You will design, configure, and support scalable solutions across various risk domains, including audit, privacy, and third-party risk. These solutions will ensure our platform remains high-quality ...
You will design, configure, and support scalable solutions across various risk domains, including audit, privacy, and third-party risk. These solutions will ensure our platform remains high-quality ...
The Director, Risk Adjustment Products will lead the strategy, roadmap, and execution for the ... and third-party integrations. * Balance innovation with compliance, audit defensibility, and ...
The Director, Risk Adjustment Products will lead the strategy, roadmap, and execution for the ... and third-party integrations. * Balance innovation with compliance, audit defensibility, and ...
... third-party risk management practices
... third-party risk management practices
OR · On-site
Your consolidated operational risk view of the criticality of enterprise platforms, sensitive data, regulatory obligations and third-party ecosystems will be provided for each these functions.
Review and provide input on third-party risk assessments and vendor security reviews * Support merger, acquisition, organizational role changes or system onboarding activities from a risk and ...
Review and provide input on third-party risk assessments and vendor security reviews * Support merger, acquisition, organizational role changes or system onboarding activities from a risk and ...
... third-party risk assessment * Collaborate with the global legal team to align security and data practices across the company, ensuring a unified approach to data protection * Support building and ...
... third-party risk assessment * Collaborate with the global legal team to align security and data practices across the company, ensuring a unified approach to data protection * Support building and ...
Review and provide input on third-party risk assessments and vendor security reviews * Support merger, acquisition, organizational role changes or system onboarding activities from a risk and ...
Review and provide input on third-party risk assessments and vendor security reviews * Support merger, acquisition, organizational role changes or system onboarding activities from a risk and ...
Sr Information Security Engineer
Portland, OR · On-site
$112K - $153K/yr
Review and provide input on third-party risk assessments and vendor security reviews * Support merger, acquisition, organizational role changes or system onboarding activities from a risk and ...
Sr Information Security Engineer
Portland, OR · On-site
$112K - $153K/yr
Review and provide input on third-party risk assessments and vendor security reviews * Support merger, acquisition, organizational role changes or system onboarding activities from a risk and ...
Sr Information Security Engineer
Portland, OR · On-site
$112K - $153K/yr
Review and provide input on third-party risk assessments and vendor security reviews * Support merger, acquisition, organizational role changes or system onboarding activities from a risk and ...
Sr Information Security Engineer
Portland, OR · On-site
$112K - $153K/yr
Review and provide input on third-party risk assessments and vendor security reviews * Support merger, acquisition, organizational role changes or system onboarding activities from a risk and ...
... third-party risk management, and incident response . Manage consumer rights and privacy request programs. Coordinate with Information Security and Legal on breach notification obligations in ...
... third-party risk management, and incident response . Manage consumer rights and privacy request programs. Coordinate with Information Security and Legal on breach notification obligations in ...
Identify, assess, and track remediation of technology and cybersecurity risks * Assist in third-party/vendor risk assessments and compliance reviews * Monitor compliance with internal policies and ...
New
Identify, assess, and track remediation of technology and cybersecurity risks * Assist in third-party/vendor risk assessments and compliance reviews * Monitor compliance with internal policies and ...
New
Identify, assess, and track remediation of technology and cybersecurity risks * Assist in third-party/vendor risk assessments and compliance reviews * Monitor compliance with internal policies and ...
New
Identify, assess, and track remediation of technology and cybersecurity risks * Assist in third-party/vendor risk assessments and compliance reviews * Monitor compliance with internal policies and ...
New
IT Vendor Financials & Contract Manager
Portland, OR · On-site +1
Third-Party Risk Management (TPRM) * Service Level Management (SLM) * Contract Management Pro * Performance Analytics (PA) * Strategic Portfolio Management (SPM) * IT Service Management (ITSM) * 1+ ...
IT Vendor Financials & Contract Manager
Portland, OR · On-site +1
Third-Party Risk Management (TPRM) * Service Level Management (SLM) * Contract Management Pro * Performance Analytics (PA) * Strategic Portfolio Management (SPM) * IT Service Management (ITSM) * 1+ ...
Partner with Legal, Security, Privacy, and Risk teams to embed strong protections in contracts (security and data privacy terms, third-party risk requirements, audit rights, SLAs/service credits, and ...
Partner with Legal, Security, Privacy, and Risk teams to embed strong protections in contracts (security and data privacy terms, third-party risk requirements, audit rights, SLAs/service credits, and ...
