CrawlJobs Logo

Third Party Risk Analyst

onepay.com Logo

OnePay

Location Icon

Location:
United States

Category Icon
Category:
Finance

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

125000.00 - 190000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

As a TPRM (Third Party Risk) Analyst at OnePay, you will play a critical role in safeguarding our ecosystem from third-party security risks. You’ll assess the posture of high-risk vendors, review security attestations and contracts, and ensure compliance with our audit and regulatory standards. Your work will directly impact our ability to prevent breaches and maintain customer trust!

Job Responsibility:

  • Conduct vendor risk reviews and evaluate third-party attestations such as SOC 2, ISO 2700x, and other security certifications
  • Analyze vendor contracts and identify potential risk clauses or data security implications
  • Support annual high-risk vendor audits and maintain documentation to meet compliance requirements
  • Collaborate cross-functionally with Legal, Procurement, Engineering, and Compliance teams to assess risk exposure and mitigation plans
  • Provide technical insight into vendor integrations, authentication, and infrastructure security controls

Requirements:

  • 5–8+ years of experience in information security, vendor risk management, or related technical risk roles
  • Strong understanding of security frameworks and certifications (SOC 2, ISO 2700x, NIST, etc.)
  • Familiarity with authentication, disaster recovery, and infrastructure security concepts
  • Ability to interpret and challenge vendor-provided attestations and control summaries
  • Comfort reviewing contracts and identifying clauses impacting data handling or access control
  • Excellent communication and analytical skills, with the ability to ask critical questions and present findings clearly
  • Drive and proactivity – everyone here is a builder and executor
What we offer:

Offers Equity

Additional Information:

Job Posted:
February 21, 2026

Employment Type:
Fulltime
Work Type:
Remote work
Icon
OnePay - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Third Party Risk Analyst

Third Party Risk Analyst

The Operational Risk Sr Analyst is a seasoned professional role within Citi’s CO...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of relevant experience in Compliance, Risk and Control or supplier/third party management
  • Strong written and verbal communication skills
  • Experience leading cross functional meetings and discussions
  • High level of attention to detail
  • Ability to break down complex problems to drive solutions
  • Ability to exercise sound, timely and independent judgment
  • Proficiency with Microsoft Office products
Job Responsibility
Job Responsibility
  • Review, assess and act on results of third party assessments/controls
  • Partner with the TPU to review and respond to the results of third party risk management activities
  • Develop, document and update Citi’s Third Party Exit Strategy Plans
  • Engage the Third Party and Business to monitor and report supplier complaints
  • Collaborate with the Issues Management team
  • Assess and escalate any third party issues identified
  • Support the production and maintenance of Third Party business monitoring metrics/scorecards
  • Maintains third party systems of record
  • Partner with Procurement and BAO(s) to ensure all contract documents are complete, up-to-date and accurate
  • Provide polished content for USPB CAO CTPRO’s various stakeholder/executive communications and decks
What we offer
What we offer
  • Extensive on-the-job training
  • Exposure to senior leaders
  • Traditional learning opportunities
  • Volunteerism opportunities
  • Fulltime
Read More
Arrow Right

Third-Party Risk Analyst

As a Third-Party Risk Analyst, you will be responsible for evaluating, monitorin...
Location
Location
United States , Baltimore
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Risk, Business, Business Technology, Cybersecurity, or a related field
  • 2+ years of experience in third-party risk management, vendor management, procurement, internal audit
  • Strong understanding of third-party risk management principles, methodologies, and best practices
  • Detail-oriented and organized, with the ability to manage multiple priorities and deadlines in a fast-paced environment
  • Proficiency in using risk management tools, software, and technologies to support third-party risk assessment and monitoring activities
  • Excellent analytical, problem-solving, and critical-thinking skills, with the ability to assess complex situations and make informed risk-based decisions
  • Effective communication and interpersonal skills, with the ability to collaborate with stakeholders at all levels of the organization
Job Responsibility
Job Responsibility
  • Conduct comprehensive risk assessments of third-party vendors and service providers
  • Review and analyze third-party contracts, agreements, and security documentation
  • Develop and implement risk mitigation strategies and action plans
  • Monitor and track third-party risk indicators
  • Collaborate with internal audit, compliance, and information security teams
  • Collaborate with procurement, legal, and business units
  • Conduct periodic reviews and audits of third-party vendors
  • Provide regular reporting and updates to senior management, the board of directors, and other stakeholders
  • Stay informed about industry trends, emerging risks, and best practices in third-party risk management
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • Eligibility to enroll in company 401(k) plan
  • Fulltime
Read More
Arrow Right

