Pay Growth
?
out of 5
Not enough data
Not enough info to score pay or growth
Third Party Risk Analyst
Job
Robert Half
Los Angeles, CA (In Person)
$130,000 Salary, Full-Time
Review key factors to help you decide if the role fits your goals.
Job Security
?
out of 5
Not enough data
Calculating job security score...
Total Score
72
out of 100
Average of individual scores
Skill Insights
Compare your current skills to what this opportunity needs—we'll show you what you already have and what could strengthen your application.
Job Description
Job TitleThird-Party Risk AnalystCompany OverviewA leading global professional services organization in the legal and business advisory space, headquartered in Los Angeles, California, is seeking a Third-Party Risk Analyst to join its growing IT Security team. The organization is known for its commitment to protecting sensitive client data and maintaining robust security standards across modern cloud and SaaS environments. With a strong global presence, the firm emphasizes innovation, collaboration, and operational excellence.
Role SummaryThe Third-Party Risk Analyst plays a critical role in safeguarding the organization's ecosystem by evaluating the security posture of external vendors and partners. This role focuses on conducting technical risk assessments across SaaS platforms, cloud environments, and hosted services while ensuring compliance with industry standards and client expectations. Based remotely, this position partners closely with IT security leadership and cross-functional stakeholders to mitigate risk and strengthen third-party security practices.
Key ResponsibilitiesConduct technical security assessments of third-party vendors across SaaS platforms, cloud infrastructure, and hosted servicesEvaluate vendor security controls, including access management, encryption, and data protection practicesReview vendor documentation such as SOC 2 reports, ISO certifications, and security testing resultsAssess cloud environments (AWS, Azure, GCP) for security configurations, segmentation, and identity controlsAnalyze API security, including authentication methods, data transmission, and vulnerability risksEvaluate DevSecOps maturity, including secure development practices and CI/CD pipeline securityTrack and manage vendor risk findings, ensuring remediation efforts are completed in a timely mannerSupport client-facing security activities, including questionnaires, audits, and compliance reviewsCollaborate with internal stakeholders to align vendor security with regulatory requirements (e.g., GDPR, CCPA)Prepare risk reports and present key findings to leadership and cross-functional teamsCompensation & Benefits$120,000 - $140,000 with discretionary bonusDiscretionary bonus eligibilityComprehensive benefits package including medical, dental, and vision coverageFlexible spending accounts (FSA) and 401(k) with profit sharingPaid time off including vacation, sick leave, and personal daysAdditional DetailsRemote (must reside in proximity to a supported office region)Core hours: 8:00 AM - 4:00 PM PT (7-hour workday)Occasional travel may be required for vendor assessmentsCollaborative environment with direct exposure to senior leadership and security stakeholders
Role SummaryThe Third-Party Risk Analyst plays a critical role in safeguarding the organization's ecosystem by evaluating the security posture of external vendors and partners. This role focuses on conducting technical risk assessments across SaaS platforms, cloud environments, and hosted services while ensuring compliance with industry standards and client expectations. Based remotely, this position partners closely with IT security leadership and cross-functional stakeholders to mitigate risk and strengthen third-party security practices.
Key ResponsibilitiesConduct technical security assessments of third-party vendors across SaaS platforms, cloud infrastructure, and hosted servicesEvaluate vendor security controls, including access management, encryption, and data protection practicesReview vendor documentation such as SOC 2 reports, ISO certifications, and security testing resultsAssess cloud environments (AWS, Azure, GCP) for security configurations, segmentation, and identity controlsAnalyze API security, including authentication methods, data transmission, and vulnerability risksEvaluate DevSecOps maturity, including secure development practices and CI/CD pipeline securityTrack and manage vendor risk findings, ensuring remediation efforts are completed in a timely mannerSupport client-facing security activities, including questionnaires, audits, and compliance reviewsCollaborate with internal stakeholders to align vendor security with regulatory requirements (e.g., GDPR, CCPA)Prepare risk reports and present key findings to leadership and cross-functional teamsCompensation & Benefits$120,000 - $140,000 with discretionary bonusDiscretionary bonus eligibilityComprehensive benefits package including medical, dental, and vision coverageFlexible spending accounts (FSA) and 401(k) with profit sharingPaid time off including vacation, sick leave, and personal daysAdditional DetailsRemote (must reside in proximity to a supported office region)Core hours: 8:00 AM - 4:00 PM PT (7-hour workday)Occasional travel may be required for vendor assessmentsCollaborative environment with direct exposure to senior leadership and security stakeholders