respectful workplace. Click https://jobs.adp.com/life-at-adp/ to learn more about ADP’s culture and our full set of values.