Senior Analyst, Third Party Risk Management

Job Title
Our client is seeking a Senior Analyst, Third Party Risk Management to join their team! This position is remote.



Core Responsibilities

• Assess and manage third-party risk exposure by supporting and enhancing Vendor Risk Management (VRM) practices, providing transparency into vendor-related security and compliance risks
• Support the day-to-day execution of Information Security and Third-Party Risk Assessments for existing and prospective vendors
• Document, organize, and track remediation activities, findings, and risk decisions resulting from vendor security reviews
• Collect, analyze, and organize vendor assessment data to support ongoing risk reporting, monitoring, and leadership visibility
• Identify opportunities for process improvements within the Vendor Risk Management Program and assist with the implementation and maturation of related controls and workflows
• Partner cross-functionally with Information Security, Legal, Procurement, Compliance, and other stakeholders to support broader enterprise risk initiatives
• Contribute to additional risk management activities as needed to support the broader Risk and Security teams
• Maintain awareness of emerging technologies and risk trends, including cloud, SaaS, mobile, and AI-enabled solutions

Required Skills/Experience (Must-Haves)

• 4+ years of professional experience in risk management, information security, third-party risk management, audit, compliance, or related fields
• 4+ years of hands-on experience reviewing vendors, systems, or solutions as part of an internal risk assessment, procurement, or governance program
• Practical experience working with one or more industry risk or regulatory frameworks
• Experience using vendor risk management or GRC tools
• Proven experience reviewing SOC reports, penetration testing results, security questionnaires, and other control attestations
• Experience managing or assessing operational risks across multiple lines of business, legal entities, and/or jurisdictions
• Strong relationship-building skills with the ability to partner effectively across technical and non-technical teams

Preferred Skills/Experience (Nice-to-Haves)

• Experience with AI applications such as Copilot and Gemini
• Ability to assess the potential risk of an escalated issue and use business skills to evaluate impact and alternatives
• Effective judgment, decision making, and critical thinking skills
• Adaptability to the changing landscape of regulatory compliance requirements

Key Competencies & Behaviors

• Analytical & Risk-Aware Thinking
• Cross-Functional Collaboration
• Continuous Improvement Mindset

Work Environment

• Location: Remote

Compensation & Benefits

• Pay Range: The approximate pay range for this position is between $26.00 and $38.00 . Please note that the pay range provided is a good faith estimate. Final compensation may vary based on factors including but not limited to background, knowledge, skills, and location. We comply with local wage minimums.
• Medical, Dental, & Vision Insurance Plans
• Employee-Owned Profit Sharing (ESOP)
• 401K offered

About KellyMitchell
At KellyMitchell, our culture is world class. We're movers and shakers! We don't mind a bit of friendly competition, and we reward hard work with unlimited potential for growth. This is an exciting opportunity to join a company known for innovative solutions and unsurpassed customer service. We're passionate about helping companies solve their biggest IT staffing & project solutions challenges. As an employee-owned, women-led organization serving Fortune 500 companies nationwide, we deliver expert service at a moment's notice.



Marketing Disclosure
By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from KellyMitchell and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy at