Cybersecurity Risk and Compliance Associate

Position Summary
This role supports Jet Aviation’s cybersecurity compliance program, with a focus on third-party risk management, vendor assessments, and broader compliance initiatives. The successful candidate will contribute to evaluating vendor security postures, maintaining risk documentation, supporting customer-facing security requirements, and strengthening overall compliance processes.

Key Responsibilities

• Support third-party risk management activities, including vendor cybersecurity risk assessments and reviews
• Maintain accurate and up-to-date documentation within governance, risk, and compliance (GRC) systems
• Assist in preparing and reviewing responses to customer cybersecurity questionnaires
• Track and follow up on remediation actions for identified vendor compliance gaps
• Collaborate with cross-functional teams (e.g., Procurement, Legal, IT) to ensure consistent third-party cybersecurity practices
• Contribute to internal audits and compliance reviews related to vendor risk and regulatory requirements
• Support risk assessment activities by gathering, organizing, and analysing relevant data
• Assist with general cybersecurity compliance tasks, including policy adherence and regulatory alignment
• Represent Jet Aviation as one company internally and externally, including engagement with industry groups, regulatory bodies, and the General Dynamics network

Minimum Requirements

• 1–3 years of experience in IT, cybersecurity, compliance, or a related field
• Foundational understanding of third-party risk management and cybersecurity frameworks (e.g., NIST SP 800-53, ISO 27001)
• Familiarity with vendor risk assessments, security questionnaires, and compliance documentation
• Strong organizational skills with the ability to manage documentation effectively
• Good communication and interpersonal skills, with the ability to collaborate across teams and with external vendors
• Proficiency in Microsoft Office tools (Excel, Word, PowerPoint)
• Basic data analysis and reporting capabilities

Desired Attributes

• Detail-oriented with a proactive approach to supporting compliance and risk management activities
• Eagerness to learn and stay current with evolving cybersecurity trends and regulatory requirements
• Self-motivated, with the ability to take initiative and work independently
• Clear and effective communicator, able to convey technical and compliance information to diverse audiences
• Demonstrates strong personal values aligned with Jet Aviation’s principles of Trust, Honesty, Alignment, and Transparency