Third Party Risk Management Analyst III

Company: American Red Cross
Location: Boston
Posted on: June 2, 2025

Job Description:

Please use Google Chrome or Mozilla Firefox when accessing Candidate Home.By joining the American Red Cross you will touch millions of lives every year and experience the greatness of the human spirit at its best. Are you ready to be part of the world's largest humanitarian network?Join us-Where your Career is a Force for Good!Job Description:WHY CHOOSE US?Joining The American Red Cross is like nothing else - it's as much something you feel as something you do. You become a vital part of the world's largest humanitarian network. Joining a team of welcoming individuals who are exceptional, yet unassuming. Diverse, yet uncompromising in unity. You grow your career within a movement that matters, where success is measured in people helped, communities made whole, and individuals equipped to never stop changing lives and situations for the better.When you choose to be a force for good, you'll have mentors who empower your growth along a purposeful career path. You align your life's work with an ongoing mission that's bigger than all of us. As you care for others, you're cared for with competitive compensation and benefits. You join a community that respects who you are away from work as much as what you do while at work.WHAT YOU NEED TO KNOW ABOUT THE JOB:We are actively seeking an experienced third party risk analyst to join our Security Governance team. In this role, you will be responsible for project administration, tracking, monitoring and response coordination for vendor risk assessments, internal audit coordination and regulatory compliance items in alignment with Third Party Risk Management Policy and Standards. This position will report directly to the Director of Information Security Third Party Risk.The work location for this position is 100% virtual/work from home.WHERE YOUR CAREER IS A FORCE FOR GOOD (Key Responsibilities):

• Perform enterprise-wide vendor risk assessments on new and existing third parties to assess risks and controls. Prepare detailed and summary reports of vendor risk assessments.
• Manage third party plans of action to resolve and remediate any vulnerabilities or compliance items that need to be addressed.
• Partner with business units in developing and implementing controls to effectively mitigate the risks inherent in each vendor relationship. Evaluate exceptions to determine if compensating controls provide adequate protection of data.
• Work as a subject-matter-expert (SME) with cross-functional oversight to include Security, IT, Legal, Finance, HR, BCP/DR and functional department Supply Managers to ensure compliance with and integration of Third Party Risk Management lifecycle elements.
• Work directly with internal business partners and Supply Managers to assist them in effectively managing their operational risks related to identification of potential risks in business processes, applications, and systems associated with the vendor engagement.
• Participate in the development, implementation, and maintenance of Third Party Risk Management policies, procedures and training material in alignment with industry best practices.Scope: Individual contributor that works under limited supervision. Apply subject matter knowledge. Capacity to understand specific needs or requirements to apply skills/knowledge.Qualified candidates must beauthorizedto work in the United States. The American Red Cross does not sponsor employment visas.WHAT YOU NEED TO SUCCEED (required/minimum qualifications):
  • At least 3 years of demonstrated experience in information technology and information security required.
  • A Bachelor's degree in an IT or related discipline required; experience may substitute for education.
  • Information security / TPRM certification, such as CTPRP, CTPRA, CISSP, CISM, CISA, or GSEC a plus.
  • Effective communication skills, both written and verbal, required.
  • Ability to foster effective working relationships with both internal and external business stakeholders.
  • Clear understanding of the principles of governance, risk management, commercial best-practices, ISO security standardsand compliance framework.
  • Demonstrated abilities in problem-solving and analysis: identify issues, analyze information to assess root cause and relationships, risks, and potential risk responses.
  • Experience balancing risk management and business drivers is essential.
  • Proven ability to synthesize and summarize complex data into concise recommendations and reports and presenting solution recommendations.
  • Must be highly organized and capable of prioritizing workloads.
  • Self-motivated.
  • Personable.* Combination of candidate's education and general experience satisfies requirements so long as the total years equate to description's minimum education and general experience years combined (Management experience cannot be substituted).+++++++++++++++++++++Pay Information:The salary range for this position is $85,000-$138,000.We do not offer an annual bonus for this role.Note that American Red Cross salaries are aligned to the specific geographic location in which the work is primarily performed. Other factors that may be used to determine your actual salary may include your specific skills, how many years of experience you have and comparison to other employees already in this role. **We will review specific salary information at the time of phone screening based upon your location & experience.**This job will be posted for a minimum of five business days and extended if the applicant pool needs to be expanded.Benefits for you: As a mission-based organization, we believe our team needs great support to do great work. Our comprehensive package includes:* Medical, Dental Vision plans* Health Spending Accounts & Flexible Spending Accounts* PTO: Starting at 19 days a year; based on type of job and tenure* Holidays: 11 paid holidays comprised of six core holidays and five floating holidays* 401K with up to 6% match* Paid Family Leave* Employee Assistance* Disability and Insurance: Short + Long Term* Service Awards and recognition*LI-EH1IND123Apply now! Joining our team will provide you with the opportunity to make your career a force for good!The American Red Cross is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.Qualified applicants with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers, San Diego Fair Chance Ordinance, the California Fair Chance Act and any other applicable state and local laws.AmeriCorps, the federal agency that brings people together through service, and its partners - the Peace Corps, AmeriCorps Alums, National Peace Corps Association, and the Service Year Alliance - launched Employers of National Service to connect national service alumni with opportunities in the workforce.American Red Cross is proud to be an EONS partner and share our employment opportunities with the network of organizations.Interested in Volunteering? Visit redcross.org/volunteertoday to learn more, including our most-needed volunteer positions.To view the EEOC Summary of Rights, click here:

Keywords: American Red Cross, Brookline , Third Party Risk Management Analyst III, Executive , Boston, Massachusetts