Senior Vendor Security Risk Management Analyst
$106k - $152kFM
Work Schedule This position requires on‑site work one day per week at our Corporate Headquarters and flexibility to be on‑site when needed based on the demands of the business. Relocation is not offered for this position. Position Summary FM is seeking a Senior Information Security Analyst with deep expertise in Third‑Party Risk Management (TPRM). You will play a critical role in protecting FM by assessing how external vendors, SaaS platforms, and cloud solutions interact with our systems and data. This high‑impact role where you expertise in cyber risk, vendor security, and cloud architecture will help shape business decisions, strengthen our security posture, and support innovation in a secure way. This includes reviewing both the vendor’s security control environment and the specific solution being implemented, with a focus on data handling, storage, and integration with internal systems. You will partner closely with business, technology, and procurement teams to identify risks and recommend practical, business‑aligned mitigation strategies. You will lead end‑to‑end cybersecurity risk assessments of third‑party vendors and solutions—going beyond standard due diligence to evaluate real‑world risk across systems, data, and integrations. Key Responsibilities Lead end‑to‑end third‑party solution risk assessments and vendor security reviews across the vendor lifecycle, including due diligence, onboarding, ongoing monitoring, and reassessments. Evaluate vendor security programs, control effectiveness, and governance, along with deep‑dive assessment of the specific product being implemented including solution architecture, data flows, and integration points. Identify and communicate inherent and residual cyber risks related to data protection, privacy, IAM, privileged access, system connectivity, and external attack surface exposure. Review and interpret security documentation, including SOC 1/SOC 2 reports, ISO 27001 certifications, audit reports, architecture diagrams, data flow diagrams, and technical configurations. Recommend practical risk mitigation strategies, including compensating controls, secure design changes, and contractual safeguards to support risk‑informed decisions. Partner with business, technology, procurement, and legal teams to support risk acceptance, exception management, and third‑party risk governance. Contribute to the evolution of FM’s third‑party risk management framework, methodology, and standards in alignment with NIST, ISO 27001, NYDFS, and other applicable regulatory expectations. Qualifications 5+ years of experience in cybersecurity, information security, or cyber risk, with a background in third‑party risk management (TPRM), IT risk, audit, incident response, or access management. Experience assessing vendor security posture in cloud (SaaS/PaaS) and enterprise environments. Technical Expertise Strong understanding of systems, networks, application architecture, cloud security, and secure system design across AWS, Azure, SaaS, PaaS, APIs, and enterprise integrations. Experience evaluating data flows, data classification, data protection, data governance, and secure data handling practices. Knowledge of IAM, SSO, federation, privileged access, cyber threats, vulnerabilities, and attack methodologies. Ability to interpret SOC 1, SOC 2, ISO certifications, and other third‑party assurance artifacts to identify control gaps and residual risk. Risk & Analysis Ability to identify, assess, and clearly communicate complex cyber risks, trade‑offs, and residual risk. Experience recommending practical, business‑aligned risk‑based mitigation strategies, including compensating controls and secure design changes. Strong analytical judgment, attention to detail, and risk‑based decision‑making. Collaboration & Communication Ability to translate technical findings into clear, business‑relevant insights and recommendations. Strong stakeholder management and partnership across business, technology, procurement, and legal teams. Collaborative, solutions‑focused mindset with strong influencing skills in a fast‑paced assessment environment. High degree of professional skepticism and curiosity when evaluating vendor claims and evidence. Ability to manage multiple priorities independently while maintaining quality and consistency of assessments. Tools & Certifications Proficiency with Microsoft Office tools. Relevant certifications such as CISSP, CISA, CSA, CISM, Security+, GIAC, CEH, or similar are strongly desired. Education Bachelor’s degree in information security, Computer Science, Information Technology, or related field required. An equivalent of relevant work experience will also be considered. The hiring range for this position is $106,000–$152,000. The final salary offer will vary based on geographic location, individual education, skills, and experience. The position is eligible to participate in FM’s comprehensive Total Rewards program that includes an incentive plan, medical, dental, and vision insurance, life and disability insurance, well‑being programs, a 401(k) and pension plan, career development opportunities, tuition reimbursement, flexible work, and time off, including vacation and sick time. FM is an Equal Opportunity Employer and is committed to attracting, developing, and retaining a diverse workforce. #J-18808-Ljbffr FM
