... third-party risk management, policy governance, audit readiness, and risk assessment activities. This role partners closely with Information Security, IT, Engineering, Quality, Legal, and business ...
... third-party risk management, policy governance, audit readiness, and risk assessment activities. This role partners closely with Information Security, IT, Engineering, Quality, Legal, and business ...
Paralegal, Litigation & Risk Management
Anaheim, CA · On-site
$80K - $105K/yr
The role will support the Senior Director for Legal Affairs and Risk Management and will work ... Coordinate responses to subpoenas, law enforcement, and other third-party requests for information ...
Paralegal, Litigation & Risk Management
Anaheim, CA · On-site
$80K - $105K/yr
The role will support the Senior Director for Legal Affairs and Risk Management and will work ... Coordinate responses to subpoenas, law enforcement, and other third-party requests for information ...
Paralegal, Litigation & Risk Management
$80K - $105K/yr
The role will support the Senior Director for Legal Affairs and Risk Management and will work ... Coordinate responses to subpoenas, law enforcement, and other third-party requests for information ...
Paralegal, Litigation & Risk Management
$80K - $105K/yr
The role will support the Senior Director for Legal Affairs and Risk Management and will work ... Coordinate responses to subpoenas, law enforcement, and other third-party requests for information ...
Paralegal, Litigation & Risk Management
Anaheim, CA · On-site
$80K - $105K/yr
The role will support the Senior Director for Legal Affairs and Risk Management and will work ... Coordinate responses to subpoenas, law enforcement, and other third-party requests for information ...
Paralegal, Litigation & Risk Management
Anaheim, CA · On-site
$80K - $105K/yr
The role will support the Senior Director for Legal Affairs and Risk Management and will work ... Coordinate responses to subpoenas, law enforcement, and other third-party requests for information ...
Paralegal, Litigation & Risk Management
Anaheim, CA · On-site
$80K - $105K/yr
The role will support the Senior Director for Legal Affairs and Risk Management and will work ... Coordinate responses to subpoenas, law enforcement, and other third-party requests for information ...
Paralegal, Litigation & Risk Management
Anaheim, CA · On-site
$80K - $105K/yr
The role will support the Senior Director for Legal Affairs and Risk Management and will work ... Coordinate responses to subpoenas, law enforcement, and other third-party requests for information ...
Senior Management Analyst (Risk Management)
Menifee, CA · On-site
$110K - $141K/yr
Monitor Third-Party Administrator Performance - Evaluate service delivery, ensure adherence to ... direct exposure to potentially hazardous physical substances. Employees may interact with upset ...
Senior Management Analyst (Risk Management)
Menifee, CA · On-site
$110K - $141K/yr
Monitor Third-Party Administrator Performance - Evaluate service delivery, ensure adherence to ... direct exposure to potentially hazardous physical substances. Employees may interact with upset ...
... direct negotiation of key contracts; and placement and renewal of corporate insurance policies ... Develops and maintains risk management procedural manuals; Implements, monitors and maintains ...
... direct negotiation of key contracts; and placement and renewal of corporate insurance policies ... Develops and maintains risk management procedural manuals; Implements, monitors and maintains ...
Director of Risk Management
Irvine, CA · On-site
$200K - $225K/yr
Alliant is changing the way our clients approach risk management and benefits, so they can ... direct negotiation of key contracts; and placement and renewal of corporate insurance policies.
Director of Risk Management
Irvine, CA · On-site
$200K - $225K/yr
Alliant is changing the way our clients approach risk management and benefits, so they can ... direct negotiation of key contracts; and placement and renewal of corporate insurance policies.
Senior Management Analyst (Risk Management)
Menifee, CA · On-site
$110K - $141K/yr
Monitor Third-Party Administrator Performance - Evaluate service delivery, ensure adherence to ... direct exposure to potentially hazardous physical substances. Employees may interact with upset ...
Senior Management Analyst (Risk Management)
Menifee, CA · On-site
$110K - $141K/yr
Monitor Third-Party Administrator Performance - Evaluate service delivery, ensure adherence to ... direct exposure to potentially hazardous physical substances. Employees may interact with upset ...
Analyst, IT Audit and Compliance
$97K - $98K/yr
Support third-party risk assessments of vendors in accordance with established frameworks such as ... Participate in initiatives to improve IT audit, risk management, and compliance processes and ...
