Current jobs related to ISG Third-Party Risk Analyst - Foster City - A Society Group, Inc.

  • Third-Party Risk Governance Specialist

    2 weeks ago

    Foster City, California, United States Bayone Full time

    Bayone is seeking a highly skilled Third-Party Risk Governance Specialist to join our team. As a key member of our InfoSec team, you will be responsible for assessing third-party risk as part of vendor evaluations.Key responsibilities include conducting periodic assessments based on the sensitivity of the vendor, data in scope, or prior security incidents....

  • Third Party Risk Management Associate

    2 weeks ago

    Jersey City, New Jersey, United States Sumitomo Mitsui Banking Corp Full time

    Role OverviewThe Third-Party Management Operations Associate will be a key member of our Third Party Management Operations team, working closely with business units throughout the SMBC America's Division to identify and manage risks associated with third-party service providers. This role will involve working with a team to support business units and vendors...

  • Associate Director, CUSO Third Party Risk Management

    1 month ago

    Jersey City, New Jersey, United States RBC Capital Markets, LLC Full time

    Job SummaryThe GRM Third Party Risk (TPR) team is accountable for RBC's enterprise-wide Third Party Risk management (TPRM) strategy and framework, enabling RBC to identify, measure, monitor, and mitigate the risks associated with third parties. TPR works with Senior Management across RBC's business platforms and functions, providing oversight and challenge...

  • Senior Model Risk Analyst

    1 week ago

    Jersey City, New Jersey, United States Dtcc Full time

    About the RoleWe are seeking a highly skilled Senior Model Risk Analyst to join our team at DTCC. As a key member of our Risk Management team, you will be responsible for overseeing enterprise-wide model risk management and supporting front-line units in managing model risk.Key ResponsibilitiesAssist with daily issue management process, including reviewing...

  • Senior Information Security Risk Analyst

    2 weeks ago

    Kansas City, Missouri, United States UMB Financial Corporation Full time

    Job SummaryAs a Senior Information Security Risk Analyst at UMB Financial Corporation, you will play a critical role in identifying and mitigating information security risks across the organization. This is a hybrid role, with a mix of on-site and remote work, and is open to qualified candidates within the US.Key Responsibilities:Collaborate with...

  • Risk Management Associate

    1 week ago

    Jersey City, New Jersey, United States Sumitomo Mitsui Banking Corporation Full time

    Job SummaryThe Third-Party Management Operations Associate will be joining our Third Party Management Operations team to work with business units throughout the SMBC America's Division to identify and manage the risks facing the organization through its use of third-party service providers.In this role, you will work with a team supporting business units...

  • Vendor Risk Associate

    2 months ago

    Jersey City, United States SMBC Group Full time

    Role Description The Third-Party Management Operations Associate will be joining our Third Party Management Operations team, which sits within the Procurement organization, to work with business units throughout the SMBC America’s Division to identify and manage the risks facing the organization through its use of third-party service providers. In...

  • Vendor Risk Management Specialist

    4 weeks ago

    Jersey City, New Jersey, United States SMBC Group Full time

    Role DescriptionThe Third-Party Risk Management Operations Associate will be joining the Third-Party Management Operations team, which sits within the Procurement organization, to work with business units throughout the SMBC America's Division to identify and manage the risks facing the organization through its use of third-party service providers. In this...

  • Vendor Risk Management Specialist

    1 month ago

    Jersey City, New Jersey, United States SMBC Group Full time

    Role OverviewThe Third-Party Risk Management Operations Associate will be joining our Third-Party Management Operations team, which sits within the Procurement organization, to work with business units throughout the SMBC America's Division to identify and manage the risks facing the organization through its use of third-party service providers.Key...

  • Fleet Operations Business Analyst

    6 days ago

    Foster City, California, United States Mindlance Full time

    Fleet Operations Business Analyst Job DescriptionAt Mindlance, we are seeking a highly skilled Fleet Operations Business Analyst to join our Sales Analytics Operations department. This role will report to the Sr. Manager, U.S. Fleet Operations.**Job Summary**The primary role of the Fleet Operations Business Analyst is to analyze the performance of the...

  • Cybersecurity Analyst

    1 week ago

    Jersey City, New Jersey, United States BetMGM Full time

    About the RoleBetMGM is seeking a highly skilled Cybersecurity Analyst to join our Vendor Assessment team. As a key member of our cybersecurity team, you will be responsible for identifying, quantifying, and mitigating risks to the organization from third-party vendor relationships.You will work closely with our Cybersecurity Manager and BetMGM InfoSec team...

  • Model Risk Gov Senior Analyst

    4 weeks ago

    Jersey City, United States The Depository Trust & Clearing Corporation Full time

    Are you ready to make an impact at DTCC?Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We are committed to helping our employees grow and succeed. We believe that you have the skills...

  • Senior Information Security Risk Analyst

    6 days ago

    Kansas City, Missouri, United States UMB Financial Corporation Full time

    About the Role:The Sr. Information Security Risk Analyst will be responsible for supporting UMB's Information Security Program to ensure the organization is able to address rapidly changing threats, technologies, and business conditions.This role will work closely with UMB's enterprise technology and information security teams to ensure data protection...

  • Production Analyst

    1 month ago

    Universal City, California, United States Studio Distribution Services Full time

    Job Title: MRP Production AnalystStudio Distribution Services is seeking a highly skilled MRP Production Analyst to join our team. As a key member of our production team, you will be responsible for actioning the Material Requirements Planning (MRP) process, supplying production orders to third-party manufacturing partners, and ensuring accurate and timely...

