Senior Information Security TPRM Analyst
Tasks
- Collect evidence and evaluate controls
- Conduct risk based vendor assessment scoping and risk rating support
- Coordinate with vendors to obtain evidence and resolve open items
- Document inherent risk and residual risk
- Ensure compliance with regulatory and internal policies and escalate concerns
- Execute third party information security assessments
- Identify process improvement opportunities
- Maintain KPIs and dashboards for assessment throughput
- Maintain assessment workpapers and procedures
- Maintain cyber risk register entries and summaries
- Map vendor evidence to control requirements
- Monitor third party risk topics and escalate issues
- Partner with legal procurement and vendor management for due diligence
- Prepare governance forum materials with status and metrics
- Publish third party security templates and documentation
- Review business continuity and disaster recovery documentation
- Support audits and exams with evidence and responses
- Track remediation and issue aging
- Use AI enabled TPRM tools and validate outputs
Perks/Benefits
Skills/Tech-stack
Audit evidence | BSA AML CIP OFAC | BSA/AML | Business Continuity | Business Continuity Planning | Continuity planning | Continuous Monitoring | Contract Security | Contract Security Requirements | Control Evaluation | Customer Trust Program | Customer trust | Cyber Risk | Cyber Risk Register | Disaster Recovery | Due Diligence | Evidence collection | IT Audit | Information security | KPI | KRI | Regulatory Compliance | Remediation Tracking | Risk Assessment | Risk Intelligence | Risk Management | Risk rating | Risk register | SOC reports | Security Governance | Security controls | Security requirements | Template development | Third Party | Third-Party Risk | Third-party risk management | Vendor Risk | Vendor Risk Intelligence | Vendor due diligence
Education
Bachelor of Arts | Bachelor of Engineering | Bachelor of Science
Related jobs
-
Cybersecurity Analyst Associate USD 64K-80KAgile Scrum | Assured compliance assessment solution | Continuous Improvement | Cybersecurity Risk Assessment | Cybersecurity Strategies401k match | Paid time off | Remote workMid-level Full TimeUSA VA Home Office (VAHOME), United … R2d ago
-
Embedded Intelligence Analyst USD 130KCrisis management | Dark Web | Dark web monitoring | Data Analysis | Deep Web401k match | Disability insurance | Employee assistance program | Employee discount program | Life insuranceMid-level Full TimeSan Jose, CA, United States R2d ago
-
Information System Security Officer (ISSO) - Hybrid USD 103K-150KAssessment and Authorization | Authorization and Accountability | Configuration Management | Continuous Monitoring | Control TestingCertification and training reimbursement | Digital mental health support | Flexible time off | Hybrid work | Insurance optionsMid-level Full TimeHerndon, VA, United States R2d ago
-
FCC - Vulnerability Management Lead USD 113K-180KCVSS | Cloud Security | Compliance | Configuration Management | Continuous MonitoringPublic Trust Clearance | Remote workSenior-level Full TimeUnited States - Remote R3d ago
-
FCC - Vulnerability Management Analyst USD 100K-130KCloud Security | Configuration Compliance | Continuous Monitoring | Cybersecurity | Hybrid CloudRemote workMid-level Full TimeUnited States - Remote R3d ago
-
FCC - SCRM/Emerging Technology Security Analyst USD 115K-161KAudit Support | Cybersecurity | FISMA | NIST CSF | NIST RMFPublic Trust Clearance | Remote workSenior-level Full TimeUnited States - Remote R3d ago
-
FCC - Security Compliance / RMF Analyst USD 100K-136K800-37 | 800-53 | Archer | Continuous Monitoring | Control AssessmentPublic Trust Clearance | Remote workMid-level Full TimeUnited States - Remote R3d ago
-
FCC - Reporting and Metrics Analyst USD 116K-180KDashboard Development | Data Visualization | Data analytics | FISMA | KPI ReportingPublic trust clearance support | Remote workSenior-level Full TimeUnited States - Remote R3d ago
-