Analyst, IT Audit and Compliance
$97K - $98K/yr
Support third-party risk assessments of vendors in accordance with established frameworks such as ... Participate in initiatives to improve IT audit, risk management, and compliance processes and ...
Analyst, IT Audit and Compliance
Santa Ana, CA · On-site
$35 - $45/hr
Support third-party risk assessments of vendors in accordance with established frameworks such as ... Participate in initiatives to improve IT audit, risk management, and compliance processes and ...
Analyst, IT Audit and Compliance
Santa Ana, CA · On-site
$35 - $45/hr
Support third-party risk assessments of vendors in accordance with established frameworks such as ... Participate in initiatives to improve IT audit, risk management, and compliance processes and ...
Analyst, IT Audit and Compliance
Santa Ana, CA · On-site
$97K - $98K/yr
Key Responsibilities Audit & Risk Management * Support the planning and execution of IT audits to ... Support third-party risk assessments of vendors in accordance with established frameworks such as ...
Analyst, IT Audit and Compliance
Santa Ana, CA · On-site
$97K - $98K/yr
Key Responsibilities Audit & Risk Management * Support the planning and execution of IT audits to ... Support third-party risk assessments of vendors in accordance with established frameworks such as ...
Manager, IT Audit & Compliance
Santa Ana, CA · On-site
$130K - $150K/yr
Conduct 3rd-party risk assessments to identify gaps and vulnerabilities in IT systems and processes ... Provide senior management with reports, insights, and recommendations to strengthen compliance ...
Manager, IT Audit & Compliance
Santa Ana, CA · On-site
$130K - $150K/yr
Conduct 3rd-party risk assessments to identify gaps and vulnerabilities in IT systems and processes ... Provide senior management with reports, insights, and recommendations to strengthen compliance ...
Medical Device Cybersecurity Risk Specialist
Irvine, CA · On-site
$110K - $120K/yr
... risk management frameworks such as NIST CSF, ISO 27001 / 27005, FAIR, and COSO. • Hands-on ... EHR systems and third-party healthcare vendor applications. • Understanding of common ...
Medical Device Cybersecurity Risk Specialist
Irvine, CA · On-site
$110K - $120K/yr
... risk management frameworks such as NIST CSF, ISO 27001 / 27005, FAIR, and COSO. • Hands-on ... EHR systems and third-party healthcare vendor applications. • Understanding of common ...
Medical Device Cybersecurity Risk Specialist
Irvine, CA · On-site
$110K - $125K/yr
... risk management frameworks such as NIST CSF, ISO 27001 / 27005, FAIR, and COSO. • Hands-on ... EHR systems and third-party healthcare vendor applications. • Understanding of common ...
Medical Device Cybersecurity Risk Specialist
Irvine, CA · On-site
$110K - $125K/yr
... risk management frameworks such as NIST CSF, ISO 27001 / 27005, FAIR, and COSO. • Hands-on ... EHR systems and third-party healthcare vendor applications. • Understanding of common ...
Internal Audit - Risk Manager
Irvine, CA · On-site
$101K - $113K/yr
GLOVIS America, Inc. is a third-party logistics provider headquartered in Irvine, CA. Since our ... Master's Degree Preferred * 7 - 10 Years of Direct Experience in Risk Management, Governance, and ...
Internal Audit - Risk Manager
Irvine, CA · On-site
$101K - $113K/yr
GLOVIS America, Inc. is a third-party logistics provider headquartered in Irvine, CA. Since our ... Master's Degree Preferred * 7 - 10 Years of Direct Experience in Risk Management, Governance, and ...
Internal Audit - Risk Manager
Irvine, CA · On-site
$101K - $113K/yr
GLOVIS America, Inc. is a third-party logistics provider headquartered in Irvine, CA. Since our ... Master's Degree Preferred * 7 - 10 Years of Direct Experience in Risk Management, Governance, and ...
Internal Audit - Risk Manager
Irvine, CA · On-site
$101K - $113K/yr
GLOVIS America, Inc. is a third-party logistics provider headquartered in Irvine, CA. Since our ... Master's Degree Preferred * 7 - 10 Years of Direct Experience in Risk Management, Governance, and ...
Senior Director, Category Management and Procurement - API and Third Party Manufacturing
Irvine, CA · On-site
$206K/yr
Role Overview The Senior Director, Category Management and Procurement - API and Third Party ... Own and lead global category strategies that balance speed of execution, risk management, value ...
