Third-Party Risk Analyst

Job Summary

To support audit readiness and compliance initiatives, the short-term contract Third-Party Risk & Controls Analyst will review, test, and document internal controls while collaborating with business owners to validate workflows and strengthen the control environment remotely.

Key responsibilities

• Review and test internal controls across multiple business units to ensure audit readiness
• Partner with process owners to validate control designs and gather evidence for compliance validation
• Support Risk Control Self-Assessments (RCSAs) and contribute to the continuous improvement of risk and compliance processes

Required qualifications

• 3-5+ years of experience in Risk, Controls, Internal Audit, or Compliance Testing
• Strong understanding of Test of Design vs. Test of Effectiveness
• Experience with regulatory frameworks such as NIST, ISO, SOC, SOX, HIPAA, and PCI
• Proficiency in writing and executing Standardized Test Procedures (STPs)
• Ability to manage multiple tasks and work directly with business owners