IT Specialty Analyst - Cybersecurity Risk USD 80K-133KCOBIT | Cybersecurity | Exception management | Governance Risk | Governance Risk and Compliance401k or 403b employer match | Access to CEUs | Adoption, Fertility and Surrogacy Reimbursement | Emergency backup care | Legal Resources PlanMid-level Full TimeVirginia Remote, United States R3d ago
-
Senior-level Full TimeMountain America Center - Hybrid (0152), … R3d ago
-
Sr. Threat Analyst | Remote, USA USD 116K-159KActive Directory | Advanced Persistent Threats | Antivirus | Application Firewalls | Brute ForceProfessional training resources | Remote work | Volunteer opportunities | Work-life balanceSenior-level Full TimeOverland Park, KS, United States R3d ago
-
Senior ITS Security Compliance Analyst - REMOTE USD 95K-124KActive Directory | Application Controls | Audit management | CMM | COBIT401k with employer match | Community Volunteer Time Off | Company-paid disability insurance | Dental and vision | Employee assistance programSenior-level Full TimeRemote-USA, United States R3d ago
-
Senior Fraud Risk Manager USD 66K-140KDashboards | Data Visualization | Data analytics | Detection methodologies | Fraud Prevention401k retirement plan | Annual bonus | Dental insurance | Health insurance | Paid time offSenior-level Full TimeRemote - Michigan, United States R3d ago
-
Sr. GRC/PCI Compliance Analyst USD 95K-158KAudit Readiness | Audit evidence | Cardholder Data Environment | Control Validation | Control documentationDEI initiatives | Dental benefits | Direct travel benefits program | Employee rewards and recognition program | Medical benefitsSenior-level Full TimeRemote, United States R3d ago
-
ACAS | Cisco Networking | Cyber Risk | Cyber Risk Analysis | EMASS401k match | Bereavement leave | Dental insurance | Flexible spending account | Health insuranceMid-level Full TimeVienna, Virginia, United States R3d ago
-
Information Security GRC Analyst USD 65KAudit Readiness | CIS Controls | CMMC | Compliance | Control EvaluationFully remoteMid-level Full TimeUnited States - Remote R4d ago
-
Senior Product Security Analyst USD 162K-200KAPI Security | AWS | Agile | Application Security | Architecture ReviewLong-term employment | Paid time off | Supportive team | Training and developmentSenior-level Full TimeUnited States - Remote R4d ago
-
Asset Management | Business Continuity | Data Analysis | Disaster Recovery | Incident ResponseRemote work optionMid-level Full TimeGEORGIA - VIRTUAL - GA01, United … R7d ago
-
IT Security Engineer USD 63K-87KApplication Security | Authentication | Cloud Security | Cybersecurity | Encryption401k matching | Employee mentoring | Fully funded pension plan | Holidays | Paid time offMid-level Full TimeHome Office Branch, United States R7d ago
-
Sr. IT Security Trainer - Remote USD 81K-138KCompliance | Crisis management | Curriculum Development | Data handling | Incident ResponseSenior-level Full TimeHome, United States R7d ago
-
Cyber Security & Dev Ops Intern (Hybrid) USD 44K-50KAccess Management | Alert Monitoring | Azure Cloud | Barracuda | Bash401k match | Company events | Dental insurance | Free Coffee & Tea | Health insuranceEntry-level InternshipEnglewood, CO R7d ago
-
Information Security Systems Analyst USD 84K-131KAccess Control | Authentication | Authorization | Documentation | HIPAA401k matching | Dental insurance | Employee assistance program | Health insurance | Life insuranceMid-level Full Time100% Remote, United States R8d ago
-
Senior GRC Analyst USD 135K-190KAudit management | Awareness Training | Controls Evidence | GRC | ISO 27001Bereavement leave | Fertility and growing family support | Flex Time Off | Health, dental, and vision insurance | Life insuranceSenior-level Full TimeUSA R8d ago
-
GRC Analyst USD 122K-175KAWS | Awareness Training | Azure | CCPA | CPRAFlexible schedule | Remote work | Work-life balanceMid-level Full TimeUnited States R8d ago
-
All-source intelligence | Cybersecurity basics | Geopolitical Analysis | IT troubleshooting | Incident TriageFlexible schedule | Remote work | Weekend coverageMid-level Full TimeBoca Raton, FL, US R8d ago