This role is remote; candidates must be based in the Eastern Time Zone (ET). What you'll do Third-Party Risk Assessment (Primary Focus - 60%) * Conduct technical security assessments of third-party ...
This role is remote; candidates must be based in the Eastern Time Zone (ET). What you'll do Third-Party Risk Assessment (Primary Focus - 60%) * Conduct technical security assessments of third-party ...
Senior Cybersecurity Risk Analyst - USA Remote
Boston, MA · Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Senior Cybersecurity Risk Analyst - USA Remote
Boston, MA · Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
What You'll Do Own and Mature the Third Party Risk Management Program * Define and drive OutSystems ... remote employees. Our customers are some of the world's most recognizable brands across diverse ...
What You'll Do Own and Mature the Third Party Risk Management Program * Define and drive OutSystems ... remote employees. Our customers are some of the world's most recognizable brands across diverse ...
Analyzing processes, controls, and tools to identify opportunities for ServiceNow configuration and ... Third-Party Risk Management, and ServiceNow AI Control Tower use cases * Supporting functional ...
Analyzing processes, controls, and tools to identify opportunities for ServiceNow configuration and ... Third-Party Risk Management, and ServiceNow AI Control Tower use cases * Supporting functional ...
Consultant - ServiceNow
Boston, MA · Remote
Analyzing processes, controls, and tools to identify opportunities for ServiceNow configuration and ... Security Operations, Third-Party Risk Management, and ServiceNow AI Control Tower use cases
Consultant - ServiceNow
Boston, MA · Remote
Analyzing processes, controls, and tools to identify opportunities for ServiceNow configuration and ... Security Operations, Third-Party Risk Management, and ServiceNow AI Control Tower use cases
Technical Business Analyst - Remote
Boston, MA · Remote
$50 - $52/hr
Serve as liaison between business units, technology teams, and third-party vendors. Track project ... Strong understanding of banking/insurance processes (core banking, payments, risk & compliance ...
Quick apply
Technical Business Analyst - Remote
Boston, MA · Remote
$50 - $52/hr
Serve as liaison between business units, technology teams, and third-party vendors. Track project ... Strong understanding of banking/insurance processes (core banking, payments, risk & compliance ...
Account Executive - California (Remote)
Boston, MA · Remote
$160K - $200K/yr
Come join the leader in cyber third-party risk intelligence! Black Kite gives organizations a comprehensive, real-time view into cyber ecosystem risk so they can make informed risk decisions and ...
Account Executive - California (Remote)
Boston, MA · Remote
$160K - $200K/yr
Come join the leader in cyber third-party risk intelligence! Black Kite gives organizations a comprehensive, real-time view into cyber ecosystem risk so they can make informed risk decisions and ...
Manager - ServiceNow
Boston, MA · On-site +1
... Third-Party Risk Management workstreams in partnership with architects and product owners ... Experience with Performance Analytics, Predictive Intelligence, Now Assist, or generative ...
Manager - ServiceNow
Boston, MA · On-site +1
... Third-Party Risk Management workstreams in partnership with architects and product owners ... Experience with Performance Analytics, Predictive Intelligence, Now Assist, or generative ...
Senior Security Compliance Analyst
Burlington, MA · On-site +1
$140K - $180K/yr
You will own risk management initiatives-including third-party risk, control testing, and audit ... gap analysis. * Drive audit readiness and execution, coordinating evidence collection and ...
Senior Security Compliance Analyst
Burlington, MA · On-site +1
$140K - $180K/yr
You will own risk management initiatives-including third-party risk, control testing, and audit ... gap analysis. * Drive audit readiness and execution, coordinating evidence collection and ...
Principal Technology Risk Analyst
Boston, MA · On-site +1
$140K - $150K/yr
... Risk Analyst (or closely related occupation) performing Information Technology (IT) audits, risk assessments, and cybersecurity control reviews. Or, alternatively, Master's degree in Computer Science ...
Principal Technology Risk Analyst
Boston, MA · On-site +1
$140K - $150K/yr
... Risk Analyst (or closely related occupation) performing Information Technology (IT) audits, risk assessments, and cybersecurity control reviews. Or, alternatively, Master's degree in Computer Science ...
Manager, Product Research
Boston, MA · On-site +1
Strong communication and analytical skills, including the ability to identify and solve ambiguous ... third-party risk management, benchmarking, and cyber insurance. Belonging & Inclusion Bitsight is ...
Manager, Product Research
Boston, MA · On-site +1
Strong communication and analytical skills, including the ability to identify and solve ambiguous ... third-party risk management, benchmarking, and cyber insurance. Belonging & Inclusion Bitsight is ...
