... in cybersecurity. Join our team to deliver powerful solutions that help clients navigate an ... Security Operations, Third-Party Risk Management, and ServiceNow AI Control Tower use cases
... in cybersecurity. Join our team to deliver powerful solutions that help clients navigate an ... Security Operations, Third-Party Risk Management, and ServiceNow AI Control Tower use cases
... * Cyber Security * 5+ years of progressive experience in information security, IT risk, Compliance ... Internal Audit and Third-Party Audit Support * Support Credit Internal Controls with IT related ...
Quick apply
... * Cyber Security * 5+ years of progressive experience in information security, IT risk, Compliance ... Internal Audit and Third-Party Audit Support * Support Credit Internal Controls with IT related ...
Cyber Operational Technology/ Industrial Control Systems (OT/ICS) Senior Consultant
Lansing, MI · Remote
Risk Assessment & Vulnerability Management * Perform consequence-based risk assessments for OT ... third-party vendors. * Advise clients on governance frameworks and best practices for OT/ICS ...
Cyber Operational Technology/ Industrial Control Systems (OT/ICS) Senior Consultant
Lansing, MI · Remote
Risk Assessment & Vulnerability Management * Perform consequence-based risk assessments for OT ... third-party vendors. * Advise clients on governance frameworks and best practices for OT/ICS ...
Cyber Operational Technology/ Industrial Control Systems (OT/ICS) Senior Consultant
Grand Rapids, MI · Remote
Risk Assessment & Vulnerability Management * Perform consequence-based risk assessments for OT ... third-party vendors. * Advise clients on governance frameworks and best practices for OT/ICS ...
Cyber Operational Technology/ Industrial Control Systems (OT/ICS) Senior Consultant
Grand Rapids, MI · Remote
Risk Assessment & Vulnerability Management * Perform consequence-based risk assessments for OT ... third-party vendors. * Advise clients on governance frameworks and best practices for OT/ICS ...
Cyber Operational Technology/ Industrial Control Systems (OT/ICS) Senior Consultant
Detroit, MI · Remote
Risk Assessment & Vulnerability Management * Perform consequence-based risk assessments for OT ... third-party vendors. * Advise clients on governance frameworks and best practices for OT/ICS ...
Cyber Operational Technology/ Industrial Control Systems (OT/ICS) Senior Consultant
Detroit, MI · Remote
Risk Assessment & Vulnerability Management * Perform consequence-based risk assessments for OT ... third-party vendors. * Advise clients on governance frameworks and best practices for OT/ICS ...
Cyber Operational Technology/ Industrial Control Systems (OT/ICS) Senior Consultant
Midland, MI · Remote
Risk Assessment & Vulnerability Management * Perform consequence-based risk assessments for OT ... third-party vendors. * Advise clients on governance frameworks and best practices for OT/ICS ...
Cyber Operational Technology/ Industrial Control Systems (OT/ICS) Senior Consultant
Midland, MI · Remote
Risk Assessment & Vulnerability Management * Perform consequence-based risk assessments for OT ... third-party vendors. * Advise clients on governance frameworks and best practices for OT/ICS ...
Financial Services Cybersecurity Internal Audit Manager
Grand Rapids, MI · On-site
$104K - $213K/yr
Third Party Risk Management (TPRM) * Cyber Resilience and Incident Response * Infrastructure risk ... Strong working knowledge of cybersecurity operations, controls, and governance practices.
Financial Services Cybersecurity Internal Audit Manager
Grand Rapids, MI · On-site
$104K - $213K/yr
Third Party Risk Management (TPRM) * Cyber Resilience and Incident Response * Infrastructure risk ... Strong working knowledge of cybersecurity operations, controls, and governance practices.
Manager - ServiceNow
Detroit, MI · On-site +1
... cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever ... Third-Party Risk Management workstreams in partnership with architects and product owners
Manager - ServiceNow
Detroit, MI · On-site +1
... cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever ... Third-Party Risk Management workstreams in partnership with architects and product owners
Manager - ServiceNow
Grand Rapids, MI · On-site +1
... cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever ... Third-Party Risk Management workstreams in partnership with architects and product owners
Manager - ServiceNow
Grand Rapids, MI · On-site +1
... cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever ... Third-Party Risk Management workstreams in partnership with architects and product owners
Work with cybersecurity, risk, and business units to identify, assess, and mitigate IT-related ... Oversee IT assessments, control testing, and third-party risk reviews. Policy Management ...
Work with cybersecurity, risk, and business units to identify, assess, and mitigate IT-related ... Oversee IT assessments, control testing, and third-party risk reviews. Policy Management ...
