Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Senior Vendor Security Risk Management Analyst

$106k - $152k

FM

Work Schedule This position requires on‑site work one day per week at our Corporate Headquarters and flexibility to be on‑site when needed based on the demands of the business. Relocation is not offered for this position. Position Summary FM is seeking a Senior Information Security Analyst with deep expertise in Third‑Party Risk Management (TPRM). You will play a critical role in protecting FM by assessing how external vendors, SaaS platforms, and cloud solutions interact with our systems and data. This high‑impact role where you expertise in cyber risk, vendor security, and cloud architecture will help shape business decisions, strengthen our security posture, and support innovation in a secure way. This includes reviewing both the vendor’s security control environment and the specific solution being implemented, with a focus on data handling, storage, and integration with internal systems. You will partner closely with business, technology, and procurement teams to identify risks and recommend practical, business‑aligned mitigation strategies. You will lead end‑to‑end cybersecurity risk assessments of third‑party vendors and solutions—going beyond standard due diligence to evaluate real‑world risk across systems, data, and integrations. Key Responsibilities Lead end‑to‑end third‑party solution risk assessments and vendor security reviews across the vendor lifecycle, including due diligence, onboarding, ongoing monitoring, and reassessments. Evaluate vendor security programs, control effectiveness, and governance, along with deep‑dive assessment of the specific product being implemented including solution architecture, data flows, and integration points. Identify and communicate inherent and residual cyber risks related to data protection, privacy, IAM, privileged access, system connectivity, and external attack surface exposure. Review and interpret security documentation, including SOC 1/SOC 2 reports, ISO 27001 certifications, audit reports, architecture diagrams, data flow diagrams, and technical configurations. Recommend practical risk mitigation strategies, including compensating controls, secure design changes, and contractual safeguards to support risk‑informed decisions. Partner with business, technology, procurement, and legal teams to support risk acceptance, exception management, and third‑party risk governance. Contribute to the evolution of FM’s third‑party risk management framework, methodology, and standards in alignment with NIST, ISO 27001, NYDFS, and other applicable regulatory expectations. Qualifications 5+ years of experience in cybersecurity, information security, or cyber risk, with a background in third‑party risk management (TPRM), IT risk, audit, incident response, or access management. Experience assessing vendor security posture in cloud (SaaS/PaaS) and enterprise environments. Technical Expertise Strong understanding of systems, networks, application architecture, cloud security, and secure system design across AWS, Azure, SaaS, PaaS, APIs, and enterprise integrations. Experience evaluating data flows, data classification, data protection, data governance, and secure data handling practices. Knowledge of IAM, SSO, federation, privileged access, cyber threats, vulnerabilities, and attack methodologies. Ability to interpret SOC 1, SOC 2, ISO certifications, and other third‑party assurance artifacts to identify control gaps and residual risk. Risk & Analysis Ability to identify, assess, and clearly communicate complex cyber risks, trade‑offs, and residual risk. Experience recommending practical, business‑aligned risk‑based mitigation strategies, including compensating controls and secure design changes. Strong analytical judgment, attention to detail, and risk‑based decision‑making. Collaboration & Communication Ability to translate technical findings into clear, business‑relevant insights and recommendations. Strong stakeholder management and partnership across business, technology, procurement, and legal teams. Collaborative, solutions‑focused mindset with strong influencing skills in a fast‑paced assessment environment. High degree of professional skepticism and curiosity when evaluating vendor claims and evidence. Ability to manage multiple priorities independently while maintaining quality and consistency of assessments. Tools & Certifications Proficiency with Microsoft Office tools. Relevant certifications such as CISSP, CISA, CSA, CISM, Security+, GIAC, CEH, or similar are strongly desired. Education Bachelor’s degree in information security, Computer Science, Information Technology, or related field required. An equivalent of relevant work experience will also be considered. The hiring range for this position is $106,000–$152,000. The final salary offer will vary based on geographic location, individual education, skills, and experience. The position is eligible to participate in FM’s comprehensive Total Rewards program that includes an incentive plan, medical, dental, and vision insurance, life and disability insurance, well‑being programs, a 401(k) and pension plan, career development opportunities, tuition reimbursement, flexible work, and time off, including vacation and sick time. FM is an Equal Opportunity Employer and is committed to attracting, developing, and retaining a diverse workforce. #J-18808-Ljbffr FM

Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Senior Vendor Security Risk Management Analyst in Johnston, RI vacancy
  • Centreville Bank is seeking a Vendor Management Analyst in Warwick, Rhode Island. This role supports the Third-Party Risk Management (TPRM) program by evaluating vendor risks, reviewing contracts, and maintaining documentation for compliance. Candidates should have a Bachelor... 
    Suggested

    Centreville Bank

    Warwick, RI
    5 days ago
  • FM is seeking a Senior Information Security Analyst to protect the organization through expert assessment of third-party vendor risks. This role requires leading risk assessments, evaluating vendor security programs, and formulating strategies in alignment with business... 
    Senior