- Centreville Bank is seeking a Vendor Management Analyst in Warwick, Rhode Island. This role supports the Third-Party Risk Management (TPRM) program by evaluating vendor risks, reviewing contracts, and maintaining documentation for compliance. Candidates should have a Bachelor...Suggested
- FM is seeking a Senior Information Security Analyst to protect the organization through expert assessment of third-party vendor risks. This role requires leading risk assessments, evaluating vendor security programs, and formulating strategies in alignment with business...Senior
- As the Third Party Risk Sr Analyst at Citizens in Johnston, RI, you will manage vendor issues and quality assurance functions, ensuring adherence to company policies while assessing vendor control environments. You will evaluate third-party vendors, lead risk assessments...SeniorLocal area
$60k - $90k
Maximus is seeking a Risk, Quality, and Performance Analyst in Providence, RI. The role focuses on ensuring compliance with quality standards and performance... ...5 years of experience in quality assurance and risk management, along with a relevant Bachelor's degree. The position...Senior- ...Citizens Bank is seeking a Third Party Risk Sr Analyst responsible for managing vendor assessment reviews and ensuring adherence to company policies. This role involves close collaboration with business leaders to evaluate vendor risks effectively. Applicants should possess...SeniorWork at officeRemote work
- Citizens Bank is looking for a Third-Party Assurance Analyst in Johnston, Rhode Island. The role involves conducting Third Party Vendor Assessment reviews, managing vendor relationships, and providing assurance on risks related to customer and financial operations....Full time
- Description The Vendor Management Analyst is responsible for supporting the Bank’s Third-Party Risk Management (TPRM) Program within the Information Security department. This role evaluates the risk of... ...Project Management, Finance, and senior leadership to ensure vendors...Contract workFor subcontractor
- ...Job The Business Analyst serves as a critical bridge... ...for business, risk, and product stakeholders... ...teams (including Product Managers, Risk and Technology Partners... ...Management Programs• Security Assessments and... ...with the client's staff, vendors, and consultants, we deliver...
- ...Description As the Third Party Risk Sr Analyst , you will manage vendor issues, complete quality assurance functions... ...Include Collaborating with senior management to influence key decisions... ...controls. Applying experience in audit, security and regulatory frameworks including...SeniorWork at officeLocal areaRemote work
$100k - $135k
Raymond James is looking for a Credit Risk Analyst to evaluate credit worthiness and terms for loan approvals. Responsibilities include conducting credit risk assessments on loan portfolios, performing independent loan reviews, and analyzing financial statements to determine...SeniorRemote job$36.53 - $46.63 per hour
Appraisal Analyst III You will be a contributing member of the Collateral Risk Management Team. In this role you will make decisions on collateral as a function of Citizens... ...Sr. Management. Communicates with appraisal vendors to obtain clarification and additional...SeniorHourly payWork at officeLocal areaMonday to FridayFlexible hours- Centreville Bank is seeking a Vendor Management Analyst in West Warwick, RI. This role involves evaluating the risks of third-party vendors, conducting due diligence, supporting... ...for growth within the Information Security department. #J-18808-Ljbffr Centreville BankContract work
$121k - $173k
...expertise are solely dedicated to property risk management and the resilience of its policyholder... ...FM is seeking a Principal Information Security Analyst with deep expertise in cybersecurity... .... Provide clear, concise updates to senior leadership and governance committees....RelocationFlexible hours1 day per week$90k - $128k
Senior Business Analyst - Commercial Banking / Treasury Products The Senior Business Analyst... ...Product, Technology, Operations, Risk, and external vendors to translate product strategy into... ...launch readiness for complex cash management capabilities. Job Summary The Senior...SeniorLocal areaFlexible hours$79k - $95k
...Job Description The Fraud Risk Sr Analyst is accountable for monitoring and... ...include evaluation of new information security tools and processes to enhance... ...applications. Strong partnership with vendors and Product team effectively managing the fraud controls for new-...SeniorWork experience placementWork at officeLocal areaMonday to FridayFlexible hours- Senior Manager - Risk Management Providence, RI (Three days onsite, two days remote) 12+ Months Our client is seeking a proactive and detail-oriented... ...multisource information to assess the risk exposure of vendors. Manage and review the State's policies to ensure...SeniorWork at officeRemote work
