Third Party Risk Analyst
Job Title
Third-Party Risk Analyst
Company Overview
A leading global professional services organization in the legal and business advisory space, headquartered in Los Angeles, California, is seeking a Third-Party Risk Analyst to join its growing IT Security team. The organization is known for its commitment to protecting sensitive client data and maintaining robust security standards across modern cloud and SaaS environments. With a strong global presence, the firm emphasizes innovation, collaboration, and operational excellence.
Role Summary
The Third-Party Risk Analyst plays a critical role in safeguarding the organization’s ecosystem by evaluating the security posture of external vendors and partners. This role focuses on conducting technical risk assessments across SaaS platforms, cloud environments, and hosted services while ensuring compliance with industry standards and client expectations. Based remotely, this position partners closely with IT security leadership and cross-functional stakeholders to mitigate risk and strengthen third-party security practices.
Key Responsibilities
- Conduct technical security assessments of third-party vendors across SaaS platforms, cloud infrastructure, and hosted services
- Evaluate vendor security controls, including access management, encryption, and data protection practices
- Review vendor documentation such as SOC 2 reports, ISO certifications, and security testing results
- Assess cloud environments (AWS, Azure, GCP) for security configurations, segmentation, and identity controls
- Analyze API security, including authentication methods, data transmission, and vulnerability risks
- Evaluate DevSecOps maturity, including secure development practices and CI/CD pipeline security
- Track and manage vendor risk findings, ensuring remediation efforts are completed in a timely manner
- Support client-facing security activities, including questionnaires, audits, and compliance reviews
- Collaborate with internal stakeholders to align vendor security with regulatory requirements (e.g., GDPR, CCPA)
- Prepare risk reports and present key findings to leadership and cross-functional teams
Compensation & Benefits
- $120,000 – $140,000 with discretionary bonus
- Discretionary bonus eligibility
- Comprehensive benefits package including medical, dental, and vision coverage
- Flexible spending accounts (FSA) and 401(k) with profit sharing
- Paid time off including vacation, sick leave, and personal days
Additional Details
- Remote (must reside in proximity to a supported office region)
- Core hours: 8:00 AM – 4:00 PM PT (7-hour workday)
- Occasional travel may be required for vendor assessments
- Collaborative environment with direct exposure to senior leadership and security stakeholders
Qualifications:
Required Qualifications
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent experience)
- Minimum 3+ years of experience in a technical security or third-party risk role
- Hands-on experience with cloud security (AWS, Azure, or GCP)
- Experience assessing SaaS applications and vendor security controls
- Strong understanding of security frameworks such as NIST, ISO 27001, CIS Benchmarks, and SOC 2
- Familiarity with identity and access management (IAM), SSO, and role-based access controls
- Excellent communication skills with the ability to convey technical concepts to diverse audiences
- Strong organizational and analytical skills in a fast-paced environment
Preferred Qualifications (Nice-to-Haves)
- Professional services or legal industry experience
- Security certifications such as CISSP, CISA, CCSP, CRISC, or similar
- Experience with API security, DevSecOps, and secure software development practices
- Knowledge of data privacy regulations and cross-border data handling requirements
- Experience supporting client audits and security questionnaires
Compensation
$130,000.00-$140,000.00 YearlyAbout Us
Technology Doesn't Change the World, People Do.®
Robert Half is the world’s first and largest specialized talent solutions firm that connects highly qualified job seekers to opportunities at great companies. We offer contract, temporary and permanent placement solutions for finance and accounting, technology, marketing and creative, legal, and administrative and customer support roles.
Robert Half works to put you in the best position to succeed. We provide access to top jobs, competitive compensation and benefits, and free online training. Stay on top of every opportunity - whenever you choose - even on the go. Download the Robert Half app and get 1-tap apply, notifications of AI-matched jobs, and much more.
Robert Half will consider for employment qualified applicants with arrest or conviction records in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. All applicants applying for U.S. job openings must be legally authorized to work in the United States. Benefits are available to contract/temporary professionals, including medical, vision, dental, and life and disability insurance. Hired contract/temporary professionals are also eligible to enroll in our company 401(k) plan. Visit roberthalf.gobenefits.net for more information.
© 2025 Robert Half. An Equal Opportunity Employer. M/F/Disability/Veterans. By clicking “Apply Now,” you’re agreeing to Robert Half’s Terms of Use and Privacy Notice.
