{"id":737,"date":"2025-12-04T11:13:06","date_gmt":"2025-12-04T11:13:06","guid":{"rendered":"https:\/\/skillbasedmatching.com\/jobs\/?post_type=jobpost&#038;p=737"},"modified":"2025-12-04T11:13:09","modified_gmt":"2025-12-04T11:13:09","slug":"technology-risk-analyst-third-party-risk-management-tprm","status":"publish","type":"jobpost","link":"https:\/\/skillbasedmatching.com\/jobs\/current-jobs\/technology-risk-analyst-third-party-risk-management-tprm\/","title":{"rendered":"Technology Risk Analyst \u2013 Third-Party Risk Management (TPRM)"},"content":{"rendered":"\n<p>\u200bThis is a <strong>remote<\/strong> <strong>Technology Risk Analyst<\/strong> role focused on independently assessing and managing technology risks associated with <strong>third-party vendors and service providers<\/strong>. As a key member of the Digital Technology Risk Assurance team, this role drives the organization&#8217;s overall risk posture by conducting comprehensive evaluations, identifying vulnerabilities, and ensuring continuous compliance within third-party relationships.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200b<strong>Location:<\/strong> Remote, United States.<\/li>\n\n\n\n<li>\u200b<strong>Experience (Required):<\/strong> <strong>2\u20134 years<\/strong> in technology risk, cybersecurity, audit, compliance, or third-party risk management.<\/li>\n\n\n\n<li>\u200b<strong>Focus:<\/strong> Performing vendor risk assessments, due diligence, ongoing monitoring, and aligning all practices with major industry standards (NIST, ISO 27001).<\/li>\n\n\n\n<li>\u200b<strong>Work Style:<\/strong> Proactive individual capable of tackling complex challenges with <strong>minimal guidance<\/strong>.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">\u200bEssential Functions: Vendor Lifecycle and Compliance<\/h3>\n\n\n\n<p>\u200bThe Analyst is responsible for the full lifecycle of technology risk assessment across third-party engagements.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200b<strong>Vendor Evaluation:<\/strong> Conduct <strong>in-depth evaluations<\/strong> of third-party vendors, encompassing their financial stability, operational performance, and adherence to <strong>regulatory compliance<\/strong> requirements.<\/li>\n\n\n\n<li>\u200b<strong>Risk Identification and Mitigation:<\/strong> Proactively identify potential <strong>technology risks and vulnerabilities<\/strong> within third-party relationships, then develop and implement effective <strong>mitigation strategies<\/strong> and plans.<\/li>\n\n\n\n<li>\u200b<strong>Continuous Monitoring:<\/strong> Implement and maintain <strong>continuous monitoring<\/strong> of third-party performance and compliance through regular audits, reviews, and performance assessments.<\/li>\n\n\n\n<li>\u200b<strong>Cross-Functional Collaboration:<\/strong> Foster strong relationships with internal teams (<strong>procurement, legal, IT, and compliance<\/strong>) to ensure a unified approach to third-party risk management (TPRM).<\/li>\n\n\n\n<li>\u200b<strong>Alignment:<\/strong> Ensure all TPRM practices are meticulously aligned with established <strong>industry standards<\/strong> (NIST, ISO 27001), regulatory requirements, and organizational goals.<\/li>\n\n\n\n<li>\u200b<strong>Documentation:<\/strong> Maintain thorough, accurate, and up-to-date records pertaining to all TPRM processes and activities.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">\u200bRequired and Preferred Qualifications<\/h3>\n\n\n\n<p>\u200bThe role requires foundational experience in risk frameworks and strong analytical skills.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200b<strong>Required Experience:<\/strong>\n<ul class=\"wp-block-list\">\n<li>\u200b2\u20134 years in relevant fields (technology risk, cybersecurity, audit, compliance, or TPRM).<\/li>\n\n\n\n<li>\u200bExperience performing <strong>vendor risk assessments, due diligence, and ongoing monitoring<\/strong>.<\/li>\n\n\n\n<li>\u200bWorking knowledge of risk frameworks (e.g., <strong>NIST, ISO 27001<\/strong>).<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>\u200b<strong>Preferred Experience:<\/strong>\n<ul class=\"wp-block-list\">\n<li>\u200b3+ years of third-party risk management experience, including process or framework improvement.<\/li>\n\n\n\n<li>\u200bUnderstanding of IT and cybersecurity concepts (<strong>cloud, network, application security<\/strong>).<\/li>\n\n\n\n<li>\u200bExperience automating TPRM workflows or using <strong>GRC platforms<\/strong> (e.g., ServiceNow).<\/li>\n\n\n\n<li>\u200bExperience managing the <strong>full vendor risk lifecycle<\/strong> (onboarding through offboarding).<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>\u200b<strong>Certifications (Preferred):<\/strong> Professional certifications such as <strong>CISA, CISM, CRISC, CISSP, CTPRA<\/strong>, or similar.<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>\u200bThis is a remote Technology Risk Analyst role focused on independently assessing and managing technology risks associated with third-party vendors and service providers. As a key member of the Digital Technology Risk Assurance team, this role drives the organization&#8217;s overall risk posture by conducting comprehensive evaluations, identifying vulnerabilities, and ensuring continuous compliance within third-party relationships. [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"menu_order":0,"template":"","jobpost_category":[648,44],"jobpost_job_type":[39],"jobpost_location":[1041],"jobpost_tag":[1505,3388,1265,1936,1253,1252,81,3439,3440,3441],"class_list":["post-737","jobpost","type-jobpost","status-publish","hentry","jobpost_category-information-technology","jobpost_category-security","jobpost_job_type-remote","jobpost_location-united-states","jobpost_tag-cisa","jobpost_tag-crisc","jobpost_tag-cybersecurity","jobpost_tag-grc","jobpost_tag-iso-27001","jobpost_tag-nist","jobpost_tag-remote","jobpost_tag-technology-risk-analyst","jobpost_tag-third-party-risk-management-tprm","jobpost_tag-vendor-risk-assessment"],"_links":{"self":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost\/737","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost"}],"about":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/types\/jobpost"}],"author":[{"embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/users\/1"}],"wp:attachment":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/media?parent=737"}],"wp:term":[{"taxonomy":"jobpost_category","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_category?post=737"},{"taxonomy":"jobpost_job_type","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_job_type?post=737"},{"taxonomy":"jobpost_location","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_location?post=737"},{"taxonomy":"jobpost_tag","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_tag?post=737"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}