Third-Party Risk Consultant (Cybersecurity)
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Third-Party Risk Consultant (Cybersecurity): Executing third-party risk assessments and due diligence activities within the ETX organization with an accent on identifying inherent and residual risk exposure. Focus on evaluating system integrations, documenting control gaps, and ensuring compliance with industry frameworks like NIST and ISO 27001.
Location: Must be based in Springfield or Boston, Massachusetts
Salary: $86,200–$113,100
Company
is a purpose-driven financial services organization committed to long-term impact, integrity, and stewardship.
What you will do
- Analyze third-party services, data flows, and system integrations to identify risk exposure.
- Collaborate with issue management teams to track, communicate, and remediate identified vulnerabilities.
- Execute risk evaluation procedures by reviewing evidence and documenting observations.
- Identify control gaps and non-compliance issues, providing clear recommendations for disposition.
- Contribute to status reporting and metrics tracking for ongoing risk activities.
- Consult with internal subject matter experts to document risks and communicate findings to stakeholders.
Requirements
- Must be based in Springfield or Boston, Massachusetts
- 2+ years of experience in risk management or third-party risk assessments.
- 2+ years of experience implementing metrics to track status and identify trends.
- 2+ years of experience working in an enterprise GRC platform.
- Proficiency with Excel import/export functions.
- Strong written and verbal communication skills for interacting with technical and non-technical audiences.
Nice to have
- Bachelor’s degree in technology, cybersecurity, risk management, or business.
- 3+ years of experience in third-party risk, technology risk, or audit.
- Familiarity with NIST, ISO 27001, or SOC 2 frameworks.
- Experience with cloud/SaaS risk considerations and identity and access management.
- Proficiency with SharePoint.
Culture & Benefits
- Collaborative environment that values diverse perspectives.
- Access to continuous learning, development, and internal networking.
- Employee-led communities and forums for connection and inclusion.
- Meaningful work with clear ownership and accountability.
- Culture grounded in integrity and a future-focused mindset.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →