They also oversee and manage all 3rd-party risk management and act as a gatekeeper for enabling ... Perform cybersecurity risk assessments for all qualifying IT and OT environment changes.
They also oversee and manage all 3rd-party risk management and act as a gatekeeper for enabling ... Perform cybersecurity risk assessments for all qualifying IT and OT environment changes.
Looking for a Third-Party Risk Management Analyst Location: Plano, TX Description Summary: * Lead ... Perform comprehensive cybersecurity risk assessments of thirdparty partners, identify security gaps ...
New
Looking for a Third-Party Risk Management Analyst Location: Plano, TX Description Summary: * Lead ... Perform comprehensive cybersecurity risk assessments of thirdparty partners, identify security gaps ...
New
Senior Cybersecurity Third-Party Risk Analyst
Dallas, TX · Remote
$98K - $127K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly experienced Senior Cybersecurity Third-Party Risk Analyst to perform advanced, technical assessments ...
Senior Cybersecurity Third-Party Risk Analyst
Dallas, TX · Remote
$98K - $127K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly experienced Senior Cybersecurity Third-Party Risk Analyst to perform advanced, technical assessments ...
Cybersecurity Manager
The Woodlands, TX · On-site
$160K/yr
The Cybersecurity Manager leads the organization's cybersecurity, risk, and compliance program ... This role oversees GRC, HIPAA compliance, third-party risk management, and security operations ...
Cybersecurity Manager
The Woodlands, TX · On-site
$160K/yr
The Cybersecurity Manager leads the organization's cybersecurity, risk, and compliance program ... This role oversees GRC, HIPAA compliance, third-party risk management, and security operations ...
Senior Cybersecurity Third-Party Risk Analyst
San Antonio, TX · Remote
$90K - $116K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly experienced Senior Cybersecurity Third-Party Risk Analyst to perform advanced, technical assessments ...
Senior Cybersecurity Third-Party Risk Analyst
San Antonio, TX · Remote
$90K - $116K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly experienced Senior Cybersecurity Third-Party Risk Analyst to perform advanced, technical assessments ...
Senior Cybersecurity Third-Party Risk Analyst
San Antonio, TX · Remote
$90K - $116K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly experienced Senior Cybersecurity Third-Party Risk Analyst to perform advanced, technical assessments ...
Senior Cybersecurity Third-Party Risk Analyst
San Antonio, TX · Remote
$90K - $116K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly experienced Senior Cybersecurity Third-Party Risk Analyst to perform advanced, technical assessments ...
Senior Cybersecurity Third-Party Risk Analyst
Dallas, TX · Remote
$98K - $127K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly experienced Senior Cybersecurity Third-Party Risk Analyst to perform advanced, technical assessments ...
Senior Cybersecurity Third-Party Risk Analyst
Dallas, TX · Remote
$98K - $127K/yr
Senior Cybersecurity Third-Party Risk Analyst Company: The Boeing Company We are seeking a highly experienced Senior Cybersecurity Third-Party Risk Analyst to perform advanced, technical assessments ...
Senior Program Manager - Cybersecurity Risk Management
Spring, TX · Hybrid
$130K - $205K/yr
The role includes partnering with teams within our supply chain organization and third-party partners to review business operations, identify areas of cybersecurity risk, and drive the implementation ...
Senior Program Manager - Cybersecurity Risk Management
Spring, TX · Hybrid
$130K - $205K/yr
The role includes partnering with teams within our supply chain organization and third-party partners to review business operations, identify areas of cybersecurity risk, and drive the implementation ...
Senior Program Manager - Cybersecurity Risk Management
Spring, TX · On-site
$130K - $205K/yr
The role includes partnering with teams within our supply chain organization and third-party partners to review business operations, identify areas of cybersecurity risk, and drive the implementation ...
Senior Program Manager - Cybersecurity Risk Management
Spring, TX · On-site
$130K - $205K/yr
The role includes partnering with teams within our supply chain organization and third-party partners to review business operations, identify areas of cybersecurity risk, and drive the implementation ...
Cybersecurity Risk Analyst
Irving, TX · On-site
Why GMF Cybersecurity? Innovation isn't just a talking point at GM Financial, it's how we operate ... Perform third party risk assessments * Partner with Application Custodians to perform application ...
Cybersecurity Risk Analyst
Irving, TX · On-site
Why GMF Cybersecurity? Innovation isn't just a talking point at GM Financial, it's how we operate ... Perform third party risk assessments * Partner with Application Custodians to perform application ...
Cybersecurity Risk Analyst
Irving, TX · Hybrid
Why GMF Cybersecurity? Innovation isn't just a talking point at GM Financial, it's how we operate ... Perform third party risk assessments * Partner with Application Custodians to perform application ...
Cybersecurity Risk Analyst
Irving, TX · Hybrid
Why GMF Cybersecurity? Innovation isn't just a talking point at GM Financial, it's how we operate ... Perform third party risk assessments * Partner with Application Custodians to perform application ...