Third Party Management Risk Senior Analyst

Shape your career with Citi in Dublin. By joining Citi, you will become part of ...
Location
Location
Ireland , Dublin
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Relevant work experience
  • Outsourcing and Third Party regulatory policies and procedures knowledge a distinct advantage
  • Excellent verbal and written communication skills
  • Customer focused with excellent Interpersonal skills and ability to work well in a team environment collaborating across diverse groups
  • Articulate minute taking and follow up on all action points in a decision making committee or side meeting
  • Requires good analytical skills in order to filter, prioritize and validate potentially complex and dynamic material from multiple sources
  • Demonstrated understanding of operational risk and gap identification
  • Bachelor’s/University degree or equivalent experience
  • Ability to prioritize and manage multiple projects simultaneously
  • Ability to present a compelling case to influence others where appropriate
Job Responsibility
Job Responsibility
  • Participates in the application of Third Party risk policies, to all business and functions across Citi Europe plc
  • Required to turn the data into visual reports in PowerPoint that clearly report on any concerns found with the data
  • Minute taking of committee and internal governance meetings with second line of defence
  • Contributes to risk assessments and drives actions to address the root causes that persistently lead to operational risk losses by challenging both historical and proposed practices
  • Provides governance and oversight may include (not limited to) technology operational risk, risk for example
  • Evaluates the control environment by ensuring appropriate controls are in place
  • Coordinates audits, examinations, and deliverable requirements from internal and external reviewers by supporting coordinating activities
  • Ensures project completion, special assignments, and other ad hoc activities as required
  • Ensures the Operations Team is in compliance with all regulatory policies and procedures
What we offer
What we offer
  • Competitive base salary (which is annually reviewed)
  • Business casual workplace
  • Hybrid working model (up to 2 days working at home per week)
  • Additional benefits that support you (and your family) to be well, live well and save well
  • Fulltime
Read More
Arrow Right

Cybersecurity Third-Party Risk Analyst

We are seeking a detail-oriented and security-conscious Cybersecurity Third-Part...
Location
Location
United States , Tempe
Salary
Salary:
Not provided
https://www.circlek.com Logo
Circle K
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in cybersecurity, information technology, risk management, or a related field
  • 2-4 years of experience in cybersecurity risk assessment, vendor risk management, or a similar role
  • Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001, SOC 2, CIS, GDPR, HIPAA)
  • Familiarity with third-party risk management platforms and security assessment tools
  • Ability to analyze security reports and communicate risk findings effectively
  • Strong problem-solving skills and attention to detail
  • Excellent verbal and written communication skills.
Job Responsibility
Job Responsibility
  • Conduct comprehensive security assessments of third-party vendors to identify potential risks and vulnerabilities
  • Evaluate vendor security policies, procedures, and controls to ensure compliance with company and industry standards
  • Develop and maintain third-party cybersecurity risk management (TPCRM) frameworks, policies, and procedures
  • Work closely with procurement, legal, and cybersecurity compliance teams to integrate security requirements into vendor contracts
  • Monitor vendor security performance using automated tools, questionnaires, and periodic audits
  • Stay updated on cybersecurity threats, regulatory requirements, and best practices for third-party risk management
  • Collaborate with internal teams to address security concerns related to third-party vendors
  • Maintain foundational documentation related to the third-party process
  • Provide recommendations and remediation guidance to vendors with identified security gaps.
Read More
Arrow Right

Senior Third-Party Security Risk Analyst

As a Senior Third-Party Security Risk Specialist at Ledger, you will play a vita...
Location
Location
France , Paris
Salary
Salary:
Not provided
https://www.ledger.com Logo
Ledger
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master degree in Information Security, Cybersecurity, or a related field
  • 5+ years of progressive experience in third-party risk management, with a strong background in audit, risk management, compliance, or a related control function within a complex organization
  • Proven project management skills with the ability to manage complex, cross-functional projects and maintain comprehensive documentation
  • In-depth knowledge of security frameworks and standards (e.g., ISO 27001, NIST Cybersecurity Framework) and experience in applying them to third-party risk management and regulatory requirements
  • Excellent analytical and problem-solving skills with a focus on identifying root causes and developing effective solutions
  • Strong communication and interpersonal skills, including the ability to influence and negotiate with vendors and stakeholders at all levels
Job Responsibility
Job Responsibility
  • Conduct comprehensive security assessments of third-party vendors, including reviewing their security policies, procedures, and controls
  • Proactively identify and evaluate potential security/privacy risks associated with a particular focus on those that could impact Ledger's reputation, financial stability, and customer trust
  • Develop and implement risk mitigation strategies to address identified vulnerabilities
  • Lead the collaboration with vendors to remediate security gaps and ensure compliance with Ledger's stringent security requirements
  • Establish and maintain a robust vendor security monitoring program, driving continuous improvement in vendor security posture and compliance
  • Develop, implement, and continuously improve Ledger's third-party security risk management program, including policies, standards, procedures, and tools
  • Prepare reports and presentations on vendor security risks and mitigation efforts to senior management, stakeholders, and the Comex
  • Participate in audits as part of the Privacy audit program according to the agreed annual audit plan
What we offer
What we offer
  • Equity: Employees are the foundation of our success, and we award stock options so you can share in that success as we grow
  • Flexibility: A hybrid work policy
  • Social: Annual company outing for Ledgerdary Days, plus frequent social events, snacks and drinks
  • Medical: Comprehensive health insurance policy offering extensive medical, dental and vision care coverage
  • Well-being: Personal development, coaching & fitness with our dedicated partners
  • Vacation: Five weeks of paid leave per year, in addition to national holidays and rest & relaxation (RTT) days
  • High tech: Access to high performance office equipment and gadgets
  • Transport: Ledger reimburses part of your preferred means of transportation
  • Discounts: Employee discount on all our products
  • Fulltime
Read More
Arrow Right