    FM

    Johnston, RI
    2 days ago
  • As the Third Party Risk Sr Analyst at Citizens in Johnston, RI, you will manage vendor issues and quality assurance functions, ensuring adherence to company policies while assessing vendor control environments. You will evaluate third-party vendors, lead risk assessments... 
    Senior
    Local area

    Citizens

    Johnston, RI
    4 days ago
  • $60k - $90k

    Maximus is seeking a Risk, Quality, and Performance Analyst in Providence, RI. The role focuses on ensuring compliance with quality standards and performance...  ...5 years of experience in quality assurance and risk management, along with a relevant Bachelor's degree. The position... 
    Senior

    Maximus

    Providence, RI
    10 days ago
  •  ...Citizens Bank is seeking a Third Party Risk Sr Analyst responsible for managing vendor assessment reviews and ensuring adherence to company policies. This role involves close collaboration with business leaders to evaluate vendor risks effectively. Applicants should possess... 
    Senior
    Work at office
    Remote work

    Citizens Bank

    Providence, RI
    1 day ago
  • Citizens Bank is looking for a Third-Party Assurance Analyst in Johnston, Rhode Island. The role involves conducting Third Party Vendor Assessment reviews, managing vendor relationships, and providing assurance on risks related to customer and financial operations.... 
    Full time

    Citizens Bank

    Johnston, RI
    6 days ago
  • Description The Vendor Management Analyst is responsible for supporting the Bank’s Third-Party Risk Management (TPRM) Program within the Information Security department. This role evaluates the risk of...  ...Project Management, Finance, and senior leadership to ensure vendors... 
    Contract work
    For subcontractor

    Centreville Bank

    Warwick, RI
    5 days ago
  •  ...Job The Business Analyst serves as a critical bridge...  ...for business, risk, and product stakeholders...  ...teams (including Product Managers, Risk and Technology Partners...  ...Management Programs• Security Assessments and...  ...with the client's staff, vendors, and consultants, we deliver... 

    Harvard Partners

    Johnston, RI
    1 day ago
  •  ...Description As the Third Party Risk Sr Analyst , you will manage vendor issues, complete quality assurance functions...  ...Include Collaborating with senior management to influence key decisions...  ...controls. Applying experience in audit, security and regulatory frameworks including... 
    Senior
    Work at office
    Local area
    Remote work

    Citizens

    Johnston, RI
    3 days ago
  • $100k - $135k

    Raymond James is looking for a Credit Risk Analyst to evaluate credit worthiness and terms for loan approvals. Responsibilities include conducting credit risk assessments on loan portfolios, performing independent loan reviews, and analyzing financial statements to determine... 
    Senior
    Remote job

    Raymond James

    Providence, RI
    3 days ago
  • $36.53 - $46.63 per hour

    Appraisal Analyst III You will be a contributing member of the Collateral Risk Management Team. In this role you will make decisions on collateral as a function of Citizens...  ...Sr. Management. Communicates with appraisal vendors to obtain clarification and additional... 
    Senior
    Hourly pay
    Work at office
    Local area
    Monday to Friday
    Flexible hours

    Citizens

    Johnston, RI
    4 days ago
  • Centreville Bank is seeking a Vendor Management Analyst in West Warwick, RI. This role involves evaluating the risks of third-party vendors, conducting due diligence, supporting...  ...for growth within the Information Security department. #J-18808-Ljbffr Centreville Bank
    Contract work

    Centreville Bank

    West Warwick, RI
    4 days ago
  • $121k - $173k

     ...expertise are solely dedicated to property risk management and the resilience of its policyholder...  ...FM is seeking a Principal Information Security Analyst with deep expertise in cybersecurity...  .... Provide clear, concise updates to senior leadership and governance committees.... 
    Relocation
    Flexible hours
    1 day per week

    FM

    Johnston, RI
    2 days ago
  • $90k - $128k

    Senior Business Analyst - Commercial Banking / Treasury Products The Senior Business Analyst...  ...Product, Technology, Operations, Risk, and external vendors to translate product strategy into...  ...launch readiness for complex cash management capabilities. Job Summary The Senior... 
    Senior
    Local area
    Flexible hours

    Citizens

    Johnston, RI
    5 days ago
  • $79k - $95k

     ...Job Description The Fraud Risk Sr Analyst is accountable for monitoring and...  ...include evaluation of new information security tools and processes to enhance...  ...applications. Strong partnership with vendors and Product team effectively managing the fraud controls for new-... 
    Senior
    Work experience placement
    Work at office
    Local area
    Monday to Friday
    Flexible hours

    Citizens Bank

    Johnston, RI
    1 day ago
  • Senior Manager - Risk Management Providence, RI (Three days onsite, two days remote) 12+ Months Our client is seeking a proactive and detail-oriented...  ...multisource information to assess the risk exposure of vendors. Manage and review the State's policies to ensure... 
    Senior
    Work at office
    Remote work