... third party administrators across the North American region * Present insurance and risk management solutions proposals to senior leaders in the organization * Provide leadership to captive team ...
... third party administrators across the North American region * Present insurance and risk management solutions proposals to senior leaders in the organization * Provide leadership to captive team ...
Work with cybersecurity, risk, and business units to identify, assess, and mitigate IT-related ... Oversee IT assessments, control testing, and third-party risk reviews. Policy Management ...
Quick apply
Work with cybersecurity, risk, and business units to identify, assess, and mitigate IT-related ... Oversee IT assessments, control testing, and third-party risk reviews. Policy Management ...
Serve as the Product Owner for payment processing, childcare management platform, and third-party payment capabilities, balancing enhancements, risk reduction, and technical debt. * Define and ...
Serve as the Product Owner for payment processing, childcare management platform, and third-party payment capabilities, balancing enhancements, risk reduction, and technical debt. * Define and ...
Our 210+ colleagues provide expert guidance and creative problem solving pertaining to business insurance, risk solutions, employee benefits, worksite well-being, and personal insurance to a vast and ...
Our 210+ colleagues provide expert guidance and creative problem solving pertaining to business insurance, risk solutions, employee benefits, worksite well-being, and personal insurance to a vast and ...
Payment Network Compliance Analyst (Visa/Mastercard/Discover)
Southfield, MI · Hybrid
$86K - $101K/yr
Support third-party agent (TPA) , including network registrations * Ensure compliance with Visa ... Not a traditional TPRM / vendor risk / IT GRC role * Not focused on cybersecurity frameworks (NIST ...
Payment Network Compliance Analyst (Visa/Mastercard/Discover)
Southfield, MI · Hybrid
$86K - $101K/yr
Support third-party agent (TPA) , including network registrations * Ensure compliance with Visa ... Not a traditional TPRM / vendor risk / IT GRC role * Not focused on cybersecurity frameworks (NIST ...
Payment Network Compliance Analyst (Visa/Mastercard/Discover)
Southfield, MI · Hybrid
$86K - $101K/yr
Support third-party agent (TPA) , including network registrations * Ensure compliance with Visa ... Not a traditional TPRM / vendor risk / IT GRC role * Not focused on cybersecurity frameworks (NIST ...
Payment Network Compliance Analyst (Visa/Mastercard/Discover)
Southfield, MI · Hybrid
$86K - $101K/yr
Support third-party agent (TPA) , including network registrations * Ensure compliance with Visa ... Not a traditional TPRM / vendor risk / IT GRC role * Not focused on cybersecurity frameworks (NIST ...
The AM is a key member of the client team and provides direction to any 3rd party vendors who have ... Hold Insurance licenses as required by the Company Risk Strategies is an equal opportunity ...
The AM is a key member of the client team and provides direction to any 3rd party vendors who have ... Hold Insurance licenses as required by the Company Risk Strategies is an equal opportunity ...
Employee Benefits Third Party Administrator- Adrian
Adrian, MI · On-site
$40K - $55K/yr
Our 210+ colleagues provide expert guidance and creative problem solving pertaining to business insurance, risk solutions, employee benefits, worksite well-being, and personal insurance to a vast and ...
Employee Benefits Third Party Administrator- Adrian
Adrian, MI · On-site
$40K - $55K/yr
Our 210+ colleagues provide expert guidance and creative problem solving pertaining to business insurance, risk solutions, employee benefits, worksite well-being, and personal insurance to a vast and ...
Our 210+ colleagues provide expert guidance and creative problem solving pertaining to business insurance, risk solutions, employee benefits, worksite well-being, and personal insurance to a vast and ...
Our 210+ colleagues provide expert guidance and creative problem solving pertaining to business insurance, risk solutions, employee benefits, worksite well-being, and personal insurance to a vast and ...
Technical Cyber Advisor On-site
Detroit, MI · Hybrid
$109K - $110K/yr
Provide expert advice on a wide range of cybersecurity issues, including risk analysis, incident ... Prepare for and support external audits conducted by certified third-party assessors (e.g., C3PAOs)
Technical Cyber Advisor On-site
Detroit, MI · Hybrid
$109K - $110K/yr
Provide expert advice on a wide range of cybersecurity issues, including risk analysis, incident ... Prepare for and support external audits conducted by certified third-party assessors (e.g., C3PAOs)
Third Party Cybersecurity Risk information
How much does a third party risk analyst make?
Is third party risk management a good career?
What is third-party risk management in cybersecurity?