Third Party Risk Management Intermediate Analyst

Opportunity to work in a dynamic team that supports every business and functions...
Location
Location
India , Chennai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2-5 years relevant experience working on project management activities including regulatory change and remediation work
  • Good at stakeholder management and working collaboratively with partnering teams to achieve an outcome
  • Good Excel and Powerpoint skills
  • Bachelor’s/University degree
Job Responsibility
Job Responsibility
  • Ensure effective adherence to local and global third-party risk management regulations, policies, and standards
  • Provide active support to Cluster and Country Third Party Governance Forums, facilitating communication and collaboration
  • Collaborate closely with stakeholders across the Europe Cluster, including country-level teams, to ensure alignment with the TPM framework and address any compliance gaps
  • Proactively identify and escalate potential risks and compliance issues to relevant stakeholders, including In-Business Risk, Third Party Officers, and Business Activity Owners
  • Continuously monitor Key Risk Indicators (KRIs) to identify emerging third-party risks
  • Conduct thorough root cause analyses to understand underlying issues and develop effective mitigation strategies
  • Critically evaluate existing TPM practices and identify opportunities for improvement
  • Lead initiatives to enhance standards, procedures, controls, and governance processes, ensuring the ongoing sustainability and optimization of the TPRM program in Malaysia
  • Provide expert guidance and support to country business teams on interpreting and implementing Third Party Risk Management policies, regulations, and local procedures
  • Collaborate with internal and external stakeholders, including Independent Operational Risk Management, Compliance, Internal Audit, and Regulators, to facilitate audits, regulatory examinations, and information requests
  • Fulltime
Read More
Arrow Right

Program Management Jr Analyst - Third Party Risk Management

The Program Management Jr Analyst is a trainee professional role. Requires a goo...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Previous program management experience preferred
  • Bachelor’s/University degree or equivalent experience
Job Responsibility
Job Responsibility
  • Supports planning, directing and coordination of day-to-day activities of running a program or portfolio of programs
  • Gathers program data needed to complete program plans and help create them
  • Collects program performance data
  • Tracks program issues and resolutions
  • Creates and documents the program Work Breakdown Structure
  • Updates program artifacts with approved changes
  • Gathers data to create program schedule management plan
  • Maintains program documents, including the program charter, communication plan and risk management plan
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency
  • Fulltime
Read More
Arrow Right

Third Party Compliance Risk Management Senior Analyst

Serves as a Third Party Compliance Risk Management Senior Analyst for Independen...
Location
Location
United Kingdom , Belfast
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Knowledge of Compliance laws, rules, regulations, risks and typologies
  • Excellent written and verbal communication skills
  • Must be a self-starter, flexible, innovative and adaptive
  • Strong interpersonal skills with the ability to work collaboratively and with people at all levels of the organization
  • Work collaboratively with regional and global partners in other functional units
  • ability to navigate a complex organization
  • Excellent project management and organizational skills and capability to handle multiple projects at one time
  • Proficient in MS Office applications (Excel, Word, PowerPoint)
  • Knowledge in area of focus
  • Bachelor's degree
Job Responsibility
Job Responsibility
  • Assessment of Third Party Compliance (ATPC) tool & process owner & subject matter experts (for new relationships & annual assessments)
  • Ongoing buildout of Third Party Compliance Risk Program including strategy, design and ongoing governance for current and post-target state. Includes appropriate tagging and control coverage in MCA
  • Provide guidance and documentation for expectations of PFICRM including tools to support credible challenge requirements
  • Reporting/metrics build out, including identification of areas of high compliance risk and/or weaknesses of quality execution of the ATPC
  • Engage with Compliance Programs for consistency with ATPC future state design under Consent Order
  • Participating in the design, development, delivery and maintenance of best-in-class Compliance, programs, policies and practices for ICRM
  • Analyzing comparative data and preparing regional and global reports related to compliance risk assessments, and monitoring of compliance related issues
  • Reviewing materials to ensure compliance with various regulatory and legal requirements. Identifying and addressing potential risks
  • Investigating and assisting in responses to compliance risk issues. Investigating regulatory inquiries, preparing required documentation, making recommendations to senior management on how to proceed, and preparing responses for the regulatory inquiries
  • Monitoring adherence to Citi’s Compliance Risk Policies and relevant procedures
What we offer
What we offer
  • Generous holiday allowance starting at 27 days plus bank holidays
  • increasing with tenure
  • A discretional annual performance related bonus
  • Private medical insurance packages to suit your personal circumstances
  • Employee Assistance Program
  • Pension Plan
  • Paid Parental Leave
  • Special discounts for employees, family, and friends
  • Access to an array of learning and development resources
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy