Third Party Risk Management Analyst

🔥 8 minutes ago

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of CrowdStrike

CrowdStrike

5001 - 10000 employees

Founded 2011

🔒 Cybersecurity

☁️ SaaS

🤖 Artificial Intelligence

Cybersecurity • SaaS • Artificial Intelligence

CrowdStrike is a cybersecurity company that provides cloud-based security services to stop breaches. It is recognized as a leader in endpoint protection, identity and cloud security, and managed detection and response. CrowdStrike's platform, Falcon, integrates artificial intelligence to offer real-time visibility, detection, and protection against sophisticated cyber threats. The company is lauded for its effectiveness in securing networks and data, making it a trusted partner for businesses worldwide.

📋 Description

• Manage and mature CrowdStrike's Third Party Risk Management program, including policies, standards, procedures, and assessment methodologies • Conduct security risk assessments of third-party vendors, evaluating controls across domains such as data security, access management, incident response, business continuity, and compliance • Tier and prioritize vendors based on risk factors including data sensitivity, operational dependency, and regulatory scope • Manage vendor risk findings, remediation plans, and exceptions, working with vendors and internal stakeholders to resolve issues in a timely manner • Monitor the third-party risk landscape, including emerging threats, regulatory changes, and vendor security incidents, and communicate relevant updates to stakeholders • Develop and maintain TPRM dashboards and reporting to provide visibility into vendor risk posture and program health • Develop and deliver training and communications to internal stakeholders on TPRM processes, requirements, and responsibilities • Identify opportunities to automate and optimize TPRM workflows, leveraging GRC tooling and integrations to improve efficiency and scalability • Proactively identify gaps in the TPRM program and lead efforts to address and remediate them • Perform other duties within the scope of Third Party Risk Management and broader Cyber GRC.

🎯 Requirements

• Bachelor's degree in Computer Science, Information Security, Business, or a related field; or a up to 5 years of experience • Technical focus on third party risk management, vendor risk, supply chain security, or related disciplines • Experience with GRC or TPRM platforms such as ServiceNow, OneTrust, ProcessUnity, or similar tools • Strong understanding of security risk assessment methodologies and control frameworks applicable to third-party environments • Familiarity with regulatory requirements and frameworks such as SOC 1/SOC 2, ISO 27001/27002, NIST 800-53, CSA-CCM, GDPR, and PCI-DSS as they apply to vendor relationships • Experience with reviewing vendor security documentation, including SOC reports, penetration test results, and questionnaire responses • Proven experience utilizing AI technologies to enhance decision-making, streamline workflows and processes, improve efficiency and drive business outcomes • Certifications (Preferred): CISSP, CISM, CRISC, or equivalent security certifications • Certifications specific to third party risk such as CTPRP (Certified Third Party Risk Professional) are a plus • Ability to think strategically about supply chain and vendor risks and connect them to CrowdStrike's broader risk posture • Strong analytical and problem-solving skills to evaluate vendor controls, identify gaps, and prioritize remediation • Excellent communication skills with the ability to convey technical risk findings to non-technical stakeholders, including executives and procurement teams • Proven ability to build and maintain relationships with external vendors and internal cross-functional partners • Leadership skills to drive vendor risk assessments, manage remediation efforts, and influence stakeholders without direct authority • Experience managing risk programs or projects, including scoping, stakeholder coordination, and tracking deliverables against timelines.

🏖️ Benefits

• Market leader in compensation and equity awards • Comprehensive physical and mental wellness programs • Competitive vacation and holidays for recharge • Paid parental and adoption leaves • Professional development opportunities for all employees regardless of level or role • Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections • Vibrant office culture with world class amenities • Great Place to Work Certified™ across the globe

Apply Now

Similar Jobs

🔥 4 hours ago

TrueTandem

51 - 200

🏢 Enterprise

☁️ SaaS

🤖 Artificial Intelligence

Senior Business Analyst supporting the modernization of enterprise business applications for TrueTandem. Gathering requirements and leading sessions with business stakeholders on Microsoft Power Platform.

🔥 5 hours ago

ISS-Corporate

51 - 200

🏢 Enterprise

💸 Finance

🔒 Cybersecurity

Financial Management Business Analyst supporting federal financial management programs for USDA FPAC. Involved in budgeting, reporting, compliance, and operational analysis tasks.

🔥 5 hours ago

CSCI Consulting

201 - 500

🏢 Enterprise

Financial Analyst providing expertise in SAP FI/CO and federal financial management for federal client. Supporting business process reengineering and compliance with financial regulations and audit standards.

🔥 5 hours ago

Mariner

1001 - 5000

💸 Finance

🤝 B2B

Analyst in Portfolio Management managing investment strategies for the Investment Solutions department. Collaborating with teams to optimize portfolios and achieve client goals.

🔥 7 hours ago

System Automation Corporation

51 - 200

☁️ SaaS

🏛️ Government

📋 Compliance

Functional Consultant responsible for analyzing client needs and building applications on a low-code platform. Role involves extensive client collaboration and requires a technical mindset.