Partner with Legal, Security, Privacy, and Risk teams to embed strong protections in contracts (security and data privacy terms, third-party risk requirements, audit rights, SLAs/service credits, and ...
Partner with Legal, Security, Privacy, and Risk teams to embed strong protections in contracts (security and data privacy terms, third-party risk requirements, audit rights, SLAs/service credits, and ...
Partner with Legal, Security, Privacy, and Risk teams to embed strong protections in contracts (security and data privacy terms, third-party risk requirements, audit rights, SLAs/service credits, and ...
Partner with Legal, Security, Privacy, and Risk teams to embed strong protections in contracts (security and data privacy terms, third-party risk requirements, audit rights, SLAs/service credits, and ...
Partner with legal, finance, IT, and business operations on audit readiness, third-party risk, and customer or partner security requirements * Drive remediation of high-priority risks through direct ...
Partner with legal, finance, IT, and business operations on audit readiness, third-party risk, and customer or partner security requirements * Drive remediation of high-priority risks through direct ...
OR · On-site
$325K - $350K/yr
Alex Yampolskiy and Sam Kassoumeh and funded by world-class investors, SecurityScorecard's patented rating technology is used by over 25,000 organizations for self-monitoring, third-party risk ...
OR · On-site
$325K - $350K/yr
Alex Yampolskiy and Sam Kassoumeh and funded by world-class investors, SecurityScorecard's patented rating technology is used by over 25,000 organizations for self-monitoring, third-party risk ...
Partner with legal, finance, IT, and business operations on audit readiness, third-party risk, and customer or partner security requirements * Drive remediation of high-priority risks through direct ...
Partner with legal, finance, IT, and business operations on audit readiness, third-party risk, and customer or partner security requirements * Drive remediation of high-priority risks through direct ...
Partner with legal, finance, IT, and business operations on audit readiness, third-party risk, and customer or partner security requirements * Drive remediation of high-priority risks through direct ...
Quick apply
Partner with legal, finance, IT, and business operations on audit readiness, third-party risk, and customer or partner security requirements * Drive remediation of high-priority risks through direct ...
Third Party Risk information
What are some common challenges faced in a Third Party Risk role and how can they be managed?
Professionals in Third Party Risk often encounter challenges such as managing a large and diverse vendor portfolio, staying updated on regulatory requirements, and ensuring timely risk assessments. Navigating communication gaps between internal stakeholders and external vendors can also be demanding. These challenges are typically managed by implementing robust risk assessment frameworks, fostering cross-functional collaboration, and leveraging technology to streamline due diligence and monitoring processes. Continuous training and clear communication protocols further help in addressing these complexities and maintaining effective third-party risk management.
What is the difference between Third Party Risk vs Vendor Risk Management?
| Aspect | Third Party Risk | Vendor Risk Management |
|---|---|---|
| Focus | Assessing risks from all external entities, including vendors, partners, and contractors | Evaluating risks specifically associated with third-party vendors |
| Credentials | Risk management certifications, compliance knowledge | Vendor management certifications, procurement experience |
| Work Environment | Corporate risk teams, compliance departments | Procurement, vendor management teams |
| Industry Usage | Financial, healthcare, technology sectors | Primarily in supply chain and procurement functions |
Third Party Risk encompasses a broader scope, including all external entities, while Vendor Risk Management specifically focuses on vendors. Both roles require risk assessment skills and industry knowledge, but Third Party Risk roles often involve broader compliance and strategic oversight.
What are the key skills and qualifications needed to thrive as a Third Party Risk professional, and why are they important?
To thrive as a Third Party Risk professional, you need a solid understanding of risk management principles, vendor assessment processes, and relevant regulatory frameworks, often supported by a degree in business, finance, or a related field. Familiarity with risk assessment tools, GRC (governance, risk, and compliance) software, and certifications such as Certified Third Party Risk Professional (CTPRP) are common requirements. Strong analytical thinking, attention to detail, and effective communication skills help you evaluate vendors and influence stakeholders. These skills are vital for identifying, mitigating, and managing risks associated with third-party relationships to protect organizational integrity and compliance.
What is Third Party Risk?
