Third-Party Risk Management (TPRM) Analyst

Conduct third-party risk assessments to evaluate vendor security and compliance controls by reviewing vendor documentation, engaging internal stakeholders to understand business requirements, and identifying security and compliance gaps

Review vendor security documentation, including SOC reports, web application penetration test results, and security risk assessments

Review and provide opinions on vendor-provided SOWs, contracts, and MSAs

Maintain and improve third-party risk management processes, tools, and workflows to streamline risk assessments, audit procedures, and reporting

Work with procurement, vendor management, legal, and other business teams to perform due diligence on new vendors and ensure security and compliance requirements are met prior to onboarding

Evaluate third-party security incidents, breaches, or vulnerabilities, and coordinate investigation efforts with internal te...