About TaskUs: TaskUs is a provider of outsourced digital services and next-generation customer experience to fast-growing technology companies, helping its clients represent, protect and grow their brands. Leveraging a cloud-based infrastructure, TaskUs serves clients in the fastest-growing sectors, including social media, e-commerce, gaming, streaming media, food delivery, ride-sharing, HiTech, FinTech, and HealthTech. 

The People First culture at TaskUs has enabled the company to expand its workforce to approximately 45,000 employees globally. Presently, we have a presence in twenty-three locations across twelve countries, which include the Philippines, India, and the United States.

It started with one ridiculously good idea to create a different breed of Business Processing Outsourcing (BPO)! We at TaskUs understand that achieving growth for our partners requires a culture of constant motion, exploring new technologies, being ready to handle any challenge at a moment’s notice, and mastering consistency in an ever-changing world.

What We Offer: At TaskUs, we prioritize our employees' well-being by offering competitive industry salaries and comprehensive benefits packages. Our commitment to a People First culture is reflected in the various departments we have established, including Total Rewards, Wellness, HR, and Diversity. We take pride in our inclusive environment and positive impact on the community. Moreover, we actively encourage internal mobility and professional growth at all stages of an employee's career within TaskUs. Join our team today and experience firsthand our dedication to supporting People First.

This role requires hands-on experience with security risks and assessment, especially with specific security programs. You must be able to solve challenging security issues at scale and work collaboratively with all stakeholders. Additionally, you should be comfortable with incomplete requirements and a fast paced environment.

Responsibilities:

• You will review the responses and escalate any findings to the Management for review

• Findings from vendors and/or system owners will need to be documented and tracked for remediation

• You will need to determine risks to the systems and data and determine when to escalate for review

• Conducting Risk Assessments and other Risk Management related activities

• Support the Enterprise Security Lead in handling the assessment and integration of security controls of the entire corporate environment in line with applicable requirements from PCI , SOC 2, HIPAA, ISO 27001 etc.

• Send out security assessments to identified vendors and Internal System Owners

• Follow up with vendors and Internal System Owners to ensure assessments are completed by the due date outlined

• Review vendor security assessments to determine if the security requirements are being met

• Review Internal Control assessments to determine if the policy requirements are being met

• Follow up with vendors and/or system owners for clarification on assessment responses and for additional information needed to complete the assessment review

• Document and triage findings from vendors on security responses

• Collaborate with internal stakeholders on assessments, including identification of findings and associated remediation plans.

• Consult with internal stakeholders on security standards and best practices to protect the data and systems

• Follow up with internal stakeholders and vendors on remediation to ensure security risks are tracked and closed

• Escalate issues regarding findings to internal stakeholders for review

Requirements:

• At least 2 to 4 years of experience specifically in IT Security role

• With hands-on experience in:

○ GRC (Governance, Risk and Compliance)

○ Assessment tools: OneTrust, RSA Archer, Prevalent, ProcessUnity)

○ Risk/Compliance Framework: PCI, HIPAA, NIST, SOC2 T2, ISO27001, COBIT)

• Exceptional verbal and written communication skills necessary to effectively collaborate with peers, and to present and explain highly technical information to stakeholders who may have limited technical knowledge.

• Bachelor's degree in IT Security, Computer Science, or equivalent; or an additional 4 years of relevant IT experience .

How We Partner To Protect You: TaskUs will neither solicit money from you during your application process nor require any form of payment in order to proceed with your application. Kindly ensure that you are always in communication with only authorized recruiters of TaskUs.

DEI: In TaskUs we believe that innovation and higher performance are brought by people from all walks of life. We welcome applicants of different backgrounds, demographics, and circumstances. Inclusive and equitable practices are our responsibility as a business. TaskUs is committed to providing equal access to opportunities. If you need reasonable accommodations in any part of the hiring process, please let us know.

We invite you to explore all TaskUs career opportunities and apply through the provided URL https://www.taskus.com/careers/.