Third Party Risk refers to the potential risks and vulnerabilities an organization faces when working with external vendors, suppliers, or service providers. These risks can include data breaches, compliance violations, operational disruptions, and reputational damage resulting from the actions or failures of third parties. Managing third party risk involves identifying, assessing, monitoring, and mitigating these risks to protect the organization’s interests and ensure regulatory compliance.
What are the most commonly searched types of Third Party Risk jobs in Oregon? The most popular types of Third Party Risk jobs in Oregon are:
What are popular job titles related to Third Party Risk jobs in Oregon? For Third Party Risk jobs in Oregon, the most frequently searched job titles are:
What job categories do people searching Third Party Risk jobs in Oregon look for? The top searched job categories for Third Party Risk jobs in Oregon are:
What cities in Oregon are hiring for Third Party Risk jobs? Cities in Oregon with the most Third Party Risk job openings:
Full-time
Medical, Dental, Vision, Retirement, PTO
Posted 19 hours ago
Fisher Investments rating
8.4
Based on 14 frontline employees who took The Breakroom Quiz
Job description
Fisher Investments is looking for an experienced ServiceNow Developer with deep expertise in Integrated Risk Management (IRM) and Governance, Risk, and Compliance (GRC). You will be the technical engine behind our risk and compliance digital transformation.
The Opportunity:
You will offer the chance to act as a strategic technical partner across the entire enterprise. You will design, configure, and support scalable solutions across various risk domains, including audit, privacy, and third-party risk. These solutions will ensure our platform remains high-quality, maintainable, and aligned with a "return to out-of-the-box" strategy. You won't just complete tickets; you will collaborate with partners in Security, Legal, and Procurement to build a transparent, automated risk posture. This is an opportunity to lead complex integrations, influence platform architecture, and lead where your work directly impacts global governance. You will report to the Application Development Lead.
The Day to Day:
- Build and enhance ServiceNow modules including Policy & Compliance, Vendor Risk, and Operational Resilience using Flow Designer, Script Includes, and Business Rules
- Create and maintain REST/SOAP API integrations and IntegrationHub spokes to connect ServiceNow with IAM, SIEM, ERP, and HR platforms
- Design intuitive Workspaces, Portals, and Dashboards, applying Performance Analytics to provide stakeholders with clear visibility into enterprise risk
- Design automated workflows for risk assessments, audit findings, and vendor onboarding to reduce manual effort across the organization
- Participate in Agile delivery (sprint planning, peer reviews), troubleshoot production issues, support platform upgrades, and maintain robust technical documentation
Your Qualifications
- 4+ years of hands-on experience with ServiceNow development
- 2+ years of dedicated experience supporting IRM/GRC modules
- Strong JavaScript skills and expert-level knowledge of the ServiceNow technical stack (Client Scripts, UI Policies, ACLs, MID Servers, and Transform Maps)
- Deep familiarity with the IRM/GRC suite, including Business Continuity, Privacy Management, and Regulatory Change Management
- Experience with Agile/DevOps, CI/CD pipelines, and platform data governance (CMDB/CSDM)
- Translate complex needs into sustainable technical solutions
- A Bachelor's degree in a technical field; ServiceNow certifications (CSA, CAD, or CIS-IRM/Risk & Compliance)
Compensation:
- $85,000 - $135,000 base salary per year in the state of WA. New hires should expect to start at the lower end of the range depending on experience
- Eligible for a discretionary bonus based on firm and individual performance
Why Fisher Investments:
We work for a bigger purpose: bettering the investment universe. We take great pride in our inclusive culture, our learning and development framework customized for every employee, and our Great Place to Work Certification. It's the people that make the Fisher purpose possible, and we invest in them by offering exceptional benefits like:
- 100% paid medical, dental and vision premiums for you and your qualifying dependents
- A 50% 401(k) match, up to the IRS maximum
- 20 days of PTO, plus 10 paid holidays
- Family Support programs including 8 week Paid Primary Caregiver Leave, $10,000 fertility, family forming, and hormonal health assistance, and back-up child, adult, and elder care
- This is an in-office role. Based on your role, tenure, and performance eligibility you may have the opportunity to participate in our hybrid work from home program. This program is subject to change.
FISHER INVESTMENTS IS AN EQUAL OPPORTUNITY EMPLOYER
What Fisher Investments employees say
Pay
Hours and flexibility
Workplace
Get the full story on Breakroom
About Fisher Investments
Sourced by ZipRecruiter
Company size
1,001 - 5,000 Employees
Headquarters location
Camas, WA, US
Year founded
1979