Information Security – Vendor Security

5 - 10 years
Full Time
United States
San Francisco, CA
October 28, 2019

Looking for a company that inspires passion, courage and imagination, where you can be part of the team shaping the future of global commerce? Want to shape how millions of people buy, sell, connect, and share around the world? If you’re interested in joining a purpose driven community that is dedicated to creating an ambitious and inclusive workplace, join eBay – a company you can be proud to be a part of.

About Our Team :
The Information Security Vendor Security position is responsible for supporting eBay’s Global Vendor Security program. This individual will be working directly with business leaders and technologists to understand outsourced business and technology processes and identify vendor security issues and risks; conducting vendor security assessment efforts for new and existing vendors; prioritizing vendor security assessment activities; and negotiating information security contract terms.


We are looking for someone with strong information security program governance, communication, negotiation, and writing skills, experience with Information Security and Privacy regulation principles, and experience working within a vendor management governance process. The successful candidate will also have a strong understanding of vendor risk management within large global enterprises.


Key Responsibilities include:

  • Work with business leaders and technologists to understand outsourced business and technology processes to identify and evaluate associated information security risks for vendors.
  • Negotiate Information Security contract requirements with Legal, Privacy, and Vendors/Partners.
  • Communicate vendor security risks to business leaders and vendors to ensure a clear understanding of these risks.
  • Negotiate remediation plans for security issues identified from vendor assessments.
  • Establish and prioritize vendor security assessment activities.
  • Provides information security control expertise and guidance to major business initiatives within eBay’s global business environment as needed.
  • Ensure adherence to eBay’s policies, standards, and methodologies.
  • Provide leadership in maturing the global information security program to meet the ongoing needs of the business.
  • Communicate and present key vendor security initiatives, practices, and issues to business units.
  • Establish, monitor, and report Key Performance Indicators and Key Risk Indicators for the Vendor Security Program.
  • Must be able to interface and coordinate work efficiently and effectively with business colleagues and vendors in a variety of global locations and time zones.
  • Other duties as assigned.


  • 7+ years of experience in Information Security with information security risk governance and compliance experience preferred.
  • 3+ years of experience within a vendor security assessment role evaluating third party information security programs and negotiating information security contract terms.
  • Experience working with global privacy regulations including GDPR.
  • Experience using vendor cybersecurity scoring solutions is preferred.
  • Strong communication and negotiation skills with the ability to communicate effectively with various audiences – technologists, business leaders, and legal contract attorneys.
  • Strong writing skills with experience drafting and negotiating legal contract information security requirements.
  • Strong analytical, organizational and decision-making skills.
  • Self-starter with leadership skills and the ability to manage multiple vendor assessments concurrently.

Education and Certifications:

  • Bachelor’s Degree or equivalent work-related experience required.
  • CISSP, CISM, CISA, CIPP or equivalent preferred.


  • Occasional travel required as needed


About eBay:

eBay Inc. operates e-commerce platforms that connect various buyers and sellers worldwide. Its platforms enable sellers to organize and offer inventory for sale; and buyers to find and buy it virtually anytime and anywhere. The company’s Marketplace platforms include its online marketplace at and the eBay mobile apps; and StubHub platforms comprise its online ticket platform at and the StubHub mobile apps, which enable fans to purchase tickets to the games, concerts, and theater shows. Its Classifieds platforms include a collection of brands, such as, Kijiji, Gumtree, Marktplaats, eBay Classifieds, and others that offer online classifieds and help people find whatever they are looking for in their local communities. The company platforms enable users to find, buy, sell, and pay for items through various online, mobile, and offline channels, which include retailers, distributors, liquidators, import and export companies, auctioneers, catalog and mail-order companies, classifieds, directories, search engines, commerce participants, shopping channels, and networks. eBay Inc. was founded in 1995 and is headquartered in San Jose, California.

Apply for this job


Related Jobs