Security Consultant

Third Party Cyber Security Risk Analyst

* Please note, this role is not able to offer visa transfer or sponsorship now or in the future*

We are seeking an experienced Third Party Cyber Security Risk Analyst to support enterprise-wide third-party risk assessments and remediation efforts. This role focuses on evaluating vendor cyber security posture, reviewing evidence and documentation, and providing actionable recommendations to reduce risk exposure. A strong emphasis will be placed on AI-related cyber risk remediation.

• Conduct cyber security risk assessments and risk treatment activities for third-party vendors.
• Evaluate vendor responses, supporting documentation, and technical evidence.
• Identify gaps in third-party cybersecurity controls, processes, and operations.
• Provide remediation recommendations and track corrective actions to closure.
• Prepare and present written and verbal risk assessment reports to management.
• Support AI-related cyber risk remediation initiatives.
• Collaborate with internal IT, Security, Compliance, and Business teams.

• Bachelor’s degree in Business, Information Technology, or a related field.
• 5+ years of experience in IT security, IT audit, compliance, or risk management.
• Experience with SOC 2, ISO, HITRUST, and related security standards.
• Strong analytical, decision-making, and problem-solving skills.
• Excellent written and verbal communication abilities.

The annual salary range for this position is $89,000 – $108,000 USD, dependent upon experience, skills, location, and other permissible factors. This role may also be eligible for performance-based incentives under applicable plans.

• Medical, dental, and vision insurance
• 401(k) retirement plan with company participation
• Paid time off, paid holidays, and wellbeing time
• Life insurance and disability coverage
• Employee assistance and wellness programs
• Learning and professional development opportunities