CrawlJobs Logo

IT Vendor Risk Management Analyst

eversource.com Logo

EVERSOURCE

Location Icon

Location:
United States , Berlin

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

119100.00 - 132330.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

The Vendor Risk Management IT Security Analyst is responsible for developing, implementing, and validating IT control standards and procedures for third‑party vendors. This role supports the full vendor lifecycle including new contracts, vendor onboarding, and system integrations to ensure alignment with Eversource’s General IT Controls, cybersecurity policies, and regulatory requirements. The analyst conducts detailed vendor risk assessments, identifies potential control gaps, and recommends remediation actions or enhanced control designs. They evaluate the effectiveness of existing vendor controls through scheduled testing based on vendor criticality tiers and document results in accordance with established risk and compliance frameworks. This position requires strong knowledge of vendor risk management principles, IT security controls, and third‑party oversight processes to ensure that vendors effectively safeguard Eversource information and systems.

Job Responsibility:

  • Oversees policy, standards, guidelines, and control monitoring and testing for Vendors
  • Conducts process design, analysis, documentation, implementation and testing activities
  • Analyzes communication and recommends updates
  • Participates in the testing and evaluation of new products and processes
  • Performs first level troubleshooting, analysis and monitoring of automated work processes for compliance to key security controls and practices
  • Effectively communicates issues and/or concerns to stakeholders and audit management throughout the course of your work
  • Monitors implementation and completion of remediation efforts
  • Performs vendor and third-party risk assessments
  • Develops, implements, and validates IT control standards and procedures for third‑party vendors
  • Supports the full vendor lifecycle including new contracts, vendor onboarding, and system integrations
  • Conducts detailed vendor risk assessments, identifies potential control gaps, and recommends remediation actions or enhanced control designs
  • Evaluates the effectiveness of existing vendor controls through scheduled testing based on vendor criticality tiers and document results

Requirements:

  • Four-year college degree from an accredited institution
  • Bachelor’s Degree in Business, Risk, IT, or related field with focus on information systems or related experience
  • Five (5) or more years of related experience with a minimum of two years of relevant work experience in Risk Management
  • Strong knowledge of IT general controls related to operations, information security and change management of systems software, application source code, network, and system database technologies
  • Experience testing automated and manual application controls
  • security testing experience required
  • Technical IT audit knowledge for establishing in house controls aligned to COBIT, NIST and other industry standards
  • Full understanding of applicable state and federal legislation and industry specific regulations
  • Archer GRC experience
  • Risk assessment ability and internal audit experience
  • Excellent communication and interpersonal skills
  • good report writing skills
  • Knowledge of IT security and infrastructure
  • Knowledge of operating system platforms
  • Excellent analytical skills
What we offer:
  • Competitive total rewards program
  • Potential incentive
  • Relocation assistance is not available

Additional Information:

Job Posted:
February 14, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
EVERSOURCE - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for IT Vendor Risk Management Analyst

Sr Analyst, Credit Risk Management

Join T-Mobile's dynamic Credit Risk Management team as a Senior Analyst in Strat...
Location
Location
United States , Overland Park
Salary
Salary:
Not provided
https://www.t-mobile.com Logo
T-Mobile
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of quantitative analytic modeling experience or comparable process management experience
  • BA/BS in Finance, Economics, Mathematics, Industrial Engineering, Statistics or related degree required
  • Basic proficiency in SQL, Python, R or other statistical software packages required
  • Outstanding computer skills in Excel, Word, PowerPoint required
  • Strong communication (spoken and written), organization and presentation skills
  • Proven time management skills and awareness of project management methods
  • Legally authorized to work in the United States
  • At least 18 years of age
Job Responsibility
Job Responsibility
  • Apply statistical segmentation techniques to identify new opportunities
  • Perform sophisticated qualitative and quantitative analysis of credit policies to ensure financial goals are being attained
  • Develop predictive financial and analytical models using the appropriate statistical methodologies, including trend and regression analysis
  • Participate and perform the analysis of new data and statistical products by external vendors
  • Perform loss forecasting analysis
  • Extract, process and transform data from multiple disparate sources
  • analyzing credit bureau data and alternative credit data
  • Deliver work output with full awareness and adherence to project timelines or agreed upon deadlines
What we offer
What we offer
  • Medical, dental and vision insurance
  • Flexible spending account
  • 401(k)
  • Employee stock grants
  • Employee stock purchase plan
  • Paid time off
  • Up to 12 paid holidays
  • Paid parental and family leave
  • Family building benefits
  • Back-up care
  • Fulltime
Read More
Arrow Right