    Cardinal Integrated

    Providence, RI
    4 days ago
  • $92.5k - $120k

     ...To support the continued growth of our Risk Advisory for State & Local Government ( practice...  ..., an opportunity has been created for a Senior Associate to join our nationally...  ...the application of controls to effectively manage risks. This position will provide hybrid/... 
    Senior
    Work experience placement
    Work at office
    Local area
    Remote work

    Cherry Bekaert

    Providence, RI
    3 days ago
  •  ...expertise are solely dedicated to property risk management and the resilience of its policyholder-...  ..., as well as contact with outside vendors is expected. Provide technical guidance...  ...including training as needed, to Methods Analysts who directly oversee creation and... 
    Senior
    Flexible hours

    FM

    Johnston, RI
    2 days ago
  • $60k - $90k

     ...Job Title and Information Risk, Quality, and Performance Analyst (Internal Job Profile Code: TCS015, P3, Band...  ...expectations. Coordinate with program management, operations, and cybersecurity...  ...Familiarity with federal information security and compliance environments sufficient... 
    Contract work

    MAXIMUS

    Providence, RI
    5 days ago
  • $120k - $140k

     ...What this job involves: The Senior Construction Project Manager role involves leading end-...  ...with clients, vendors, stakeholders, and internal...  ...potential liabilities and risk identification, management...  ...your personal information secure with appropriate level of... 
    Senior
    Daily paid
    For contractors
    Local area

    JLL

    Providence, RI
    4 days ago
  • $126.2k - $264.1k

     ...and at pace. This team comprises experienced project managers who work collaboratively with vendors and internal teams to ensure the successful execution...  ...regulatory compliance. Your ability to anticipate and mitigate risks to datacenter delivery will be crucial in maintaining... 
    Senior
    Temporary work
    For contractors
    Flexible hours

    Oracle

    Providence, RI
    3 days ago
  •  ...AAA Northeast is looking for a Business Systems Analyst II to bridge the gap between business needs and IT solutions. The role involves analyzing business processes, collaborating with stakeholders, and ensuring IT projects align with business objectives. Ideal candidates... 
    Senior

    AAA Northeast

    Providence, RI
    5 days ago
  • A leading IT systems integrator in Cranston, RI, is seeking a Business Analyst with 5-7 years of experience. The ideal candidate should have strong expertise in Agile Scrum and proven skills in requirements gathering for large-scale systems implementation. You will be responsible... 
    Senior

    USM

    Cranston, RI
    5 days ago
  • $97.5k - $199.5k

     ...facilities at scale and at pace. This team comprises experienced project managers, commissioning experts, and construction specialists who work...  ...providers to ensure timely delivery of milestones. # Risk Evaluation: analyze projects independently to evaluate the risk... 
    Senior
    Temporary work
    For contractors
    Flexible hours

    Oracle

    Providence, RI
    3 days ago
  • Citizens Bank is looking for an ETS Risk Analyst II to play a vital role in assessing technology and security risks. You will partner with Risk Managers for control monitoring, ensuring effectiveness and compliance with regulations. This position is ideal for an early-... 

    Citizens Bank

    Johnston, RI
    2 days ago
  •  ...Third-Party Assurance Analyst function adds value by...  ...function assurance on vendors, in relation to customer...  ...financial and reputational risks. We add value by...  ..., which will include: Managing relationships with our...  ...Applying experience in audit, security and regulatory... 
    Local area

    Citizens Bank

    Johnston, RI
    6 days ago
  • $143k - $243k

    A leading pharmacy benefit manager is seeking a Senior Principal Actuary to provide actuarial direction and thought leadership. This remote role requires a bachelor's degree in a relevant field and 10 years of experience in actuarial work, along with an ASA or FSA designation... 
    Senior
    Remote job

    Prime Therapeutics

    Providence, RI
    3 days ago
  •  ...Serco is seeking an Engineering Technical Senior Supervisor in Providence, RI. This...  ...engineering and installation teams for US Navy's security systems. Candidates must have at least 1...  ...in systems integration and project management. Benefits include health insurance, retirement... 
    Senior
    Remote work

    Serco

    Providence, RI
    1 day ago
  •  ...A leading financial services company is seeking a Senior Actuarial Analyst to develop and support a pricing and reserving framework. The role involves leading projects, communicating results to leadership, and mentoring entry-level analysts. Candidates should have 4+... 
    Senior
    Remote work

    Ally

    Providence, RI
    1 day ago
  • $175k - $250k

     ...Business Development Manager – Uncapped Commission | $175K–$250K OTE | Technology-Driven Security Solutions! ECAM is seeking an experienced...  ...helping organizations reduce risk, prevent loss, and maintain 24...  ...the credibility to engage senior leaders and the follow‑through... 
    Full time
    Local area
    Remote work

    Garda World Security

    Providence, RI
    6 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Senior Vendor Security Risk Management Analyst. Be the first to apply!