Full-Time Third Party Risk Analyst

UpGuard's Mission: Protect the world's data. We help organizations find, acknowledge, and remediate cyber risk.

Why this role? Expanding our third-party security managed service. We are scaling this offering to meet growing demand.

Job Summary: As a Third-Party Risk Analyst, you will:

• Collaborate with customers on identifying, measuring, and managing third-party risks.
• Translate complex technical findings into clear, actionable risk assessment reports.
• Help scope, price, and deliver customized solutions.
• Stay up-to-date with industry standards and emerging risks.

Responsibilities:

• Translate technical aspects into understandable reports.
• Partner with customers on third-party risks and controls.
• Assist with reports, templates, and scorecards.
• Collaborate with sales, customer success, and other teams.
• Stay updated on financial, operational, and regulatory information.
• Support professional services projects.

Requirements:

• Strong knowledge of security frameworks (e.g., ISO 27001, PCI DSS, NIST CSF, HIPAA).
• Understanding of cybersecurity risk management.
• 2-3+ years of experience in risk management, third-party risk, auditing, consulting, or equivalent roles.
• Experience with third-party risk management lifecycle.
• Proven ability to write Risk Assessments.
• Excellent communication skills.
• Strong customer service skills.
• Ability to juggle multiple priorities.

Preferred Qualifications:

• Bachelor's degree in Information Technology or related field.
• Relevant professional certifications (e.g., CISM, CISA, CISSP, CRISC, CTPRP).
• Experience performing Third-Party Security Risk Assessments.
• Interest in cybersecurity and emerging risks.

What is the last date for applying to the job?

Which countries are accepted for this remote job?