1

Third Party Cybersecurity Risk Jobs in Michigan (NOW HIRING)

Job Summary The Third-Party Risk Analyst supports the team in carrying out third-party risk management activities throughout the vendor lifecycle. This role supports ongoing monitoring of third ...

Information Security experience (preferably Third Party Risk Management and Compliance) Familiarity with SOC 1 (SSAE 16*) and SOC 2 (**AT101) reports Ability to write process, procedures, flowcharts ...

next page

Showing results 1-20

Third Party Cybersecurity Risk information

How much does a third party risk analyst make?

A third party risk analyst typically earns between $70,000 and $110,000 annually, depending on experience, location, and industry. Professionals in cybersecurity risk management often hold certifications like CISSP or CRISC, which can influence salary levels.

Is third party risk management a good career?

Third Party Cybersecurity Risk management is a growing field that involves assessing and mitigating risks from external vendors and partners. It requires knowledge of cybersecurity principles, risk assessment tools, and often certifications like CISSP or CISM. The role offers opportunities in various industries with increasing demand due to the importance of supply chain security.

What is third-party risk management in cybersecurity?

Third-party risk management in cybersecurity involves identifying, assessing, and mitigating risks posed by external vendors, suppliers, or partners that have access to an organization’s systems or data. For cybersecurity professionals, this includes evaluating third-party security controls, conducting audits, and ensuring compliance with standards like ISO 27001 or NIST frameworks to reduce potential vulnerabilities. Effective management helps prevent data breaches and maintains the organization’s security posture.

What is the difference between Third Party Cybersecurity Risk vs Cybersecurity Analyst?

AspectThird Party Cybersecurity RiskCybersecurity Analyst
CertificationsISO 27001, CISSP, CISACISSP, CompTIA Security+, CEH
Work EnvironmentVendor assessments, risk management teams, client organizationsSecurity operations centers, IT departments, consulting firms
Industry UsageSupply chain, vendor management, complianceNetwork security, incident response, vulnerability assessment

Third Party Cybersecurity Risk professionals focus on evaluating and managing risks from external vendors and partners, ensuring compliance and reducing supply chain vulnerabilities. Cybersecurity Analysts primarily monitor, analyze, and respond to security threats within an organization’s own systems. While both roles require security certifications and involve risk assessment, their focus areas and work environments differ significantly.

Can you make $500,000 a year in cyber security?

Third Party Cybersecurity Risk professionals can potentially earn $500,000 annually, especially at senior levels or in executive roles such as Chief Information Security Officer (CISO). Achieving this salary typically requires extensive experience, advanced certifications like CISSP or CISM, and leadership responsibilities overseeing large security programs. Compensation varies based on industry, company size, location, and individual expertise.
What job categories do people searching Third Party Cybersecurity Risk jobs in Michigan look for? The top searched job categories for Third Party Cybersecurity Risk jobs in Michigan are:
What cities in Michigan are hiring for Third Party Cybersecurity Risk jobs? Cities in Michigan with the most Third Party Cybersecurity Risk job openings:
Infographic showing various Third Party Cybersecurity Risk job openings in Michigan as of July 2026, with employment types broken down into 90% Full Time, 7% Part Time, and 3% Contract. Highlights an 79% Physical, 5% Hybrid, and 16% Remote job distribution.
Cybersecurity Risk Coordinator | GRC | Full-Time

Cybersecurity Risk Coordinator | GRC | Full-Time

Corporate Services

Troy, MI • On-site

Other

Posted 12 days ago


Job description

GENERAL SUMMARY:

The Cybersecurity Risk Coordinator reports to the Manager of Cybersecurity Risk Services. This position will work in a collaborative effort with Cybersecurity Risk Specialists, IT, and all system leadership (Supervisor and above) to assure incoming requests are addressed and distributed to the proper team members. Additionally, this role works closely with Cybersecurity Risk Specialists to support all employee and non-employee roles, including, but not limited to vendors, contractors, consultants, and partners to support the mission and goals of Henry Ford Health Cybersecurity Risk Management strategy. 

PRINCIPLE DUTIES AND RESPONSIBILITIES: 

The Cybersecurity Risk Coordinator handles supporting tasks related to performing cyber/third party risk assessments of applications, infrastructure, business, and technology vendors against a defined risk framework. These assessments will be performed either through a formalized risk assessment program or through other risk reporting activities (e.g., policy exception, risk acceptance, controls). 

Must have the ability to develop work with minimal supervision, maintain and report against a work plan, give appropriate updates and status reports, and serve as a point of contact and liaison with internal and external auditors, assessors, vendors and clients and assist other staff members.

  •  Responsible for understanding the Cybersecurity Risk Services department and Information Privacy and Security Office services, functional IT services, and the business unit processes/ systems to provide world-class cybersecurity risk services.
  • Validating Risk Intake Request Forms for employees and non-employees via technology platform and triaging it to the Cybersecurity Risk Specialists capable of starting their tasks.
  • Assist in corporate process creation and revision using MS Office including Visio.
  • Supporting, creating processes for intake of forms, streamline/update existing processes, procedures, and checklists.
  • Liaison with internal / external stakeholders as needed.
  • Contributes to the development and maintenance of supporting technology platforms and Corporate Information Security policies and procedures.
  • Manage Group Outlook Mailbox and assign a ticket in the technology platform to Cybersecurity Risk Specialists to start their tasks.
  • Supports managing checklists, and continuously improves the work instructions with the team. 
  • Initializes cyber/third party risk assessments reports for the Cybersecurity Risk Specialists to review for closure.
  • Support IPSO and IT teams via integrated workflow. 
  • Supports client due diligence requests including the completion of questionnaires.
  • Supports project and strategy advisory services and supports as needed. 
  • Capable of following documented work instructions with limited guidance. 
  • Other duties may be assigned.

EDUCATION/EXPERIENCE REQUIRED:

  • Associates' degree in information systems, Computer Science or related field preferred, relevant work experience/certification considered. 
  • 2+ years of experience in IT risk mgt, IT Controls mgt or IT Audit mgt. 
  • Demonstrates strong and effective verbal, written, and interpersonal communication skills, with experience in all at the executive level.
  • Ability to prioritize and multi-task in a dynamic, fast paced, and challenging environment.
  • Knowledge of IT systems and functions, process development, change management, and service and implementation lifecycle. 
  • Knowledge of information security best practices, NIST Cybersecurity Framework and common risk frameworks.
  • Can conform to shifting priorities, demands and timelines through analytical and problem-solving capabilities.
Additional Information
  • Organization: Corporate Services
  • Department: Ascension Privacy_Security RMS
  • Shift: Day Job
  • Union Code: Not Applicable