Cybersecurity Program Manager
$99K - $134K/yr
Develop and maintain a third-party cybersecurity risk management program to evaluate and validate vendor security practices and ensure partners meet company standards * Manage the cybersecurity ...
Cybersecurity Program Manager
$99K - $134K/yr
Develop and maintain a third-party cybersecurity risk management program to evaluate and validate vendor security practices and ensure partners meet company standards * Manage the cybersecurity ...
Lead and support third-party risk management activities including vendor due diligence, risk ... Knowledge of security and risk frameworks such as NIST Cybersecurity Framework, ISO 27001, and CIS ...
Lead and support third-party risk management activities including vendor due diligence, risk ... Knowledge of security and risk frameworks such as NIST Cybersecurity Framework, ISO 27001, and CIS ...
Lead and support third-party risk management activities including vendor due diligence, risk ... Knowledge of security and risk frameworks such as NIST Cybersecurity Framework, ISO 27001, and CIS ...
Lead and support third-party risk management activities including vendor due diligence, risk ... Knowledge of security and risk frameworks such as NIST Cybersecurity Framework, ISO 27001, and CIS ...
Senior Cybersecurity Risk Analyst - USA Remote
Dallas, TX · Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Senior Cybersecurity Risk Analyst - USA Remote
Dallas, TX · Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Support third-party risk management processes, including vendor risk assessments and ongoing monitoring. * Collaborate with cybersecurity and technology teams to align security tooling, monitoring ...
Support third-party risk management processes, including vendor risk assessments and ongoing monitoring. * Collaborate with cybersecurity and technology teams to align security tooling, monitoring ...
Support third-party risk management processes, including vendor risk assessments and ongoing monitoring. * Collaborate with cybersecurity and technology teams to align security tooling, monitoring ...
Support third-party risk management processes, including vendor risk assessments and ongoing monitoring. * Collaborate with cybersecurity and technology teams to align security tooling, monitoring ...
Cybersecurity Governance Analyst
$43 - $46/hr
Experience conducting vendor risk assessments or third-party security reviews. * Familiarity with cybersecurity, privacy, AI governance, or risk management frameworks. * Experience in government ...
New
Quick apply
Cybersecurity Governance Analyst
$43 - $46/hr
Experience conducting vendor risk assessments or third-party security reviews. * Familiarity with cybersecurity, privacy, AI governance, or risk management frameworks. * Experience in government ...
New
The role will focus on Third Party Risk and resides within the Legal and Compliance's Operational Risk Department (ORD), a Second Line of Defense (2LoD) function. Operational Risk refers to the risk ...
The role will focus on Third Party Risk and resides within the Legal and Compliance's Operational Risk Department (ORD), a Second Line of Defense (2LoD) function. Operational Risk refers to the risk ...
Cybersecurity Engineer
Dallas, TX · On-site
Cybersecurity Risk Management * Perform cybersecurity risk assessments for medical device systems ... third-party libraries. * Prepare vulnerability mitigation plans and support development teams ...
Quick apply
Cybersecurity Engineer
Dallas, TX · On-site
Cybersecurity Risk Management * Perform cybersecurity risk assessments for medical device systems ... third-party libraries. * Prepare vulnerability mitigation plans and support development teams ...
Third Party Cybersecurity Risk information
How much does a third party risk analyst make?
Is third party risk management a good career?
What is third-party risk management in cybersecurity?
What is the difference between Third Party Cybersecurity Risk vs Cybersecurity Analyst?
| Aspect | Third Party Cybersecurity Risk | Cybersecurity Analyst |
|---|---|---|
| Certifications | ISO 27001, CISSP, CISA | CISSP, CompTIA Security+, CEH |
| Work Environment | Vendor assessments, risk management teams, client organizations | Security operations centers, IT departments, consulting firms |
| Industry Usage | Supply chain, vendor management, compliance | Network security, incident response, vulnerability assessment |
Third Party Cybersecurity Risk professionals focus on evaluating and managing risks from external vendors and partners, ensuring compliance and reducing supply chain vulnerabilities. Cybersecurity Analysts primarily monitor, analyze, and respond to security threats within an organization’s own systems. While both roles require security certifications and involve risk assessment, their focus areas and work environments differ significantly.
Can you make $500,000 a year in cyber security?