Third-Party Risk Analyst

As a Third-Party Risk Analyst, you will be responsible for evaluating, monitorin...
Location
Location
United States , Baltimore
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Risk, Business, Business Technology, Cybersecurity, or a related field
  • 2+ years of experience in third-party risk management, vendor management, procurement, internal audit
  • Strong understanding of third-party risk management principles, methodologies, and best practices
  • Detail-oriented and organized, with the ability to manage multiple priorities and deadlines in a fast-paced environment
  • Proficiency in using risk management tools, software, and technologies to support third-party risk assessment and monitoring activities
  • Excellent analytical, problem-solving, and critical-thinking skills, with the ability to assess complex situations and make informed risk-based decisions
  • Effective communication and interpersonal skills, with the ability to collaborate with stakeholders at all levels of the organization
Job Responsibility
Job Responsibility
  • Conduct comprehensive risk assessments of third-party vendors and service providers
  • Review and analyze third-party contracts, agreements, and security documentation
  • Develop and implement risk mitigation strategies and action plans
  • Monitor and track third-party risk indicators
  • Collaborate with internal audit, compliance, and information security teams
  • Collaborate with procurement, legal, and business units
  • Conduct periodic reviews and audits of third-party vendors
  • Provide regular reporting and updates to senior management, the board of directors, and other stakeholders
  • Stay informed about industry trends, emerging risks, and best practices in third-party risk management
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • Eligibility to enroll in company 401(k) plan
  • Fulltime
Read More
Arrow Right

Cybersecurity Third-Party Risk Analyst

We are seeking a detail-oriented and security-conscious Cybersecurity Third-Part...
Location
Location
United States , Tempe
Salary
Salary:
Not provided
https://www.circlek.com Logo
Circle K
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in cybersecurity, information technology, risk management, or a related field
  • 2-4 years of experience in cybersecurity risk assessment, vendor risk management, or a similar role
  • Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001, SOC 2, CIS, GDPR, HIPAA)
  • Familiarity with third-party risk management platforms and security assessment tools
  • Ability to analyze security reports and communicate risk findings effectively
  • Strong problem-solving skills and attention to detail
  • Excellent verbal and written communication skills.
Job Responsibility
Job Responsibility
  • Conduct comprehensive security assessments of third-party vendors to identify potential risks and vulnerabilities
  • Evaluate vendor security policies, procedures, and controls to ensure compliance with company and industry standards
  • Develop and maintain third-party cybersecurity risk management (TPCRM) frameworks, policies, and procedures
  • Work closely with procurement, legal, and cybersecurity compliance teams to integrate security requirements into vendor contracts
  • Monitor vendor security performance using automated tools, questionnaires, and periodic audits
  • Stay updated on cybersecurity threats, regulatory requirements, and best practices for third-party risk management
  • Collaborate with internal teams to address security concerns related to third-party vendors
  • Maintain foundational documentation related to the third-party process
  • Provide recommendations and remediation guidance to vendors with identified security gaps.
Read More
Arrow Right

