Third Party Governance, Risk and Compliance (GRC) Analyst - Hybrid

Los Angeles, CA Posted Jul 19, 2025 0 views

Compensation

Compensation not disclosed

This employer didn't list pay. Model a likely range with the calculator.

Model this offer in the calculator

Posting language

Tone
Neutral
Subjectivity
0.00

Job description

Job Type: ContractJob Category: ITJob Description Job Summary: We are seeking a detail-orientedThird-Party GRC Analystto support the assessment, monitoring, and governance of third-party risk across the organization. This role is responsible for evaluating vendor security practices, ensuring compliance with internal and regulatory requirements, and supporting the enterprise’s risk management lifecycle. Key Responsibilities: • Conductthird-party risk assessmentsfor new and existing vendors, including security questionnaires, documentation review, and risk scoring. • Collaborate with Legal, Procurement, InfoSec, and Business Units to ensure compliance withvendor governance policies. • Monitor ongoing vendor risks, including SLA adherence, data privacy, financial stability, and regulatory compliance. • Track and escalate vendor risks, issues, and remediation plans using GRC platforms (e.g., Archer, ServiceNow, OneTrust). • Assist in defining and enhancing third-party risk frameworks, processes, and controls. • Maintain vendor inventory and ensure alignment with compliance requirements (e.g.,SOC 2, ISO 27001, NIST, GDPR, HIPAA). • Support audits and reporting activities related to third-party and supply chain risk. Qualifications: • Bachelor’s degree in Cybersecurity, Information Technology, Business, or related field. • 3–5 years of experience inthird-party risk management,GRC, orinformation securityroles. • Knowledge of vendor due diligence processes, risk frameworks, and compliance standards. • Familiarity with GRC platforms (Archer, LogicGate, OneTrust, etc.). • Strong analytical, communication, and documentation skills. ✅Preferred Certifications: • CISA, CISM, CRISC, CISSP, or related certifications. • Experience working in regulated industries (finance, healthcare, pharmaceuticals). Hashtags: #ThirdPartyRisk, #GRCAnalyst, #RiskAndCompliance, #VendorRisk, #ITCompliance, #CyberRisk, #GRCJobs, #HybridWork, #RiskManagement, #ThirdPartyGovernance, #SecurityAnalyst, #DataPrivacy, #SOC2Compliance, #VendorGovernance, #CyberSecurityJobs, #GovernanceRiskCompliance, #NISTFramework, #InfoSecCareers, #HIPAACompliance, #ISO27001, #SupplyChainRisk, #ComplianceCareers, #RegulatoryCompliance, #OneTrust, #ServiceNowGRC, #EnterpriseRisk, #VendorAssessment, #TechnologyRisk, #ITRiskManagement, #SecurityGovernance Required SkillsBusiness Continuity Analyst Data Analyst InfoSec Analyst

Related roles

Similar jobs