Senior Sales Engineer (Hybrid, Boston)
Boston, MA · On-site +1
$140K - $170K/yr
... third-party cyber risk management programs in an increasingly complex digital environment. Our work has earned consistent recognition from customers and industry analysts alike. WHY BLACK KITE We're ...
Senior Sales Engineer (Hybrid, Boston)
Boston, MA · On-site +1
$140K - $170K/yr
... third-party cyber risk management programs in an increasingly complex digital environment. Our work has earned consistent recognition from customers and industry analysts alike. WHY BLACK KITE We're ...
Senior Sales Engineer (Hybrid, Boston)
Boston, MA · On-site +1
$140K - $170K/yr
... third-party cyber risk management programs in an increasingly complex digital environment. Our work has earned consistent recognition from customers and industry analysts alike. WHY BLACK KITE We're ...
Senior Sales Engineer (Hybrid, Boston)
Boston, MA · On-site +1
$140K - $170K/yr
... third-party cyber risk management programs in an increasingly complex digital environment. Our work has earned consistent recognition from customers and industry analysts alike. WHY BLACK KITE We're ...
Contract Retirement Plan Analyst (Remote)
Boston, MA · On-site +1
... and third-party vendors. Flexibility & Work-Life Integration Our client supports a hybrid work ... and remote flexibility. The firm recognizes the importance of meeting business needs while ...
Contract Retirement Plan Analyst (Remote)
Boston, MA · On-site +1
... and third-party vendors. Flexibility & Work-Life Integration Our client supports a hybrid work ... and remote flexibility. The firm recognizes the importance of meeting business needs while ...
Contract Retirement Plan Analyst (Remote)
Boston, MA · On-site +1
$76K - $94K/yr
... and third-party vendors. Flexibility & Work-Life Integration Our client supports a hybrid work ... and remote flexibility. The firm recognizes the importance of meeting business needs while ...
Quick apply
Contract Retirement Plan Analyst (Remote)
Boston, MA · On-site +1
$76K - $94K/yr
... and third-party vendors. Flexibility & Work-Life Integration Our client supports a hybrid work ... and remote flexibility. The firm recognizes the importance of meeting business needs while ...
Nuclear Risk Benchmarking Analyst - Remote
Boston, MA · Remote
$50 - $90/hr
Remote micro1 is engaging Nuclear & Radiological Security Experts to support a customer ... Contribute expert guidance on benchmarking nuclear and radiological risk assessments, ensuring ...
Nuclear Risk Benchmarking Analyst - Remote
Boston, MA · Remote
$50 - $90/hr
Remote micro1 is engaging Nuclear & Radiological Security Experts to support a customer ... Contribute expert guidance on benchmarking nuclear and radiological risk assessments, ensuring ...
Market Risk
Boston, MA · On-site +1
$82K - $180K/yr
This self-motivated Market Risk Analyst will use a strong technical and quantitative aptitude ... Hybrid remote telecommuting permitted pursuant to company policy. Minimum requirements: Master ...
Market Risk
Boston, MA · On-site +1
$82K - $180K/yr
This self-motivated Market Risk Analyst will use a strong technical and quantitative aptitude ... Hybrid remote telecommuting permitted pursuant to company policy. Minimum requirements: Master ...
Senior Associate, Portfolio Analytics
Boston, MA · On-site +1
The Portfolio Analytics team is seeking a Senior Associate to help lead and evolve our third-party ... Strengthen Risk and Data Practices * Contribute to a structured approach for managing vendor ...
Senior Associate, Portfolio Analytics
Boston, MA · On-site +1
The Portfolio Analytics team is seeking a Senior Associate to help lead and evolve our third-party ... Strengthen Risk and Data Practices * Contribute to a structured approach for managing vendor ...
Chief Information Security Officer (CISO)
Boston, MA · On-site +1
Lead enterprise risk assessments, mitigation planning, third-party risk, and business continuity ... Build strategic relationships with fellow security leaders, analysts, regulators, and partners ...
Chief Information Security Officer (CISO)
Boston, MA · On-site +1
Lead enterprise risk assessments, mitigation planning, third-party risk, and business continuity ... Build strategic relationships with fellow security leaders, analysts, regulators, and partners ...
Chief Information Security Officer (CISO)
Boston, MA · On-site +1
Lead enterprise risk assessments, mitigation planning, third-party risk, and business continuity ... Build strategic relationships with fellow security leaders, analysts, regulators, and partners ...
Chief Information Security Officer (CISO)
Boston, MA · On-site +1
Lead enterprise risk assessments, mitigation planning, third-party risk, and business continuity ... Build strategic relationships with fellow security leaders, analysts, regulators, and partners ...
