Назад
Company hidden
20 часов назад

Third-Party Risk Consultant (Cybersecurity)

86 200 - 113 100$
Формат работы
onsite
Тип работы
fulltime
Грейд
middle
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Third-Party Risk Consultant (Cybersecurity): Executing third-party risk assessments and due diligence activities within the ETX organization with an accent on identifying inherent and residual risk exposure. Focus on evaluating system integrations, documenting control gaps, and ensuring compliance with industry frameworks like NIST and ISO 27001.

Location: Must be based in Springfield or Boston, Massachusetts

Salary: $86,200–$113,100

Company

hirify.global is a purpose-driven financial services organization committed to long-term impact, integrity, and stewardship.

What you will do

  • Analyze third-party services, data flows, and system integrations to identify risk exposure.
  • Collaborate with issue management teams to track, communicate, and remediate identified vulnerabilities.
  • Execute risk evaluation procedures by reviewing evidence and documenting observations.
  • Identify control gaps and non-compliance issues, providing clear recommendations for disposition.
  • Contribute to status reporting and metrics tracking for ongoing risk activities.
  • Consult with internal subject matter experts to document risks and communicate findings to stakeholders.

Requirements

  • Must be based in Springfield or Boston, Massachusetts
  • 2+ years of experience in risk management or third-party risk assessments.
  • 2+ years of experience implementing metrics to track status and identify trends.
  • 2+ years of experience working in an enterprise GRC platform.
  • Proficiency with Excel import/export functions.
  • Strong written and verbal communication skills for interacting with technical and non-technical audiences.

Nice to have

  • Bachelor’s degree in technology, cybersecurity, risk management, or business.
  • 3+ years of experience in third-party risk, technology risk, or audit.
  • Familiarity with NIST, ISO 27001, or SOC 2 frameworks.
  • Experience with cloud/SaaS risk considerations and identity and access management.
  • Proficiency with SharePoint.

Culture & Benefits

  • Collaborative environment that values diverse perspectives.
  • Access to continuous learning, development, and internal networking.
  • Employee-led communities and forums for connection and inclusion.
  • Meaningful work with clear ownership and accountability.
  • Culture grounded in integrity and a future-focused mindset.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →