×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Security Analyst​/Third-Party Risk Management; TPRM – remote PST

Remote / Online - Candidates ideally in
Los Angeles, Los Angeles County, California, 90001, USA
Listing for: Irvine TechNology Corporation
Remote/Work from Home position
Listed on 2026-05-30
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 65 - 80 USD Hourly USD 65.00 80.00 HOUR
Job Description & How to Apply Below
Position: Security Analyst/Third-Party Risk Management (TPRM) – remote PST

Third-Party Risk Management (TPRM) Security Analyst

Our client is seeking a sharp and driven TPRM Security Analyst to join their Information Security GRC team in a remote capacity. This is a high-impact contract role where you will play a critical part in protecting the organization by assessing vendor cybersecurity posture, managing compliance with key regulatory frameworks, and driving continuous improvement of the vendor risk program. If you thrive in a fast-paced environment, enjoy cross‑functional collaboration, and bring deep expertise in third‑party risk lifecycle management, this is an opportunity to make a meaningful difference.

Job Type: 6‑month contract-to-hire

Location: Remote – PST Hours Required

Compensation: $65-80/hr

No Visa Sponsorship Available for this role

What You’ll Do:
  • Conduct end-to-end vendor information security assessments, reviewing questionnaires (SIG, CAIQ, custom IRQs), evaluating evidence, assigning risk levels, and tracking remediations to closure.
  • Administer and automate TPRM workflows within Service Now GRC, including vendor onboarding, risk scoring, dashboards, and executive reporting for the Vendor Risk Committee.
  • Perform ongoing vendor monitoring, manage vendor records in the contract lifecycle system, and analyze emerging cyber threats to strengthen supplier risk management.
  • Maintain the TPRM risk register and support preparation of materials for internal and external audits, including SOC 2, HITRUST, HIPAA, and PCI.
  • Collaborate cross‑functionally with Legal, Procurement, Compliance, and Business Units to embed security requirements into RFPs, contracts, and vendor onboarding processes.
What Gets You the Job:
  • 5+ years in Information Security with 5+ years dedicated to TPRM or Info Sec GRC, including hands‑on end-to-end vendor risk lifecycle management.
  • Demonstrated experience administering and automating TPRM workflows in Service Now GRC, including risk scoring and vendor onboarding.
  • Working knowledge of NIST CSF, HITRUST CSF, SOC 2, ISO 27001, and HIPAA Security Rule, with an understanding of PHI/ePHI handling and BAA obligations.
  • Experience with vendor security questionnaires (SIG, CAIQ) and evidence-based vendor audits, including CVSS/CCSS vulnerability scoring.
  • Strong communication and stakeholder management skills with the ability to present risk findings to leadership and collaborate across legal, procurement, and clinical teams.
#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search