Senior Director, Category Management and Procurement - API and Third Party Manufacturing
Irvine, CA · On-site
$206K/yr
Role Overview The Senior Director, Category Management and Procurement - API and Third Party ... Own and lead global category strategies that balance speed of execution, risk management, value ...
Director, Benefits
Santa Ana, CA · On-site
$150K - $175K/yr
... risk mitigation * Build and lead a high-performing benefits function focused on operational ... relationship manager for all benefits vendors, brokers, consultants, carriers, third-party ...
Director, Benefits
Santa Ana, CA · On-site
$150K - $175K/yr
... risk mitigation * Build and lead a high-performing benefits function focused on operational ... relationship manager for all benefits vendors, brokers, consultants, carriers, third-party ...
Director, Benefits
Santa Ana, CA · On-site
... risk mitigation * Build and lead a high-performing benefits function focused on operational ... relationship manager for all benefits vendors, brokers, consultants, carriers, third-party ...
Director, Benefits
Santa Ana, CA · On-site
... risk mitigation * Build and lead a high-performing benefits function focused on operational ... relationship manager for all benefits vendors, brokers, consultants, carriers, third-party ...
Director Third Party Risk Management information
See Riverside, CA salary details
$56.3K - $75.9K
6% of jobs
$75.9K - $95.4K
6% of jobs
$109.5K is the 25th percentile. Wages below this are outliers.
$95.4K - $114.9K
17% of jobs
$114.9K - $134.5K
16% of jobs
The median wage is $138K / yr.
$134.5K - $154K
23% of jobs
$164.8K is the 75th percentile. Wages above this are outliers.
$154K - $173.6K
11% of jobs
$173.6K - $193.1K
6% of jobs
$193.1K - $212.6K
4% of jobs
$212.6K - $232.2K
4% of jobs
$232.2K - $251.7K
2% of jobs
$251.7K - $271.2K
3% of jobs
$56.3K
$149.4K
$271.2K
How much do director third party risk management jobs pay per year?
What are some of the key challenges a Director of Third Party Risk Management faces when implementing risk assessment frameworks across a large organization?
What does a Director of Third Party Risk Management do?
What is the difference between Director Third Party Risk Management vs Vendor Risk Manager?
| Aspect | Director Third Party Risk Management | Vendor Risk Manager |
|---|---|---|
| Credentials | Typically requires advanced degrees and certifications like CTPRP or CRISC | Often requires certifications such as CTPRP, CRISC, or vendor-specific training |
| Work Environment | Strategic leadership, overseeing multiple teams and enterprise-wide risk policies | Operational focus, managing vendor assessments and risk mitigation activities |
| Industry Usage | Used in large organizations across finance, healthcare, and technology sectors | Common in organizations with extensive vendor networks, especially in finance and IT |
The main difference is that the Director Third Party Risk Management holds a strategic, leadership role overseeing enterprise-wide third-party risks, while the Vendor Risk Manager focuses on operational vendor assessments and risk mitigation. Both roles require similar certifications but differ in scope and level of responsibility.
What are the key skills and qualifications needed to thrive as a Director of Third Party Risk Management, and why are they important?
Full-time
Medical, Dental, Vision, Life, Retirement, PTO
Posted 7 days ago
Job description
Job Summary:
The Senior Information Security GRC Analyst supports and advances Masimo's enterprise information security governance, risk, and compliance (GRC) program through leadership of security compliance initiatives, third-party risk management, policy governance, audit readiness, and risk assessment activities.
This role partners closely with Information Security, IT, Engineering, Quality, Legal, and business stakeholders to strengthen security governance processes, support regulatory and customer requirements, and maintain alignment with industry frameworks and healthcare security expectations.