Third Party Risk Analyst Remote information
See Boston, MA salary details
$16.71 - $21.70
3% of jobs
$21.70 - $26.69
7% of jobs
$26.69 - $31.67
12% of jobs
$32.65 is the 25th percentile. Wages below this are outliers.
$31.67 - $36.66
15% of jobs
$36.66 - $41.64
13% of jobs
The median wage is $41.81 / hr.
$41.64 - $46.63
16% of jobs
$46.63 - $51.61
8% of jobs
$52.24 is the 75th percentile. Wages above this are outliers.
$51.61 - $56.60
11% of jobs
$56.60 - $61.58
6% of jobs
$61.58 - $66.57
6% of jobs
$66.57 - $71.56
3% of jobs
$16
$43
$71
How much do third party risk analyst remote jobs pay per hour?
What does a Third Party Risk Analyst do?
What are the key skills and qualifications needed to thrive as a Third Party Risk Analyst (Remote), and why are they important?
How does a Third Party Risk Analyst collaborate with other departments in a remote work setting?
What is the difference between Third Party Risk Analyst Remote vs Vendor Risk Analyst?
| Aspect | Third Party Risk Analyst Remote | Vendor Risk Analyst |
|---|---|---|
| Credentials | Certifications like CRISC, CISA often preferred | Similar certifications, often including CRISC, CISA |
| Work Environment | Remote, primarily online collaboration | Remote or on-site, depending on company policy |
| Industry Usage | Financial, healthcare, technology sectors | Financial, retail, manufacturing sectors |
| Job Focus | Assessing third-party risks and compliance | Evaluating vendor security and operational risks |
The main difference is that a Third Party Risk Analyst Remote focuses on assessing risks posed by third-party entities across various industries, often working remotely. A Vendor Risk Analyst typically concentrates on evaluating specific vendors' security and operational risks, which may involve more direct vendor interactions. Both roles require similar certifications and work environments, but their scope and focus differ slightly.

Job description
HubSpot is seeking a Senior Third Party Risk & Integration Security Engineer to join our expanding IAM, Third Party Risk Management, and Enterprise Application Management team. This role is based on the idea of "external party security" and combines technical security assessment expertise in vendor risk management, focusing on evaluating third-party applications, emerging AI technologies, and integration security. The ideal candidate will conduct technical assessments of vendor security controls while also supporting broader software management and identity and access management initiatives across the organization.
This role is remote; candidates must be based in the Eastern Time Zone (ET).
What you'll do
Third-Party Risk Assessment (Primary Focus - 60%)
- Conduct technical security assessments of third-party applications, vendors, and service providers beyond traditional questionnaire-based reviews
- Evaluate API security, authentication mechanisms, data flows, and integration architectures for vendor solutions
- Assess generative AI vulnerabilities in third-party applications, including model security, data privacy, and information disclosure risks
- Perform security reviews of Model Context Protocol (MCP) servers and implementations
- Review vendor security documentation, architecture diagrams, and technical controls
- Identify security gaps and provide risk-based recommendations and guardrails to stakeholders
- Collaborate with procurement, legal, and business teams on vendor onboarding and ongoing monitoring requirements.
- Support Shadow IT discovery and risk assessment initiatives using enterprise tooling
- Evaluate security risks associated with unsanctioned applications and browser extensions
- Assist with managing and reducing risk relating to non-human identity (NHI) including service accounts and API keys.
- Assess access control implementations across enterprise applications and also members of HubSpot's global contractor base.
- Review OAuth grants, SAML configurations, and application integrations for security risks
- Support identity governance initiatives and access certification processes
- Collaborate and support the enterprise application management team on shared security initiatives
What we're looking for
- 5+ years of experience in application security, vendor risk management, cloud security, and/or related field
- Experience with security frameworks (NIST CSF, ISO 27001, SOC 2, etc.)
- Strong understanding of API security (REST, GraphQL, authentication/authorization)
- Strong understanding of IAM principles (RBAC, ABAC, least privilege) and modern authentication protocols (OAuth 2.0, SAML)
- Experience with non-human identity management (service accounts, API tokens, certificates)
- Understanding of SaaS architectures, access controls, and integration security
- Excellent prioritization, organization, and time management skills to suit a high-volume environment.
- Understanding of LLM and generative AI security challenges and the emerging threat landscape.
- Strong project management and communication skills to support a highly cross-functional work environment.
- Working knowledge of privacy and compliance standards (GDPR, CCPA, HIPAA)
- Background in technical due diligence or managing large-scale supplier security programs (preferred)
- Certifications such as CISSP, CCSP, CISM, or CRISC are a plus
About HubSpot
Sourced by ZipRecruiter
Industry
Software development
Company size
1,001 - 5,000 Employees
Headquarters location
Cambridge, MA, US
Year founded
2006