  • Market Risk Analyst

    2 weeks ago

    new york city, United States JCW Full time

    Our client is a growing bank who are seeking a skilled Liquidity and Market Risk Analyst to support their expanding operations.Role Overview:As a Treasury and Market Risk Analyst, you will play a crucial role in managing interest rate risk, liquidity risk, and balance sheet management. You will analyze market trends, assess risk exposure, and contribute to...

  • Quantitative Risk Analyst

    2 weeks ago

    Oklahoma City, Oklahoma, United States SitusAMC Full time

    About SitusAMCSitusAMC is a leading provider of real estate and mortgage solutions, empowering businesses to transform their operations and drive growth. Our team of experts is dedicated to delivering innovative solutions that meet the evolving needs of the industry.Job SummaryWe are seeking a highly skilled Quantitative Risk Analyst to join our team. As a...

  • Quantitative Finance Risk Analyst

    5 days ago

    Jersey City, New Jersey, United States Bank of America Full time

    **Job Title:** Quantitative Finance Risk Analyst**Job Summary:**We are seeking a highly skilled Quantitative Finance Risk Analyst to join our team at Bank of America. As a Quantitative Finance Risk Analyst, you will play a critical role in supporting the production of market risk and counterparty risk models.**Key Responsibilities:**Provide support for the...

  • Sr. Cybersecurity Analyst, Vendor Assessment

    1 month ago

    Atlantic City, United States BetMGM Full time

    About Us We are BetMGM. We are revolutionizing sports betting and online gaming in the United States. We are a partnership between two powerhouse organizations-MGM Resorts International and Entain Group. You know our name through our exciting portfolio of brands including BetMGM Sportsbook, Borgata online, Party Casino and Party Poker. We aim to bring our...

  • Market Risk Business Analyst

    1 month ago

    Jersey City, New Jersey, United States Saxon Global Full time

    Market Risk Business AnalystWe are seeking a highly skilled Market Risk Business Analyst to join our team at Saxon Global. As a Market Risk Business Analyst, you will play a critical role in helping our business users review and draft Business Requirements Documents (BRDs) and working closely with market risk managers to ensure that our risk management...

  • Credit Risk Analyst

    1 month ago

    Oklahoma City, Oklahoma, United States Fidelity Bank Full time

    Credit Analyst Job OverviewFidelity Bank's Credit Administration team plays a vital role in ensuring the safety and soundness of our loan portfolio. As a Credit Analyst, you will be responsible for analyzing and documenting risk components related to loan requests from customers, spreading and analyzing financial statements, preparing loan approval reports,...

ISG Third-Party Risk Analyst

3 months ago

Foster City, United States A Society Group, Inc. Full time
Job DescriptionJob Description

ISG Third-Party Risk Analyst

On-Site in Foster City

We are seeking a highly skilled Information Security Governance Third-Party Risk Analyst who will assess third-party risk as part of vendor evaluations. Additionally, the analyst will conduct periodic assessments based on the sensitivity of the vendor, data in scope, or prior security incidents. This position requires a strong understanding of information security frameworks, risk management practices, and excellent analytical skills.


In this role you will be engaged in the following areas:

  • Vendor Risk Assessment
    • Perform comprehensive third-party risk assessments at the point of engagement.
    • Evaluate vendors' information security controls, operational practices, and data privacy measures.
  • Periodic Reviews
    • Conduct periodic assessments of third-party vendors based on the sensitivity of the vendor.
    • Assess the data involved or any prior security incidents.
    • Ensure continuous monitoring and reassessment of vendor risk profiles.
  • Risk Mitigation
    • Identify, analyze, and prioritize risks associated with third-party vendors.
    • Work with vendors and internal stakeholders to develop and implement risk mitigation strategies.
  • Compliance and Reporting
    • Ensure compliance with relevant information security standards and regulatory requirements (e.g., NIST CSF, GDPR, ISO/IEC 27001).
    • Provide clear and high-quality risk reports with guidance and recommendations to senior business owners.
  • Collaboration and Communication
    • Develop and maintain strong working relationships with business areas, IT teams, and vendors.
    • Advise on security requirements and best practices.
  • Data Analysis and Reporting
    • Perform data analyses and generate reports on third-party risk.
    • Track and communicate overall program performance.
    • Ensure timely completion of program milestones.
  • Contractual Reviews
    • Support contractual reviews for new and existing suppliers.
    • Ensure security requirements are met in supplier contracts.
  • Process Improvement
    • Participate in the development and optimization of vendor risk management processes and procedures.
    • Improve overall vendor risk posture.

Requirements

Qualifications

Experience:

  • 6+ years of experience in conducting security control assessments or audits.
  • 2+ years of experience in developing or managing security awareness programs.
  • 6+ years experience with information security standards and privacy laws (e.g., ISO 27001, NIST, HIPAA).

Skills / Knowledge / Abilities:

  • Strong knowledge of GRC frameworks and tools.
  • Proficiency in third party risk assessment methodologies and tools.
  • Conceptual understanding of the following technologies:
    • LLMs (Large Language Models), AI (artificial intelligence), ML (machine learning)
  • Excellent analytical and critical thinking skills.
  • Strong written and verbal communication skills.
  • Ability to work collaboratively in a dynamic, fast-paced environment.

Education:

  • Bachelor’s degree in Computer Science, Information Systems, Business, or a related field, or equivalent relevant experience.

Certifications (beneficial):

  • Professional certifications such as CISA, CISM, CRISC, CISSP.

Benefits

  • Health Care Plan (Medical, Dental & Vision)
  • Life Insurance (Basic, Voluntary & AD&D)
  • Paid Time Off (Vacation, Sick & Public Holidays)
  • Training & Development
  • Retirement Plan (401k, IRA)