Risk Assessor- Third Party Risk
Listed on 2026-07-13
-
IT/Tech
Information Security, Cybersecurity
Where Ambition Meets Innovation – Build a career that matches your initiative with an impressive dose of innovation. From cutting‑edge resources and a collaborative environment to the freedom to make an impact, you’ll find the ingredients you need at LPL Financial to shape your success while helping clients pursue their financial goals.
Job OverviewThe Risk Assessor is responsible for performing third‑party risk assessments and evaluating vendor control environments. This role supports the Third Party Risk Management (TPRM) program by identifying risks, documenting findings, and partnering with internal stakeholders and external vendors to ensure appropriate mitigation and compliance with regulatory standards.
Responsibilities- Perform third‑party risk assessments using standardized questionnaires (e.g., SIG, CAIQ) and due diligence reviews.
- Analyze documentation including SOC reports, ISO certifications, and audit artifacts to evaluate control effectiveness.
- Identify and document security, compliance, and operational risks and translate findings into business impacts.
- Develop and track remediation plans in collaboration with vendors and internal stakeholders.
- Monitor vendor risk posture using risk scoring tools and ongoing monitoring processes.
- Support regulatory compliance by validating adherence to applicable laws, regulations, and internal policies.
- Partner with cross‑functional teams including Legal, Procurement, IT, Compliance, and business units.
- Prepare reports and dashboards summarizing risk assessments and vendor risk posture.
- Support internal and external audits by providing documentation and program evidence.
- Contribute to the development and enhancement of third‑party risk management policies, procedures, and tools.
- Maintain knowledge of industry frameworks and standards including ISO 27001, NIST, and SOC reporting.
- Manage multiple assessments and priorities in alignment with established service level agreements.
Strong collaborators who deliver exceptional client experiences and thrive in fast‑paced, team‑oriented environments. Candidates pursue greatness, act with integrity, and are driven to help clients succeed while embracing creativity and continuous improvement.
Requirements- 3‑5 years of experience in third‑party risk management, vendor risk, or information security within a regulated industry.
- Experience using governance, risk, and compliance (GRC) tools (e.g., One Trust).
- Working knowledge of risk and compliance frameworks such as ISO 27001, NIST, SOC reporting, or similar standards.
- Proficiency with Microsoft Office applications, including Excel, Word, PowerPoint, and SharePoint.
- Bachelor’s degree or equivalent combination of education and relevant work experience.
- Professional certifications related to third‑party risk, information security, or compliance (e.g., CISA, CISM, CRISC).
- Experience using continuous monitoring tools such as Security Scorecard or Bit Sight.
- Experience supporting audits or regulatory reviews.
$79,825.00 – $ (actual base salary varies based on factors such as skill, experience, and geographic location). The LPL Total Rewards package includes 401(k) matching, health benefits, employee stock options, paid time off, volunteer time off, and more.
#J-18808-Ljbffr(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).