$92.5k - $120k
...To support the continued growth of our Risk Advisory for State & Local Government ( practice... ..., an opportunity has been created for a Senior Associate to join our nationally... ...the application of controls to effectively manage risks. This position will provide hybrid/...SeniorWork experience placementWork at officeLocal areaRemote work- ...expertise are solely dedicated to property risk management and the resilience of its policyholder-... ..., as well as contact with outside vendors is expected. Provide technical guidance... ...including training as needed, to Methods Analysts who directly oversee creation and...SeniorFlexible hours
$60k - $90k
...Job Title and Information Risk, Quality, and Performance Analyst (Internal Job Profile Code: TCS015, P3, Band... ...expectations. Coordinate with program management, operations, and cybersecurity... ...Familiarity with federal information security and compliance environments sufficient...Contract work$120k - $140k
...What this job involves: The Senior Construction Project Manager role involves leading end-... ...with clients, vendors, stakeholders, and internal... ...potential liabilities and risk identification, management... ...your personal information secure with appropriate level of...SeniorDaily paidFor contractorsLocal area$126.2k - $264.1k
...and at pace. This team comprises experienced project managers who work collaboratively with vendors and internal teams to ensure the successful execution... ...regulatory compliance. Your ability to anticipate and mitigate risks to datacenter delivery will be crucial in maintaining...SeniorTemporary workFor contractorsFlexible hours- ...AAA Northeast is looking for a Business Systems Analyst II to bridge the gap between business needs and IT solutions. The role involves analyzing business processes, collaborating with stakeholders, and ensuring IT projects align with business objectives. Ideal candidates...Senior
- A leading IT systems integrator in Cranston, RI, is seeking a Business Analyst with 5-7 years of experience. The ideal candidate should have strong expertise in Agile Scrum and proven skills in requirements gathering for large-scale systems implementation. You will be responsible...Senior
$97.5k - $199.5k
...facilities at scale and at pace. This team comprises experienced project managers, commissioning experts, and construction specialists who work... ...providers to ensure timely delivery of milestones. # Risk Evaluation: analyze projects independently to evaluate the risk...SeniorTemporary workFor contractorsFlexible hours- Citizens Bank is looking for an ETS Risk Analyst II to play a vital role in assessing technology and security risks. You will partner with Risk Managers for control monitoring, ensuring effectiveness and compliance with regulations. This position is ideal for an early-...
- ...Third-Party Assurance Analyst function adds value by... ...function assurance on vendors, in relation to customer... ...financial and reputational risks. We add value by... ..., which will include: Managing relationships with our... ...Applying experience in audit, security and regulatory...Local area
$143k - $243k
A leading pharmacy benefit manager is seeking a Senior Principal Actuary to provide actuarial direction and thought leadership. This remote role requires a bachelor's degree in a relevant field and 10 years of experience in actuarial work, along with an ASA or FSA designation...SeniorRemote job- ...Serco is seeking an Engineering Technical Senior Supervisor in Providence, RI. This... ...engineering and installation teams for US Navy's security systems. Candidates must have at least 1... ...in systems integration and project management. Benefits include health insurance, retirement...SeniorRemote work
- ...A leading financial services company is seeking a Senior Actuarial Analyst to develop and support a pricing and reserving framework. The role involves leading projects, communicating results to leadership, and mentoring entry-level analysts. Candidates should have 4+...SeniorRemote work
$175k - $250k
...Business Development Manager – Uncapped Commission | $175K–$250K OTE | Technology-Driven Security Solutions! ECAM is seeking an experienced... ...helping organizations reduce risk, prevent loss, and maintain 24... ...the credibility to engage senior leaders and the follow‑through...Full timeLocal areaRemote work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Vendor Security Risk Management Analyst. Be the first to apply!
- senior business analyst contract Johnston, RI
- fiserv business analyst Johnston, RI
- configuration management analyst Johnston, RI
- business analyst law firm Johnston, RI
- business analyst healthcare Johnston, RI
- business analyst Johnston, RI
- public sector business analyst Johnston, RI
- business strategy analyst Johnston, RI
- management analyst Johnston, RI
- records management analyst Johnston, RI