The Senior Information Security GRC Analyst contributes to the continuous improvement of governance processes, compliance monitoring, and enterprise risk management activities within a regulated healthcare and medical device environment. This position requires strong knowledge of information security principles, compliance frameworks, and risk management practices, along with the ability to communicate effectively across both technical and non-technical audiences
Duties & Responsibilities:
• Support the strategic execution and continuous improvement of the enterprise information security governance, risk, and compliance (GRC) program
• Lead coordination of external security audits and certification activities, including HITRUST, ISO 27001, SOC 2, and related compliance initiatives
• Partner with internal stakeholders to gather documentation, evidence, remediation updates, and corrective action plans for audits and assessments
• Conduct third-party and supply chain cybersecurity risk assessments, including evaluation of vendor security posture, due diligence questionnaires, and supporting security documentation
• Collaborate with business and technical teams to respond to customer security assessments, compliance inquiries, and due diligence requests
• Lead information security risk assessments and track remediation activities through resolution
• Manage the review and tracking of security exceptions and risk acceptance requests, ensuring appropriate compensating controls and approvals are documented
• Assist in the development, maintenance, and communication of information security policies, standards, procedures, and guidelines
• Collaborate with technical teams to evaluate, document, and validate security controls and compliance requirements
• Maintain audit findings, remediation plans, compliance documentation, risk registers, and governance tracking records
• Develop and maintain compliance monitoring processes, governance reporting metrics, dashboards, and ongoing reporting activities
• Conduct internal security assessments, readiness reviews, and governance maturity initiatives
• Support governance and risk management activities related to cloud platforms, SaaS environments, emerging technologies, and evolving cybersecurity threats
• Partner with leadership and cross-functional stakeholders to promote a risk-aware security culture and support enterprise governance initiatives
• Stay informed of evolving cybersecurity threats, regulatory requirements, and industry best practices relevant to healthcare and medical device environments
• Support cross-functional initiatives related to information security awareness, governance, operational maturity, and compliance readiness
Minimum & Preferred Qualifications and Experience:
Minimum Qualifications:
• 7+ years of experience in information security governance, risk, and compliance (GRC), cybersecurity risk management, IT audit, compliance, or related areas
• Experience leading or managing security audits or compliance initiatives related to HITRUST, ISO 27001, SOC 2, NIST, or similar frameworks
• Experience conducting third-party security assessments and vendor risk reviews
• Strong understanding of information security principles, risk management concepts, and security control frameworks
• Ability to understand and discuss technical security concepts including identity and access management (IAM), encryption, vulnerability management, endpoint security, logging/monitoring, cloud security, and network security
• Strong analytical, organizational, documentation, communication, and stakeholder management skills
• Ability to manage multiple priorities and work collaboratively in a fast-paced, highly regulated environment
Preferred Qualifications:
• Experience within healthcare, medical device, biotechnology, or other highly regulated industries
• Familiarity with HIPAA, FDA-regulated environments, HITRUST, NIST CSF, PCI DSS, UK Cyber Essentials, NIS2 Directive, or related cybersecurity and privacy requirements
• Experience using GRC tools and platforms for audit, compliance, risk management, or governance reporting activities
• Experience supporting enterprise security governance or compliance maturity initiatives
• Industry-recognized certifications such as CISSP, CISA, CRISC, CISM, or similar preferred
Education:
Bachelor's degree in Information Security, Cybersecurity, Information Systems, Computer Science, or related field required; or equivalent combination of education, certifications, and relevant experience
Language requirements:
• Ability to read, write, and communicate effectively in English.
• Ability to interpret technical documents, schematics, and written instructions.
• Ability to clearly document technical findings and communicate with cross-functional team members.
Compensation:
The anticipated range for this position is $130,000 - $170,000. Actual placement within the range is dependent on multiple factors, including but not limited to skills, education, and experience. This position also qualifies for up to 10% annual bonus based on Company, department, and individual performance.
Masimo offers benefits such as Medical, Dental, Vision, Life/AD&D, Disability Insurance, 401(k), Vacation, Sick, Holiday, Paid Maternity Leave, Flexible Spending Accounts, voluntary Accident, Critical Illness, Hospital, Long-Term Care, Employee Assistance Program, Pet Insurance, on-site Wellness Clinic, Fitness Center, Café. All benefits are subject to eligibility requirements.
Physical requirements/Work Environment
This position primarily works in an office environment and requires frequent sitting, standing, and walking. Daily use of a computer and other digital devices is required. This role may require standing for extended periods when facilitating meetings or walking through facilities.
The physical demands of the position described herein are essential functions of the job and employees must be able to successfully perform these tasks for extended periods. Reasonable accommodations may be made for those individuals with real or perceived disabilities to perform the essential functions of the job described.
Masimo is proud to be an EEOE/, M/F/D/V, and we are committed to Diversity at the corporate level.
About Masimo
Sourced by ZipRecruiter
Industry
Medical equipment and supplies manufacturing
Company size
1,001 - 5,000 Employees
Headquarters location
Irvine, CA, US
Year founded
1989