Senior Third-Party Security Risk Analyst

As a Senior Third-Party Security Risk Specialist at Ledger, you will play a vita...
Location
Location
France , Paris
Salary
Salary:
Not provided
https://www.ledger.com Logo
Ledger
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master degree in Information Security, Cybersecurity, or a related field
  • 5+ years of progressive experience in third-party risk management, with a strong background in audit, risk management, compliance, or a related control function within a complex organization
  • Proven project management skills with the ability to manage complex, cross-functional projects and maintain comprehensive documentation
  • In-depth knowledge of security frameworks and standards (e.g., ISO 27001, NIST Cybersecurity Framework) and experience in applying them to third-party risk management and regulatory requirements
  • Excellent analytical and problem-solving skills with a focus on identifying root causes and developing effective solutions
  • Strong communication and interpersonal skills, including the ability to influence and negotiate with vendors and stakeholders at all levels
Job Responsibility
Job Responsibility
  • Conduct comprehensive security assessments of third-party vendors, including reviewing their security policies, procedures, and controls
  • Proactively identify and evaluate potential security/privacy risks associated with a particular focus on those that could impact Ledger's reputation, financial stability, and customer trust
  • Develop and implement risk mitigation strategies to address identified vulnerabilities
  • Lead the collaboration with vendors to remediate security gaps and ensure compliance with Ledger's stringent security requirements
  • Establish and maintain a robust vendor security monitoring program, driving continuous improvement in vendor security posture and compliance
  • Develop, implement, and continuously improve Ledger's third-party security risk management program, including policies, standards, procedures, and tools
  • Prepare reports and presentations on vendor security risks and mitigation efforts to senior management, stakeholders, and the Comex
  • Participate in audits as part of the Privacy audit program according to the agreed annual audit plan
What we offer
What we offer
  • Equity: Employees are the foundation of our success, and we award stock options so you can share in that success as we grow
  • Flexibility: A hybrid work policy
  • Social: Annual company outing for Ledgerdary Days, plus frequent social events, snacks and drinks
  • Medical: Comprehensive health insurance policy offering extensive medical, dental and vision care coverage
  • Well-being: Personal development, coaching & fitness with our dedicated partners
  • Vacation: Five weeks of paid leave per year, in addition to national holidays and rest & relaxation (RTT) days
  • High tech: Access to high performance office equipment and gadgets
  • Transport: Ledger reimburses part of your preferred means of transportation
  • Discounts: Employee discount on all our products
  • Fulltime
Read More
Arrow Right

Senior Third-Party Security Risk Analyst

As a Senior Third-Party Security Risk Specialist at Ledger, you will contribute ...
Location
Location
France , Paris
Salary
Salary:
Not provided
https://www.ledger.com Logo
Ledger
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master degree in Information Security, Cybersecurity, or a related field
  • 5+ years of progressive experience in third-party risk management, with a strong background in audit, risk management, compliance, or a related control function within a complex organization
  • Proven project management skills with the ability to manage complex, cross-functional projects and maintain comprehensive documentation
  • In-depth knowledge of security frameworks and standards (e.g., ISO 27001, NIST Cybersecurity Framework) and experience in applying them to third-party risk management and regulatory requirements
  • Excellent analytical and problem-solving skills with a focus on identifying root causes and developing effective solutions
  • Strong communication and interpersonal skills, including the ability to influence and negotiate with vendors and stakeholders at all levels.
Job Responsibility
Job Responsibility
  • Conduct comprehensive security assessments of third-party vendors, including reviewing their security policies, procedures, and controls
  • Proactively identify and evaluate potential security/privacy risks associated with a particular focus on those that could impact Ledger's reputation, financial stability, and customer trust
  • Develop and implement risk mitigation strategies to address identified vulnerabilities
  • Lead the collaboration with vendors to remediate security gaps and ensure compliance with Ledger's stringent security requirements
  • Establish and maintain a robust vendor security monitoring program, driving continuous improvement in vendor security posture and compliance
  • Develop, implement, and continuously improve Ledger's third-party security risk management program, including policies, standards, procedures, and tools
  • Prepare reports and presentations on vendor security risks and mitigation efforts to senior management, stakeholders, and the Comex
  • Participate in audits as part of the Privacy audit program according to the agreed annual audit plan.
What we offer
What we offer
  • Equity: Employees are the foundation of our success, and we award stock options so you can share in that success as we grow
  • Flexibility: A hybrid work policy
  • Social: Annual company outing for Ledgerdary Days, plus frequent social events, snacks and drinks
  • Medical: Comprehensive health insurance policy offering extensive medical, dental and vision care coverage
  • Well-being: Personal development, coaching & fitness with our dedicated partners
  • Vacation: Five weeks of paid leave per year, in addition to national holidays and rest & relaxation (RTT) days
  • High tech: Access to high performance office equipment and gadgets
  • Transport: Ledger reimburses part of your preferred means of transportation
  • Discounts: Employee discount on all our products.
  • Fulltime
Read More
Arrow Right