What is the difference between Third Party Cybersecurity Risk vs Cybersecurity Analyst?
| Aspect | Third Party Cybersecurity Risk | Cybersecurity Analyst |
|---|---|---|
| Certifications | ISO 27001, CISSP, CISA | CISSP, CompTIA Security+, CEH |
| Work Environment | Vendor assessments, risk management teams, client organizations | Security operations centers, IT departments, consulting firms |
| Industry Usage | Supply chain, vendor management, compliance | Network security, incident response, vulnerability assessment |
Third Party Cybersecurity Risk professionals focus on evaluating and managing risks from external vendors and partners, ensuring compliance and reducing supply chain vulnerabilities. Cybersecurity Analysts primarily monitor, analyze, and respond to security threats within an organization’s own systems. While both roles require security certifications and involve risk assessment, their focus areas and work environments differ significantly.
Can you make $500,000 a year in cyber security?

Deloitte rating
8.1
Based on 90 frontline employees who took The Breakroom Quiz
60th of 148 rated financial services
Job description
Consultant, ServiceNow
Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful solutions that help clients navigate an evolving threat landscape. Through solutions and managed services that simplify complexity, we help clients operate with resilience, grow with confidence, and proactively manage cyber, risk, and technology programs.
Recruiting for this role ends on 12/31/2026.
Work you'll do
As a Consultant, Strategy & Transformation on the Cyber Strategy & Transformation team, you will be responsible for...
- Supporting requirements workshops and stakeholder interviews to capture, validate, and document business requirements, user stories, and current-state and future-state process flows
- Analyzing processes, controls, and tools to identify opportunities for ServiceNow configuration and automation across IT Operations Management, IT Asset Management, Integrated Risk Management, Security Operations, Third-Party Risk Management, and ServiceNow AI Control Tower use cases
- Contributing to functional design and configuration of ServiceNow solutions, including forms, workflows, notifications, service level agreements, dashboards, reports, roles, and access controls
- Supporting documentation of data models, taxonomies, workflows, controls, and reporting requirements for cyber, risk, and artificial intelligence governance use cases
- Producing project artifacts, including requirements documentation, functional designs, test scenarios, training materials, release notes, and deployment support materials
- Collaborating with client stakeholders, functional teams, and technical teams to support demonstrations, user acceptance testing, defect triage, training, cutover activities, and solution adoption
A successful candidate would possess these skills:
- Ability to work independently and collaborate as part of a team
- Effective written and verbal communication skills
- Meticulous attention to detail and quality of work product
- Ability to build and sustain professional relationships
- Ability to lead projects or workstreams
- Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
- Strong interpersonal skills and professional demeanor
- Ability to meet deadlines
- Ability to provide clear guidance to others
The team
Our Cyber Strategy & Transformation offering develops and transforms cyber programs in line with a client's strategic objectives, regulatory requirements, and risk appetite. It keeps the enterprise a step ahead of the evolving threat landscape and gives stakeholders confidence in the organization's cyber posture. Includes design of the cyber organization, governance, and risk assessments.
Qualifications
Required:
- Bachelor's degree in Computer Science, Information Systems, Cyber Security, Engineering, Information Technology, Finance, or Business
- 2+ years of experience supporting ServiceNow implementation projects in a client-facing consulting role
- 2+ years of experience gathering business requirements, facilitating workshops, documenting process flows or user stories, and producing functional documentation
- 2+ years of experience designing, configuring, or implementing ServiceNow solutions in one or more of the following modules: IT Operations Management, IT Asset Management, Integrated Risk Management, Security Operations, or Third-Party Risk Management
- 2+ years of experience configuring ServiceNow forms, workflows, notifications, service level agreements, reports, dashboards, roles, or access controls
- Ability to travel 50%, on average, based on the work you do and the clients and industries/sectors you serve.
- Limited immigration sponsorship may be available.
Preferred:
- ServiceNow Certified System Administrator (CSA)
- ServiceNow Certified Application Developer (CAD)
- ArchX (Architecture Excellence)
- One or more ServiceNow Certified Implementation Specialist (CIS) certifications, including CIS-Risk and Compliance (CIS-RC), CIS-Security Incident Response (CIS-SIR), CIS-Vulnerability Response (CIS-VR), CIS-Third-Party Risk Management (CIS-TPRM), CIS-Hardware Asset Management (CIS-HAM), CIS-Software Asset Management (CIS-SAM), CIS-Service Mapping (CIS-SM), CIS-Discovery (CIS-DISCO), CIS-Event Management (CIS-EM), CIS-Data Foundations (CIS-DF), or CIS-Strategic Portfolio Management (CIS-SPM)
- Experience supporting implementation and configuration of ServiceNow AI Control Tower capabilities, including AI inventory management, intake and approval workflows, lifecycle oversight, issue management, dashboards, and reporting
- Experience supporting identity governance for human and non-human actors using Veza, or cyber asset discovery and configuration management database (CMDB) integration using Armis
For individuals assigned and/or hired to work in a Remote role, Deloitte is required by law to include a reasonable estimate of the compensation range for this role. This compensation range is specific to a Remote role and takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $82,600 to $162,800.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
Consultant, ServiceNow
Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful solutions that help clients navigate an evolving threat landscape. Through solutions and managed services that simplify complexity, we help clients operate with resilience, grow with confidence, and proactively manage cyber, risk, and technology programs.
