Third Party Risk Analyst

Job Summary

A company is looking for a Third Party Risk Management Analyst III.

Key Responsibilities

• Perform enterprise-wide vendor risk assessments and prepare detailed reports
• Manage third party plans of action to address vulnerabilities and compliance items
• Collaborate with business units to develop and implement risk mitigation controls

Required Qualifications

• At least 3 years of experience in information technology and information security
• Bachelor's degree in IT or related discipline; experience may substitute for education
• Information security/TPRM certification (e.g., CTPRP, CISSP, CISM) is a plus
• Clear understanding of governance, risk management, and compliance frameworks
• Ability to balance risk management with business drivers