Senior Third-Party Risk Analyst

Job Summary

Leading complex control testing and audit readiness activities, the short-term contract Senior Third-Party Risk & Controls Analyst will work remotely to validate control design, support RCSAs, and enhance the overall control environment while mentoring junior testers.

Key responsibilities

• Conduct walkthroughs with process owners to validate and document internal controls
• Execute testing procedures and support audit readiness efforts across multiple business units
• Collaborate with business partners to gather evidence and improve control maturity

Required qualifications

• 3-5+ years of experience with RSA Archer and risk & controls, internal audit, or compliance testing
• Strong understanding of Test of Design vs. Test of Effectiveness and experience with RCSA execution/support
• Familiarity with regulatory frameworks such as NIST, ISO, SOC, SOX, HIPAA, and PCI
• Experience writing and executing standardized test procedures (STPs)
• Ability to manage multiple tasks and work directly with business owners