Senior Third-Party Risk Analyst

Job Summary

Leading complex control testing and audit readiness activities, the short-term contract Senior Third-Party Risk & Controls Analyst will work remotely to validate control design and effectiveness, support RCSAs, and enhance the control environment while mentoring junior testers.

Key responsibilities

• Conduct control testing and evidence validation across multiple business units
• Collaborate with process owners to review workflows and ensure audit readiness
• Document testing results and drive improvements in control maturity

Required qualifications

• 3-5+ years of experience with RSA Archer and 5+ years in Risk & Controls, Internal Audit, or Compliance Testing
• Strong understanding of Test of Design vs. Test of Effectiveness
• Experience with regulatory frameworks such as NIST, ISO, SOC, SOX, HIPAA, and PCI
• Proficiency in writing and executing Standardized Test Procedures (STPs)
• Ability to manage multiple tasks and work directly with business owners