9 hours ago

Third-Party Risk Management Analyst

Jobs via Dice

Hybrid
Full Time
$95,000
Hybrid

Job Overview

Job TitleThird-Party Risk Management Analyst
Job TypeFull Time
Offered Salary$95,000
LocationHybrid

Who's the hiring manager?

Sign up to PitchMeAI to discover the hiring manager's details for this job. We will also write them an intro email for you.

Uncover Hiring Manager

Job Description

Third-Party Risk Management Analyst at Montek System

Montek System is seeking a dedicated Third-Party Risk Management Analyst to enhance its cybersecurity posture. This remote, long-term contract role is ideal for a professional with 1-3 years of experience who is passionate about cybersecurity risk assessment and process improvement.

About the Role

The Third-Party Risk Management Analyst plays a crucial role in supporting Montek System's Third-Party Cyber Risk Management (TPCRM) program. This involves performing cybersecurity risk assessments, leading project execution, and continuously improving risk management processes through automation and advanced tooling. The position requires a blend of hands-on cybersecurity engineering and structured project management to effectively identify, track, mitigate, and communicate third-party risks across the organization.

Essential Functions

  • Lead Montek System's Third-Party Cyber Risk Management initiatives, managing the full project lifecycle from planning to ongoing monitoring.
  • Conduct comprehensive cybersecurity risk assessments of third-party partners, identifying security gaps and delivering clear, actionable reports with minimal supervision.
  • Execute standardized inherent risk assessments, verifying the accuracy of risk ratings, control evaluations, and remediation plans.
  • Monitor, document, and follow up on third-party risk remediation activities to ensure timely closure and alignment with Montek System's risk tolerance.
  • Utilize Governance, Risk, and Compliance (GRC) platforms and AI-driven automation to streamline assessment workflows, reporting, and evidence collection.
  • Collaborate with cybersecurity, procurement, legal, internal audit, and business stakeholders to foster consistent and scalable third-party risk practices.
  • Support the continuous improvement of TPCRM processes by identifying inefficiencies and recommending enhancements.
  • Provide cybersecurity risk education to internal teams and third-party partners, promoting secure behaviors and awareness of emerging threats.
  • Prepare metrics, dashboards, and summaries to provide leadership with visibility into the third-party cyber risk posture.
  • Leverage AI platforms and industry data to optimize assessment workflows, allowing greater focus on mitigating identified risks.

Competencies

  • Cybersecurity Fundamentals: Solid understanding of security controls, threats, and risk concepts.
  • Risk Assessment & Analysis: Ability to identify, assess, and document third-party cyber risks and control gaps.
  • Project Management: Effective planning, tracking, and execution of work across multiple concurrent initiatives.
  • Process Improvement: Aptitude for identifying workflow efficiencies and recommending operational enhancements.
  • Stakeholder Collaboration: Proven ability to work effectively with cross-functional teams and external partners.
  • Communication: Clear articulation of technical risk information to diverse audiences.
  • Attention to Detail: Produces accurate, well-documented assessments and maintains reliable risk records.
  • AI-Driven Risk Mitigation: Proficiency in leveraging AI platforms and industry partnerships for risk identification and reduction.

Requirements

  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field, or equivalent practical experience.
  • 1–3 years of experience in cybersecurity, third-party risk management, IT risk, compliance, or a related discipline.
  • Foundational understanding of cybersecurity principles, risk assessment methodologies, and common security control frameworks.
  • Experience supporting projects or initiatives requiring coordination across multiple stakeholders.
  • Strong written and verbal communication skills, with the ability to clearly document risks and recommendations.

Key skills/competency

  • Cybersecurity Risk Assessment
  • Third-Party Risk Management (TPRM)
  • Governance, Risk, and Compliance (GRC)
  • Project Management
  • Process Improvement
  • AI for Risk Mitigation
  • Stakeholder Collaboration
  • Security Control Frameworks
  • Cybersecurity Fundamentals
  • Remediation Tracking

Tags:

Third-Party Risk Management Analyst
Cybersecurity Risk Assessment
TPRM
GRC
Project Management
Process Improvement
AI Risk Mitigation
Security Controls
Stakeholder Collaboration
Cybersecurity Fundamentals
Remediation
Automation
GRC Platforms
AI Platforms
Risk Management Tools
Security Frameworks
Reporting
IT Risk
Compliance
Information Security

Share Job:

How to Get Hired at Jobs via Dice

  • Research Montek System's culture: Study their mission, values, recent news, and employee testimonials on LinkedIn and Glassdoor.
  • Customize your resume: Highlight your experience in third-party risk management, cybersecurity assessments, and GRC platforms to align with Montek System's needs.
  • Showcase problem-solving skills: Prepare to discuss past experiences where you identified and mitigated cyber risks or improved risk management processes.
  • Demonstrate AI/automation knowledge: Emphasize how you've leveraged technology, especially AI, to streamline workflows and enhance risk reduction efforts at Montek System.
  • Practice stakeholder communication: Be ready to articulate complex technical risks clearly to both technical and non-technical audiences, a key competency for Montek System.

Frequently Asked Questions

Find answers to common questions about this job opportunity

Explore similar opportunities that match your background