Third party risk analyst
Description:
Job Description
Robert Half is seeking a Third-Party Risk and Trust Analyst to join our dynamic Cybersecurity team in Redwood City, California. This is a long-term contract opportunity ideal for an entry-level to mid-level detail oriented with a passion for cybersecurity and risk management. The successful candidate will support third-party risk management and trust-building efforts, playing a critical role in assessing vendor risks, ensuring compliance with security standards, and addressing gaps in customer-facing processes such as RFPs and security questionnaires. We are looking for someone with practical experience in third-party risk management, a strong understanding of cloud security, and the ability to quickly adapt to evolving security and trust-related challenges.
Key Responsibilities Operational Oversight: Identify and address gaps in customer-facing processes, such as RFPs and security questionnaires, ensuring regular updates to maintain current best practices. Program Management: Collaborate with engineering and cross-functional teams to close identified gaps, drive security initiatives, and implement operational improvements to strengthen customer trust. Hands-On Execution: Directly support customer security inquiries, build credibility in third-party engagements, and coordinate with internal teams to resolve issues efficiently. Security Standards Leadership: Refresh and implement third-party risk management processes and security standards to meet evolving customer and industry expectationsCloud Security Expertise: Hands-on knowledge of cloud security concepts, solutions, and their implementation in industry practices. Third-Party Risk Management (TPRM): Experience evaluating and managing security practices of third-party vendors and understanding TPRM principles. Security and Compliance Knowledge: Familiarity with customer security questions, industry certifications, and compliance requirements. Adaptability: Proactive problem-solving skills with an ability to adjust to evolving industry frameworks and practices. Preferred Certification: Familiarity with AI-driven security measures and relevant certifications (SAFE AI Certification preferred). Must have's 3–4 years of practical experience in third-party risk management. Strong understanding of cloud security concepts, tools, and frameworks. Knowledge of security compliance standards and hands-on experience with vendor risk assessments. Ability to work in a hybrid model, with mandatory onsite presence on Tuesdays and Thursdays. AI certification is preferred.
Hybrid remote