Nvidia Cybersecurity Engineer - Third Party Risk Management 

United States, Texas 

848850186

What you’ll be doing:

• Agentic Workflow Design: Build autonomous agents that handle the full TPRM lifecycle.

• Employ Generative AI Technology like embeddings, RAG, or LLM agents for summarizing vendor responses.

• Continuous Monitoring Automation: Build event-driven integrations (webhooks, serverless functions) to react to vendor risk score changes or asset discovery events.

• NLP and ETL Automation: Use Natural Language Processing (NLP) for extracting structured data from vendor documents and maintain pipelines for ingesting and correlating vendor risk data, findings, and compliance metrics.

• Integration Architecture: Design modular, API-based pipelines connecting TPRM tooling (LogicGate/OneTrust) with Databricks, Jira, and data warehouses.

• Domain Alignment: Apply deep understanding of the TPRM Lifecycle (onboarding, risk tiering, assessment, remediation) and ensure security relevance based on frameworks such as NIST CSF 2.0, ISO 27001, SOC 2, and CMMC mappings.

• Risk Modeling: Integrate knowledge of Risk Scoring Models (e.g., BitSight scores) into inherent and residual risk calculations.

What we need to see:

• API Engineering: Experience integrating data from security and GRC systems such as BitSight, LogicGate, ServiceNow, or Jira.

• Workflow Automation Tools: Understanding of orchestration and automation systems such as Tines, n8n, Cortex XSOAR for prototypes).

• Data Modeling & Pipelines: Ability to design and maintain data models for vendor metadata, risk scores, and control test results.

• Proficient in using tools like Cursor, Claude, Gemini, or similar frameworks to develop agentic automations for data analysis and workflow execution.

• Observability & Metrics: Ability to implement logging, monitoring, and metrics dashboards (e.g., PowerBI) for TPRM automation health.

• 8+ years of proven experience in cybersecurity with a focus on automation, security engineering, or architecture.

• Communication & System Thinking: Strong cross-functional communication. System thinking to translate policy/compliance goals into technical automation design.

• Leadership: Innovation mindset: Ability to propose and prototype emerging AI approaches responsibly; Excellent Documentation & Knowledge-sharing skills of automation architecture, runbooks, and control mappings.

• Minimum bachelor’s degree or equivalent experience in a technology or relevant scientific field required.

Ways to stand out from the crowd:

• Certifications in one or more of the following areas: CIPP, CISSP, CISA, CISM, CRISC.

• Proficiency in using third-party risk management platforms such as OneTrust, RSA Archer, or similar tools.

• Hands-on experience with developing and maintaining metrics dashboards for Cybersecurity programs.

• Demonstrated ability to manage and mitigate risks associated with a large and diverse portfolio of third-party vendors.