Cyber Controls Lead Analyst / Business Risk Officer

The Business Risk Officer is a strategic professional who stays abreast of devel...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6-10 years relevant work experience in Business Risk & Controls
  • MS Excel, MS Access, SAS, SQL, Visual Basic a plus
  • 5+ years’ experience in financial services
  • Consistently demonstrates clear and concise written and verbal communication skills
  • Effective organizational influencing skills required
  • Third party vendor management preferred
  • Demonstrated ability to lead global team efforts
  • Excellent problem solving skills
  • Ability to see the big pictures with high attention to critical details
  • Demonstrated ability to develop and implement strategy and process improvement initiatives.
Job Responsibility
Job Responsibility
  • Responsible for managing and supporting multiple risk and control programs for the organization including defining the strategy, approach, processes, quality, tools and reporting that provide global risk management consistency and excellence
  • Establishes quarterly audit process of attributes to ensure proper calculation and control
  • Works closely with business partners on findings and makes recommendations on improving practices
  • Develops procedural implementation and change management process with Operations and Reporting team to ensure proper governance and controls exist
  • Examines procedures for consistency and gaps relative to regulations in addition to impacts on customer experience
  • Conducts internal testing of dispute processes to ensure control
  • Monitors exceptions to dispute policy and identifies drivers of exceptions
  • Leverages data to examine impacts to Customer Experience and Regulatory breaks
  • Has the ability to operate with a limited level of direct supervision
  • Can exercise independence of judgement and autonomy
  • Fulltime
Read More
Arrow Right

Business Analyst - Payroll Vendor Migrations

The Business Analyst is a strategic professional who will be responsible for tra...
Location
Location
Philippines , Taguig
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8-10 years experience of Business Analysis, Payroll Implementations or Payroll Operations
  • Strong project management experience – preferably from a financial services environment
  • Ability to develop project plans, manage individual deadlines and goals
  • Ability to conduct data gathering, requirements analysis/documentation and testing
  • Knowledge of project metrics, including gathering, reporting, trend analysis, creation, and metrics
  • Ability to identify issues and problems, generate solutions and choose appropriate alternatives using basic root cause analysis
  • Manage project scope by assessing requirements changes, determining and conveying impact on budget, time and risk
  • Manage client expectations, anticipates operational and tactical risks and tracks them
  • clarify, identify, and track requirements and issues, remove barriers, resolve minor project issues and escalate to immediate manager where required
  • Proficient in MS Office applications (with advanced experience in Excel)
Job Responsibility
Job Responsibility
  • The Senior Business Analyst Project Lead provides direction and oversight for multiple key projects with full leadership and responsibilities of support staff
  • Drives end results of the project as a representative of the business
  • Works closely with End User, Technology, and other Organizations to define a project scope and objectives
  • Advises senior management on planning, budget management and formulation of procedures
  • influences resource planning
  • Evaluates subordinates' performance and makes recommendations development
  • Prepares, maintains, and submits clear and concise activity/progress reports and time recording/management reports
  • Owns all management reports on a given engagement
  • Defines and enforces the use of good project management practices such as techniques in resolving complex, interdependent activities into tasks and sub-tasks that are documented, monitored and controlled
  • Applies a proactive approach in routinely tracking the project participant progress against project goals
  • Fulltime
Read More
Arrow Right

Country Risk Analyst II

The Country Risk Analyst II is a developing professional role under Wealth Retai...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 0-2 years relevant experience
  • Working knowledge of data management tools such as Python, R, SAS, and other analytics tools
  • Knowledge and understanding of Accounting and Financial Concepts
  • Financial analysis
  • Highly detailed and analytical abilities, with a keen sense on data trends and data quality checks
  • Business and/or product knowledge
  • Ability to exercise autonomous thinking and balanced judgement
  • Ability to work to tight deadlines
  • Ability to work in a team environment
  • Excellent communication skills
Job Responsibility
Job Responsibility
  • Performs industry analysis and develops domain expertise for focus industry segments including preparation of industry studies
  • Identifies and analyzes situations that create risk and legal liability for Citi, utilizing various resources such as credit reports, score cards, risk systems, and knowledge of the elements of Risk
  • Establishes and maintains consistent standards and processes in credit analysis through interaction with industry specialists and analysts globally
  • Takes responsibility for the analysis of the individual credits
  • Performs detailed analysis for complex credit recommendations (consumer, issuer, acquirer, and vendor) to ensure appropriate risk/reward balance, including contract analysis and negotiations
  • Assesses Citi products and their appropriateness for the obligors
  • Prepares financial forecasts and provides financial updates for credit reviews
  • Coordinates and communicates with industry units internationally
  • Identifies key risks and material changes
  • highlights to Risk Managers
What we offer
What we offer
  • Extensive on-the-job training
  • Exposure to senior leaders
  • Volunteerism opportunities
  • Resources to enhance financial well-being and healthy decision-making
  • Development opportunities
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy