Cybersecurity Engineer - Third Party Risk Management

Our work at NVIDIA is dedicated towards a computing model focused on visual and AI computing. For two decades, NVIDIA has pioneered visual computing, the art, and science of computer graphics, with our invention of the GPU. The GPU has also shown to be spectacularly effective at solving some of the most complex problems in computer science. Today, NVIDIA's GPU simulates human intelligence, running deep learning algorithms and acting as the brain of computers, robots, and self-driving cars that can perceive and understand the world. We are looking to grow our company and teams with the hardest working people in the world. NVIDIA is seeking a highly motivated Cybersecurity Engineer with a passion for working in a dynamic technology company. Support the Security team with external party risk management at NVIDIA.

What you’ll be doing:

• Agentic Workflow Design: Build autonomous agents that handle the full TPRM lifecycle.

• Employ Generative AI Technology like embeddings, RAG, or LLM agents for summarizing vendor responses.

• Continuous Monitoring Automation: Build event-driven integrations (webhooks, serverless functions) to react to vendor risk score changes or asset discovery events.

• NLP and ETL Automation: Use Natural Language Processing (NLP) for extracting structured data from vendor documents and maintain pipelines for ingesting and correlating vendor risk data, findings, and compliance metrics.

• Integration Architecture: Design modular, API-based pipelines connecting TPRM tooling (LogicGate/OneTrust) with Databricks, Jira, and data warehouses.

• Domain Alignment: Apply deep understanding of the TPRM Lifecycle (onboarding, risk tiering, assessment, remediation) and ensure security relevance based on frameworks such as NIST CSF 2.0, ISO 27001, SOC 2, and CMMC mappings.

• Risk Modeling: Integrate knowledge of Risk Scoring Models (e.g., BitSight scores) into inherent and residual risk calculations.

What we need to see:

• API Engineering: Experience integrating data from security and GRC systems such as BitSight, LogicGate, ServiceNow, or Jira.

• Workflow Automation Tools: Understanding of orchestration and automation systems such as Tines, n8n, Cortex XSOAR for prototypes).

• Data Modeling & Pipelines: Ability to design and maintain data models for vendor metadata, risk scores, and control test results.

• Proficient in using tools like Cursor, Claude, Gemini, or similar frameworks to develop agentic automations for data analysis and workflow execution.

• Observability & Metrics: Ability to implement logging, monitoring, and metrics dashboards (e.g., PowerBI) for TPRM automation health.

• 8+ years of proven experience in cybersecurity with a focus on automation, security engineering, or architecture.

• Communication & System Thinking: Strong cross-functional communication. System thinking to translate policy/compliance goals into technical automation design.

• Leadership: Innovation mindset: Ability to propose and prototype emerging AI approaches responsibly; Excellent Documentation & Knowledge-sharing skills of automation architecture, runbooks, and control mappings.

• Minimum bachelor’s degree or equivalent experience in a technology or relevant scientific field required.

Ways to stand out from the crowd:

• Certifications in one or more of the following areas: CIPP, CISSP, CISA, CISM, CRISC.

• Proficiency in using third-party risk management platforms such as OneTrust, RSA Archer, or similar tools.

• Hands-on experience with developing and maintaining metrics dashboards for Cybersecurity programs.

• Demonstrated ability to manage and mitigate risks associated with a large and diverse portfolio of third-party vendors.

NVIDIA is widely considered to be one of the technology world’s most desirable employers. We have some of the most forward-thinking and hardworking people on the planet working for us. If you're creative, hard-working, and daring, we want to hear from you!

Your base salary will be determined based on your location, experience, and the pay of employees in similar positions. The base salary range is 168,000 USD - 258,750 USD for Level 4, and 192,000 USD - 304,750 USD for Level 5.Applications for this job will be accepted at least until November 23, 2025.NVIDIA is committed to fostering a diverse work environment and proud to be an equal opportunity employer. As we highly value diversity in our current and future employees, we do not discriminate (including in our hiring and promotion practices) on the basis of race, religion, color, national origin, gender, gender expression, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by law.