Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
- Gratuity calculator
  
  Check your gratuity amount
- HRA calculator
  
  Check how much of your HRA is tax-free
- Salary hike calculator
  
  Check your salary hike
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 2K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

WINNERS AWAITED!
- ABECA 2025
  
  WINNERS AWAITED!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Employer? Claim Account for FREE

Black Duck

Compare

5.0

based on 1 Review

4 Black Duck Jobs

Black Duck - Third-Party Risk Analyst (6-8 yrs)

Black Duck

5.0

based on 1 Review

6-8 years

Black Duck

posted 2mon ago

Job Role Insights

Key skills for the job

Hospital Administration Information Security Cissp Tprm Credit Risk Modelling Audit Compliance

+ 3 more

Job Description

About the Role :

As a Third-Party Risk Analyst, you will play a crucial role in safeguarding our organization by managing and mitigating risks associated with third-party vendors.

You will work closely with internal stakeholders and external vendors to ensure compliance with security standards and regulations.

Key Responsibilities :

- Conduct thorough risk assessments of third-party vendors, including evaluating their security controls, data protection practices, and business continuity plans.

- Develop and maintain risk rating methodologies to prioritize risk treatments.

- Onboard and manage third-party vendors throughout their lifecycle, from initial assessment to termination.

- Monitor vendor performance and compliance.

- Enforce contractual obligations and security requirements.

- Identify and implement risk mitigation strategies, such as security controls, contractual terms, and monitoring activities.

- Work with vendors to address security vulnerabilities and compliance gaps.

- Ensure compliance with relevant regulations and industry standards, including ISO 27001, NIST SP 800-53, and GDPR.

- Stay informed about emerging threats and vulnerabilities.

- Develop and maintain key performance indicators (KPIs) to measure the effectiveness of the TPRM program.

- Generate regular reports on third-party risk exposure and compliance status.

- Respond to security incidents involving third-party vendors.

- Coordinate with internal and external teams to mitigate the impact of security breaches.

Qualifications :

- 5+ years of experience in Third-Party Risk Management.

- Strong understanding of information security principles and practices.

- Experience with risk assessment methodologies and frameworks.

- Familiarity with regulatory requirements (GDPR, HIPAA, PCI DSS).

- Excellent analytical and problem-solving skills.

- Strong communication and interpersonal skills.

- Ability to work independently and as part of a team.