- Director Third Party Risk Management
- Temporary Third Party Risk Analyst
- Nist Cybersecurity Framework
- Internship Nist Cybersecurity Framework
- Third Party Risk Analyst
- Remote Technology Risk Consultant
- Contract Model Risk Governance
- Isc2 Certified In Cybersecurity
- Governance Risk Compliance Intern
- Liquidity Risk

Full-time
Posted 16 days ago
Job description
Finance
Posting Start Date: 6/29/26
Posting End Date: 7/28/26
Job Summary
The Cybersecurity Risk Management Specialist is responsible for governing changes that could introduce cybersecurity risk into the environment, via IT and OT changes. They operationally govern the environment, following the enterprise's cybersecurity policies and standards, via defining and enforcing operational processes for cybersecurity risk assessment and remediation covering the organization's IT and OT environment. They establish operational risk management processes and operational playbooks, aligned to corporate cybersecurity policy and agreed upon risk management frameworks and enterprise risk management guidelines, to ensure secure IT and OT changes, while providing enterprise-wide cybersecurity risk visibility.
They serve as the focal point and technical consultant to the business units and IT and OT project team and management to assess and identify cybersecurity risks related to environment changes. They establish risk remediation approaches based upon corporate policies and standards, steering and facilitating implementation of any needed cybersecurity controls with the appropriate control owners.
They are responsible for planning, managing, and coordinating various cybersecurity risk management activities, focused on identifying, assessing, and mitigating unacceptable risks while enabling the underlying business goals and objectives. They also oversee and manage all 3rd-party risk management and act as a gatekeeper for enabling integrations with 3rd-party partners, suppliers, and vendors, overseeing TPRM assessments and specifying controls needed to protect the organization's data and connectivity with 3rd-parties.
Job Responsibilities
- Maintain enterprise risk management operational frameworks and risk scoring criteria in accordance with company cybersecurity policies, standards, and frameworks and enterprise risk management guidelines.
- Perform cybersecurity risk assessments for all qualifying IT and OT environment changes.
- Coordinate with the cybersecurity architecture senior specialist to validate risk assessment findings, and to request guidance when pre-approved risk mitigation strategies are not available for identified risks.
- Establish and track risk remediation plans for all identified risks.
- Coordinate with the cybersecurity assurance specialist to ensure ongoing verification of mitigated risks are effective over time.
- Implement, manage, and maintain risk-related workflows, including coordination with the appropriate risk owners and authority functions to obtain approval for risk exceptions and policy deviations.
- Act as a gatekeeper between Implementation Phase and production go-live (Manage & Measure phase) to ensure all identified risks have been addressed via closure of risk remediation plans.
- Ensure all 3rd-party / external partner, vendor, and supplier interactions have undergone an appropriate risk assessment to verify the safety, security, and risk mitigation of all 3rd-party integrations and interactions.
- Maintain a register of approved 3rd-parties, including the controls required to ensure safe and secure interactions, and the approved use case(s) of each 3rd-party
- Establish and maintain a 3rd-party re-verification program to verify that usage, risks, and risk mitigations are updated as needed, if any 3rd-party relationships change over time
- Coordinate with the cybersecurity Assurance team to ensure on-going operational validation of 3rd-party integrations and interactions
- Review all third-party contracts for IT / OT services and solutions to ensure all required risk-mitigating controls and clauses are included and enforced contractually.
- Oversight and management of the enterprise cybersecurity risk register to facilitate the monitoring and reporting of risks.
- - Management of the operational risk assessment methodology covering the organization's IT , OT, and 3rd-party integration components related to secure, compliant and resilient operations.
- Oversight of the managed services providers performing risk assessments to ensure they are following the methodology in compliance with company policies, standards, processes, and expectations.
- Provide evidence to Assurance function, Legal, approved stakeholders, and contribute to internal and external audits and assessments as needed in regard to cybersecurity risks.
- - Ensure feedback from cybersecurity Assurance role and similar stakeholders are used to improve risk assessment methodologies and processes
- Identifies gaps and needs in regard to risk assessment, working with the cybersecurity architect role to ensure needs are incorporated into the cybersecurity strategy and roadmap.
- Manages control implementations and improvement projects in the area of risk management, following the organization's project management and project execution processes.
- Drives operational risk assessment maturity and process improvements and automation for processes and controls in-scope of role.
Job Requirements
- BS or MA in computer science, information security, cybersecurity or a related field
- Cybersecurity certification in risk assessment (or appropriate on-the job experience)
- 5+ years of experience in a cybersecurity, enterprise (ERM), or IT risk management role
- 5+ years of experience with regulatory compliance, risk management frameworks and information security management frameworks (e.g. ISO, NIST, etc)
- Strong understanding of Zero Trust principals
- Cybersecurity principles and practices, including IT and OT cybersecurity risk assessment, cybersecurity risk mitigation, and third-party risk assessment.
- Cybersecurity frameworks and standards, such as the NIST CSF, Secure Controls Framework, ISO/IEC 27001, and OT cybersecurity standards (62443, ...).
- Strong background in conducting Business Impact Analysis (BIA) to evaluate the potential impact of cybersecurity risk on critical business processes and functions.
- Third Party and Vendor Risk
- Regulatory and Compliance alignment
- Strong communication skills
- Planning and organizing
- Personal Leadership
- Analytical and Risk Based decision making.