Job Description
At Dispel, we secure the systems that keep the world running.
We enable safe, reliable access to critical infrastructure by applying a zero trust model to industrial and operational technology (OT) environments—where traditional security approaches fall short. Our platform delivers secure remote access and data connectivity without exposing networks, allowing teams to operate, maintain, and scale essential systems with confidence.
What You’ll Do
Own Procurement End-to-End
- Run the full lifecycle of vendor procurement from intake through onboarding, contract execution, and activation.
- Push stakeholders to define clear requirements, business justification, and budget alignment—not just intake requests.
- Evaluate vendors across cost, capability, risk, and strategic fit, and guide teams toward the right decisions (not just process them).
- Maintain and evolve the Approved Vendor List, driving consolidation and better commercial outcomes where possible.
Lead Contracting & Negotiation
- Own contract execution—draft, redline, and negotiate NDAs, MSAs, DPAs, and security addenda with minimal oversight.
- Drive negotiations directly with vendors, balancing risk, speed, and business priorities.
- Ensure all contracts meet FedRAMP and security requirements, including required clauses and control alignment.
- Partner with Legal and Security on complex issues, but don’t rely on them to drive the process.
- Build and refine contract templates and negotiation playbooks to scale the function.
Own Vendor Risk & Governance
- Lead vendor onboarding and risk assessment end-to-end, with clear ownership and accountability.
- Evaluate vendor security posture (SOC 2 Type II, ISO 27001, etc.) and map controls to NIST 800-53 requirements.
- Prepare and present vendor packages for approval, including risk, compliance, and cost analysis.
- Make and document vendor approval/rejection recommendations with clear rationale.
- Act as the procurement lead during vendor security incidents, ensuring vendors meet contractual obligations and remediation timelines.
Drive Process & Operational Excellence
- Own and improve procurement workflows, SLAs, and tooling—this role is expected to fix broken processes, not just run them.
- Maintain visibility across all active vendors with clear owners, timelines, and escalation paths.
- Reduce cycle time, eliminate back-and-forth, and make procurement a fast, predictable function.
Partner with Finance
- Ensure procurement aligns with billing, invoicing, and payment workflows.
- Partner with Finance to resolve discrepancies and ensure clean, timely financial operations tied to vendor contracts.
Qualifications
- 5–8+ years of experience in procurement, strategic sourcing, contracting, or vendor management.
- Proven track record of owning contract negotiations and execution independently.
- Experience working with security, compliance, and legal stakeholders in a regulated or security-conscious environment.
- Comfortable operating with ambiguity and minimal structure—and improving it.
Bonus
- Experience in FedRAMP or similarly regulated environments.
- Strong familiarity with NIST 800-53 and third-party risk frameworks.
- Experience supporting cybersecurity, SaaS, or infrastructure vendors.
- Experience building or scaling procurement/contracting functions in a startup or high-growth company.
- Experience supporting or owning contract review and legal workflows (redlining, negotiation exposure); J.D. degree is a bonus.
Skills
Strong contract negotiation and redlining capability.
Ability to push back and influence stakeholders when needed.
Highly organized, able to manage multiple complex workstreams simultaneously.
Clear, direct communicator—keeps things moving.
Comfortable with tools like Excel, Word, and platforms such as Drata, Box, Brex.
Base salary up to 115K
Performance bonus eligible
Equity eligible
Generous PTO
Fully remote
Medical, vision, dental insurance
401K company match