Recruiting for this role ends on 12/31/2026.
Work you'll do
As a Consultant, Strategy & Transformation on the Cyber Strategy & Transformation team, you will be responsible for...
- Supporting requirements workshops and stakeholder interviews to capture, validate, and document business requirements, user stories, and current-state and future-state process flows
- Analyzing processes, controls, and tools to identify opportunities for ServiceNow configuration and automation across IT Operations Management, IT Asset Management, Integrated Risk Management, Security Operations, Third-Party Risk Management, and ServiceNow AI Control Tower use cases
- Contributing to functional design and configuration of ServiceNow solutions, including forms, workflows, notifications, service level agreements, dashboards, reports, roles, and access controls
- Supporting documentation of data models, taxonomies, workflows, controls, and reporting requirements for cyber, risk, and artificial intelligence governance use cases
- Producing project artifacts, including requirements documentation, functional designs, test scenarios, training materials, release notes, and deployment support materials
- Collaborating with client stakeholders, functional teams, and technical teams to support demonstrations, user acceptance testing, defect triage, training, cutover activities, and solution adoption
A successful candidate would possess these skills:
- Ability to work independently and collaborate as part of a team
- Effective written and verbal communication skills
- Meticulous attention to detail and quality of work product
- Ability to build and sustain professional relationships
- Ability to lead projects or workstreams
- Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
- Strong interpersonal skills and professional demeanor
- Ability to meet deadlines
- Ability to provide clear guidance to others
The team
Our Cyber Strategy & Transformation offering develops and transforms cyber programs in line with a client's strategic objectives, regulatory requirements, and risk appetite. It keeps the enterprise a step ahead of the evolving threat landscape and gives stakeholders confidence in the organization's cyber posture. Includes design of the cyber organization, governance, and risk assessments.
Qualifications
Required:
- Bachelor's degree in Computer Science, Information Systems, Cyber Security, Engineering, Information Technology, Finance, or Business
- 2+ years of experience supporting ServiceNow implementation projects in a client-facing consulting role
- 2+ years of experience gathering business requirements, facilitating workshops, documenting process flows or user stories, and producing functional documentation
- 2+ years of experience designing, configuring, or implementing ServiceNow solutions in one or more of the following modules: IT Operations Management, IT Asset Management, Integrated Risk Management, Security Operations, or Third-Party Risk Management
- 2+ years of experience configuring ServiceNow forms, workflows, notifications, service level agreements, reports, dashboards, roles, or access controls
- Ability to travel 50%, on average, based on the work you do and the clients and industries/sectors you serve.
- Limited immigration sponsorship may be available.
Preferred:
- ServiceNow Certified System Administrator (CSA)
- ServiceNow Certified Application Developer (CAD)
- ArchX (Architecture Excellence)
- One or more ServiceNow Certified Implementation Specialist (CIS) certifications, including CIS-Risk and Compliance (CIS-RC), CIS-Security Incident Response (CIS-SIR), CIS-Vulnerability Response (CIS-VR), CIS-Third-Party Risk Management (CIS-TPRM), CIS-Hardware Asset Management (CIS-HAM), CIS-Software Asset Management (CIS-SAM), CIS-Service Mapping (CIS-SM), CIS-Discovery (CIS-DISCO), CIS-Event Management (CIS-EM), CIS-Data Foundations (CIS-DF), or CIS-Strategic Portfolio Management (CIS-SPM)
- Experience supporting implementation and configuration of ServiceNow AI Control Tower capabilities, including AI inventory management, intake and approval workflows, lifecycle oversight, issue management, dashboards, and reporting
- Experience supporting identity governance for human and non-human actors using Veza, or cyber asset discovery and configuration management database (CMDB) integration using Armis
For individuals assigned and/or hired to work in a Remote role, Deloitte is required by law to include a reasonable estimate of the compensation range for this role. This compensation range is specific to a Remote role and takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $82,600 to $162,800.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.